CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance

Chapter Outline:

10.0 Introduction
10.1 ASA Security Device Manager
10.2 ASA VPN Configuration
10.3 Summary

Section 10.1: ASA Security Device Manager

Upon completion of this section, you should be able to:

  • Configure an ASA to provide basic firewall services using ASDM.
  • Configure an ASA to provide additional firewall services using ASDM wizards.
  • Configure management settings and services in an ASA using ASDM.
  • Configure object groups on an ASA.

Topic 10.1.1: Introduction to ASDM

Overview of ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 188

Preparing for ASDM

Preparing the ASA 5505

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 189

Verify Connectivity to the ASA

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 190

Starting ASDM

ASDM Security Certificate

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 191

ASDM Launch Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 192

ASDM Security Warning – 1

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 193

ASDM Security Warning – 2

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 194

Authenticate to Use ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 195

Smart Call Home Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 196

ASDM Home Page Dashboards

ASDM Device Dashboard Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 197

ASDM Firewall Dashboard Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 198

ASDM Page Elements

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 199

ASDM Configuration and Monitoring Views

Configuration View

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 200

Monitoring View

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 201

Configure and Access on an ASA5505

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 202

Topic 10.1.2: ASDM Wizard Menu

ASDM Wizards

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 203

The Startup Wizard

Startup Wizard Starting Point Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 204

Startup Wizard Basic Configuration Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 205

Startup Wizard Interface Selection Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 206

Startup Wizard Switch Port Allocation Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 207

Startup Wizard Interface IP Address Configuration Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 208

Startup Wizard DHCP Server Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 209

Startup Wizard Address Translation (NAT/PAT) Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 210

Startup Wizard Administrative Access Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 211

Startup Wizard Summary Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 212

Different Types of VPN Wizards

ASDM VPN Wizards

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 213

ASDM Remote Access VPN Assistant

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 214

Other Wizards

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 215

Topic 10.1.3: Configuring Management Settings and Services

Configuring Settings in ASDM

Configuration Device Setup Tab

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 216

Configuration Device Management Tab

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 217

Configuring Basic Settings in ASDM

Configuring Hostname, Domain Name, and Enable Password

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 218

Configuring a Master Passphrase

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 219

Configuring Legal Notification

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 220

Configuring Interfaces in ASDM

Configuring Interfaces

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 221

Adding an Outside Interface

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 222

Change Switch Port Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 223

Adding an Outside Interface

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 224

Advanced Outside Interface Settings

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 225

Updated Interface Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 226

Verifying Interfaces

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 227

Enable Switch Ports

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 228

Apply Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 229

Configuring the System Time in ASDM

Manually Change the System Time

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 230

Use NTP to Change the System Time

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 231

Add an NTP Server

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 232

Configure an NTP Server

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 233

Apply the Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 234

Configuring Routing in ASDM

Configuring Routing

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 235

Configuring a Default Static Route

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 236

Add or Edit Route Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 237

Add Static Route Details

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 238

Apply the Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 239

Configuring Device Management Access in ASDM

Configure ASDM/HTTPS/Telnet/SSH Access

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 240

Add Device Access Configuration Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 241

Configure SSH Settings

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 242

Configuring DHCP Services in ASDM

DHCP Server Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 243

Edit DHCP Server Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 244

Configuring DHCP Server Services

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 245

Verifying DHCP Server Services

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 246

Topic 10.1.4: Configuring Advanced ASDM Features

Objects in ASDM

Network Objects/Groups Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 247

Adding a Network Object/Group

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 248

Add Network Object Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 249

Add Network Object Group Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 250

Service Objects/Group Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 251

Adding a Service Object/Group

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 252

Add Service Object Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 253

Add Service Object Group Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 254

Configuring ACLs Using ASDM

ACLs in ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 255

Add Access Rule Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 256

Diagramming Access Rules

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 257

Configuring Dynamic NAT in ASDM

Add Network Object Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 258

Creating a Network Object for Public Addresses

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 259

Creating a Network Object for Dynamic NAT

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 260

Configuring Dynamic PAT in ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 261

Configuring Static NAT in ASDM

Static NAT in ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 262

Advanced Static NAT Settings in ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 263

Configuring AAA Authentication

User Accounts Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 264

Add User Account Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 265

AAA Server Groups Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 266

Add AAA Server Group Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 267

Add AAA Server Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 268

Completed AAA Server Groups Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 269

AAA Access Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 270

AAA Access > Authentication Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 271

Configuring a Service Policy Using ASDM

Service Policy in ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 272

Configure a Service Policy

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 273

Configure Traffic Classification Criteria

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 274

Configure Actions

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 275

Section 10.2: ASA VPN Configuration

Upon completion of this section, you should be able to:

  • Explain how the ASA supports site-to-site VPNs.
  • Configure remote-access VPNs on an ASA.
  • Configure remote-access VPN support using a clientless SSL VPN.
  • Configure remote-access VPN support using Cisco AnyConnect.

Topic 10.2.1: Site-to-Site VPNs

ASA Support for Site-to-Site VPNs

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 276

ASA Site-to-Site VPNs Using ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 277

Configuring the ISR Site-to-Site VPNs Using the CLI

Basic ISR Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 278

Configure the ISAKMP Policy

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 279

Configure the IPsec and VPN ACL

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 280

Configure and Apply the Crypto Map

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 281

Configuring the ASA Site-to-Site VPNs Using ASDM

Basic ISR Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 282

Introduction Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 283

Peer Device Identification Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 284

Traffic to Protect Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 285

Security Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 286

NAT Exempt Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 287

Summary Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 288

Verifying Site-to-Site VPNs Using ASDM

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 289

Test the Site-to-Site VPNs Using ASDM

Establish the VPN Tunnel Connection to the Remote Network

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 290

Monitoring the VPN Tunnel

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 291

Verify VPN Tunnel Connectivity from the External Host

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 292

Topic 10.2.2: Remote-Access VPNs

Remote-Access VPN Options

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 293

IPsec Versus SSL

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 294

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 295

Comparing IPsec and SSL

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 296

ASA SSL VPNs

Remote Access VPN Wizards

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 297

Cisco ASA SSL Remote Access VPN Solutions

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 298

Clientless SSL VPN Solution

Cisco ASA Clientless SSL VPN Deployment

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 299

Clientless Login Web page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 300

Web Portal Home Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 301

Client-Based SSL VPN Solution

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 302

Cisco AnyConnect Secure Mobility Client

AnyConnect Connection Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 303

AnyConnect Authenticate Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 304

AnyConnect Authenticated Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 305

AnyConnect Statistics Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 306

AnyConnect for Mobile Devices

Cisco AnyConnect Secure Mobility Client is available on the following platforms:

  • iOS
  • Android
  • BlackBerry
  • Windows Mobile

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 307

Topic 10.2.3: Configuring Clientless SSL VPN

Configuring Clientless SSL VPN on an ASA

ASDM Assistant

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 308

Clientless VPN Wizard

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 309

Sample Clientless VPN Topology

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 310

Clientless SSL VPN

Clientless SSL VPN Introduction Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 311

SSL VPN Interface Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 312

User Authentication Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 313

Group Policy Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 314

Bookmark List Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 315

Configure GUI Customization Objects Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 316

Add Bookmark List Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 317

Select Bookmark Type Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 318

Add Bookmark Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 319

Revised Add Bookmark List Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 320

Revised Configure GUI Customization Objects Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 321

Revised Bookmark List Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 322

Summary Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 323

Verifying Clientless SSL VPN

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 324

Testing the Clientless SSL VPN Connection

Security Certificate Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 325

Logon Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 326

Web Portal Home Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 327

Web Portal Web Access Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 328

Web Portal File Access Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 329

Log Out of the Web Portal

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 330

Viewing the Generated CLI Config

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 331

Topic 10.2.4: Configuring AnyConnect SSL VPN

Configuring SSL VPN AnyConnect

ASDM Assistant

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 332

Client-Based VPN Wizard

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 333

Sample SSL VPN Topology

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 334

AnyConnect SSL VPN

AnyConnect VPN Wizard Introduction Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 335

Connection Profile Identification Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 336

VPN Protocols Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 337

Client Images Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 338

Add AnyConnect Client Image Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 339

Browse Flash Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 340

Add AnyConnect Client Image Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 341

Completed Client Images Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 342

Authentication Methods Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 343

Client Address Management Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 344

Add IPv4 Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 345

Completed Client Address Management Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 346

Network Name Resolution Servers Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 347

Completed Network Name Resolution Servers Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 348

NAT Exempt Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 349

Completed NAT Exempt Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 350

AnyConnect Client Deployment

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 351

Summary Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 352

Verifying AnyConnect Connection

AnyConnect Connection Profiles Page

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 353

Verifying the Client-Based Configuration

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 354

Install the AnyConnect Client

Security Certificate Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 355

Logon Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 356

Cisco AnyConnect VPN Client Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 357

Manual Installation Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 358

Run Installer Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 359

Cisco AnyConnect VPN Client Setup Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 360

End-User Agreement Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 361

User Account Control Security Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 362

Ready to Install AnyConnect Client

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 363

Installing the AnyConnect Client

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 364

Complete Cisco AnyConnect VPN Installation

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 365

Start the Cisco AnyConnect VPN Cisco

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 366

Cisco AnyConnect VPN Client Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 367

Cisco AnyConnect VPN Connect Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 368

Certificate Security Warning Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 369

Cisco AnyConnect VPN Authentication Window

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 370

Cisco AnyConnect VPN Icon in System Tray

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 371

Cisco AnyConnect VPN Client Status

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 372

Verifying Connectivity to Internal Network

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 373

Viewing the Generated CLI Config

AnyConnect SSL VPN Configuration settings:

  • NAT
  • WebVPN
  • Group policy
  • Tunnel group

CCNA Security 2.0 Study Material – Chapter 10: Advanced Cisco Adaptive Security Appliance 374

Section 10.3: Summary

Chapter Objectives:

  • Implement an ASA firewall configuration.
  • Configure remote-access VPNs on an ASA.

Download Slide PowerPoint (pptx):

[sociallocker id=”54558″]Click here[/sociallocker]


Related Articles

guest
0 Comments
Inline Feedbacks
View all comments