Network Protection and AAA
Overview/Description
To identify how to configure the network protection elements of the PIX Firewall and configure for authentication, authorization, and accounting
Target Audience
Enterprise network engineers; network system analysts; Cisco partners who sell, implement, and maintain Cisco PIX Firewalls on small, medium, and enterprise size networks; systems engineers who support the sales of Cisco PIX Firewalls
Prerequisites
Experience in configuring Cisco IOS software; certification as a CCNA or the equivalent knowledge; a basic knowledge of the Windows operating system; familiarity with the networking and security terms and concepts
Expected Duration
210 Minutes
Objectives:
Network Protection and AAA
configure the attack guards in the PIX Firewall.
identify the intrusion detection and shunning capabilities of the PIX Firewall.
configure the use of IDS information and attack signatures and send Cisco IDS Syslog output to a Syslog server.
identify how the PIX Firewall supports authentication, authorization, and accounting.
identify the commands for configuring AAA on the PIX Firewall.
install Cisco Secure ACS for Windows 2000 and add users to it.
identify how to authenticate non-Telnet, FTP, or HTTP traffic.
configure and test authentication and manage timeouts and prompts.
identify how to configure Cisco Secure ACS user authorization.
configure downloadable ACLs.
configure accounting for all services, specific services, or no services and troubleshoot the AAA configuration.
configure and test downloadable ACLs and accounting.
Course Number: 208647_eng