 |
Ksiazki - Informatyczne .pl » informatyka » informatyka Cisco ASA PIX and FWSM Firewall Handbook 2e
Opis Cisco ASA PIX and FWSM Firewall Handbook 2e: Cisco ASA, PIX, and FWSM Firewall Handbook, Second Edition, is a guide for the most commonly implemented features of the popular Cisco® firewall security solutions. Fully updated to cover the latest firewall releases, this book helps you to quickly and easily configure, integrate, and manage the entire suite of Cisco firewall products, including ASA, PIX®, and the Catalyst® Firewall Services Module (FWSM). Organized by families of features, this book helps you get up to speed quickly and efficiently on topics such as file management, building connectivity, controlling access, firewall management, increasing availability with failover, load balancing, logging, and verifying operation. Sections are marked by shaded tabs for quick reference, and information on each feature is presented in a concise format, with background, configuration, and example components. Whether you are looking for an introduction to the latest ASA, PIX, and FWSM devices or a complete reference for making the most out of your Cisco firewall deployments, Cisco ASA, PIX, and FWSM Firewall Handbook, Second Edition, helps you achieve maximum protection of your network resources. "Many books on network security and firewalls settle for a discussion focused primarily on concepts and theory. This book, however, goes well beyond these topics. It covers in tremendous detail the information every network and security administrator needs to know when configuring and managing market-leading firewall products from Cisco." -Jason Nolet, Vice President of Engineering, Security Technology Group, Cisco David Hucaby, CCIE® No. 4594, is a lead network engineer for the University of Kentucky, where he works with health-care networks based on the Cisco Catalyst, ASA, FWSM, and VPN product lines. He was one of the beta reviewers of the ASA 8.0 operating system software.
This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks. Category: Networking: Security Covers: Cisco ASA 8.0, PIX 6.3, and FWSM 3.2 version firewalls $60.00 USA / $69.00 CAN Spis treści Cisco ASA PIX and FWSM Firewall Handbook 2e: Foreword xxii Introduction xxiii Chapter 1 Firewall Overview 3 1-1: Overview of Firewall Operation 4 Initial Checking 5 Xlate Lookup 6 Conn Lookup 7 ACL Lookup 8 Uauth Lookup 8 Inspection Engine 9 1-2: Inspection Engines for ICMP, UDP, and TCP 9 ICMP Inspection 10 A Case Study in ICMP Inspection 12 UDP Inspection 13 TCP Inspection 15 Additional TCP Connection Controls 17 TCP Normalization 18 Other Firewall Operations 19 1-3: Hardware and Performance 19 1-4: Basic Security Policy Guidelines 21 Further Reading 24 Chapter 2 Configuration Fundamentals 27 2-1: User Interface 27 User Interface Modes 28 User Interface Features 29 Entering Commands 29 Command Help 31 Command History 32 Searching and Filtering Command Output 32 Terminal Screen Format 34 2-2: Firewall Features and Licenses 34 Upgrading a License Activation Key 40 2-3: Initial Firewall Configuration 41 Chapter 3 Building Connectivity 45 3-1: Configuring Interfaces 45 Surveying Firewall Interfaces 46 Configuring Interface Redundancy 48 Basic Interface Configuration 50 Interface Configuration Examples 58 Configuring IPv6 on an Interface 60 Testing IPv6 Connectivity 67 Configuring the ARP Cache 68 Configuring Interface MTU and Fragmentation 70 Configuring an Interface Priority Queue 73 Displaying Information About the Priority Queue 77 Firewall Topology Considerations 77 Securing Trunk Links Connected to Firewalls 79 Bypass Links 81 3-2: Configuring Routing 83 Using Routing Information to Prevent IP Address Spoofing 84 Configuring Static Routes 86 Static Route Example 89 Favoring Static Routes Based on Reachability 89 Reachable Static Route Example 92 Configuring RIP to Exchange Routing Information 95 RIP Example 97 Configuring EIGRP to Exchange Routing Information 97 An EIGRP Configuration Example 101 Configuring OSPF to Exchange Routing Information 101 OSPF Routing Scenarios with a Firewall 102 OSPF Used Only on the Inside 102 OSPF Used Only on the Outside 102 OSPF Used on Both Sides of the Firewall (Same Autonomous System) 103 OSPF Used on Both Sides of the Firewall (Different Autonomous Systems) 104 Configuring OSPF 105 Redistributing Routes from Another Source into OSPF 112 OSPF Example 115 3-3: DHCP Server Functions 116 Using the Firewall as a DHCP Server 117 DHCP Server Example 120 Updating Dynamic DNS from a DHCP Server 120 Verifying DDNS Operation 123 Relaying DHCP Requests to a DHCP Server 124 DHCP Relay Example 125 3-4: Multicast Support 126 Multicast Overview 126 Multicast Addressing 127 Forwarding Multicast Traffic 128 Multicast Trees 128 Reverse Path Forwarding 128 IGMP: Finding Multicast Group Recipients 129 IGMPv1 129 IGMPv2 130 PIM: Building a Multicast Distribution Tree 130 PIM Sparse Mode 131 PIM RP Designation 136 Configuring PIM 137 Using a Multicast Boundary to Segregate Domains 142 Filtering PIM Neighbors 143 Filtering Bidirectional PIM Neighbors 144 Configuring Stub Multicast Routing (SMR) 145 Configuring IGMP Operation 147 Stub Multicast Routing Example 150 PIM Multicast Routing Example 151 Verifying IGMP Multicast Operation 151 Verifying PIM Multicast Routing Operation |
|
Księgarnia informatyczna © ksiazki-informatyczne.pl
- cisco press , książka informatyczna - Cisco ASA PIX and FWSM Firewall Handbook 2e
|