Cisco SECURE 1.0: Deploying Advanced Zone-Based Policy Firewalls


Overview/Description
Target Audience
Expected Duration
Lesson Objectives
Course Number


Overview/Description
Deploying access control based on Open Systems Interconnection (OSI) Layer 3 and 4 parameters establishes a minimal connectivity policy for network applications. However, such filtering alone cannot provide protection to exposed applications, user awareness in dynamic environments, and control over access to specific types of content on the Internet. The Cisco IOS Zone-Based Policy Firewall provides advanced application layer (OSI Layer 5 to 7) filtering, user-based controls, and content filtering controls to address these scenarios when risk assessment demands them. This course enables you to configure and verify these advanced controls of the Zone-Based Policy Firewall feature set.

Target Audience
Network professionals responsible for securing and managing their network infrastructures, who have CCNA certification, CCNA Security certification (IINS), and a working knowledge of Microsoft Windows operating systems.

Expected Duration (hours)
2.0

Lesson Objectives

Cisco SECURE 1.0: Deploying Advanced Zone-Based Policy Firewalls

  • recognize the parameters necessary to plan the deployment of Cisco IOS Software management plane security controls
  • recognize how to use regular expressions to customize application-layer access policies
  • recognize how to configure Zone-Based Policy Firewall application-layer policies
  • configure Zone-Based Policy Firewall application-layer policies
  • configure application-layer filtering on the Zone Based Policy Firewall
  • sequence the steps to configure and verify Zone-Based Policy Firewall user-based policies
  • configure Zone-Based Policy Firewall user-based policies
  • sequence the steps to configure Zone-Based Policy Firewall URL filtering
  • configure Zone-Based Policy Firewall URL filtering
  • configure URL filtering

    • Course Number:
    cc_cure_a09_it_enus