Book description
Trust the best selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for exam success. They are built with the objective of providing assessment, review, and practice to help ensure you are fully prepared for your certification exam.
CCNP Security FIREWALL 642-618 Official Cert Guide presents you with an organized test preparation routine through the use of proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and enable you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly.
· Master Cisco CCNP Security FIREWALL exam topics
· Assess your knowledge with chapter-opening quizzes
· Review key concepts with exam preparation tasks
· Practice with realistic exam questions on the CD-ROM
CCNP Security FIREWALL 642-618 Official Cert Guide, focuses specifically on the objectives for the CCNP Security FIREWALL exam. Expert networking consultants Dave Hucaby, Dave Garneau, and Anthony Sequeira share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics.
The companion CD-ROM contains a powerful Pearson IT Certification Practice Test engine that enables you to focus on individual topic areas or take a complete, timed exam. The assessment engine also tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most.
Well-regarded for its level of detail, assessment features, comprehensive design scenarios, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time.
The official study guide helps you master all the topics on the CCNP Security FIREWALL exam, including:
ASA interfaces
IP connectivity
ASA management
Recording ASA activity
Address translation
Access control
Proxy services
Traffic inspection and handling
Transparent firewall mode
Virtual firewalls
High availability
ASA service modules
CCNP Security FIREWALL 642-618 Official Cert Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.
The print edition of the CCNP Security FIREWALL 642-618 Official Cert Guide contains a free, complete practice exam.
Also available from Cisco Press for Cisco CCNP Security study is the CCNP Security FIREWALL 642-618 Official Cert Guide Premium Edition eBook and Practice Test. This digital-only certification preparation product combines an eBook with enhanced Pearson IT Certification Practice Test.
This integrated learning package:
· Allows you to focus on individual topic areas or take complete, timed exams
· Includes direct links from each question to detailed tutorials to help you understand the concepts behind the questions
· Provides unique sets of exam-realistic practice questions
· Tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most
Table of contents
- Title Page
- Copyright Page
- About the Authors
- About the Technical Reviewers
- Dedications
- Acknowledgments
- Contents at a Glance
- Contents
- Icons Used in This Book
-
Introduction
- Who Should Read This Book
- How to Use This Book
- Certification Exam and This Preparation Guide
- Overview of the Cisco Certification Process
- Taking the FIREWALL Certification Exam
- Tracking Cisco Certification Status
- How to Prepare for an Exam
- Assessing Exam Readiness
- Cisco Security Specialist in the Real World
- Exam Registration
- Book Content Updates
- Premium Edition eBook and Practice Test
- Chapter 1. Cisco ASA Adaptive Security Appliance Overview
-
Chapter 2. Working with a Cisco ASA
- “Do I Know This Already?” Quiz
- Foundation Topics
- Using the CLI
- Using Cisco ASDM
- Understanding the Factory Default Configuration
- Working with Configuration Files
- Working with the ASA File System
- Reloading an ASA
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 3. Configuring ASA Interfaces
- “Do I Know This Already?” Quiz
- Foundation Topics
- Configuring Physical Interfaces
- Configuring VLAN Interfaces
- Configuring Interface Security Parameters
- Configuring the Interface MTU
- Verifying Interface Operation
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 4. Configuring IP Connectivity
- “Do I Know This Already?” Quiz
- Foundation Topics
- Deploying DHCP Services
- Using Routing Information
- Configuring Static Routing
- Routing with RIPv2
- Routing with EIGRP
- Routing with OSPF
- Verifying the ASA Routing Table
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 5. Managing a Cisco ASA
- “Do I Know This Already?” Quiz
- Foundation Topics
- Basic Device Settings
- Configuring DNS Resolution
- File System Management
- Managing Software and Feature Activation
- Configuring Management Access
- Controlling Management Access with AAA
- Configuring Monitoring Using SNMP
- Troubleshooting Remote Management Access
- Cisco ASA Password Recovery
- Exam Preparation Tasks
- Review All Key Topics
- Command Reference to Check Your Memory
- Chapter 6. Recording ASA Activity
- Chapter 7. Using Address Translation
-
Chapter 8. Controlling Access Through the ASA
- “Do I Know This Already?” Quiz
- Foundation Topics
- Understanding How Access Control Works
- State Tables
- Understanding Interface Access Rules
- Default Access Rules
- The Global ACL
- Configuring Interface Access Rules
- Time-Based Access Rules
- Verifying Interface Access Rules
- Organizing Access Rules Using Object Groups
- Verifying Object Groups
- Configuring and Verifying Other Basic Access Controls
- Troubleshooting Basic Access Control
- Exam Preparation Tasks
- Review All Key Topics
- Command Reference to Check Your Memory
-
Chapter 9. Inspecting Traffic
- “Do I Know This Already?” Quiz
- Foundation Topics
- Understanding the Modular Policy Framework
- Configuring the MPF
- Configuring a Policy for Inspecting OSI Layers 3 and 4
- Configuring Dynamic Protocol Inspection
- Configuring a Policy for Inspecting OSI Layers 5–7
- Detecting and Filtering Botnet Traffic
- Using Threat Detection
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 10. Using Proxy Services to Control Access
- “Do I Know This Already?” Quiz
- Foundation Topics
- User-Based (Cut-Through) Proxy Overview
- AAA on the ASA
- User-Based Proxy Preconfiguration Steps and Deployment Guidelines
- Direct HTTP Authentication with the Cisco ASA
- Direct Telnet Authentication
- Configuration Steps of User-Based Proxy
- Configuring User Authentication
- Configuring Authentication Prompts and Timeouts
- Configuring User Authorization
- Configuring User Session Accounting
- Troubleshooting Cut-Through Proxy Operations
- Using Proxy for IP Telephony and Unified TelePresence
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
- Chapter 11. Handling Traffic
-
Chapter 12. Using Transparent Firewall Mode
- “Do I Know This Already?” Quiz
- Foundation Topics
- Firewall Mode Overview
- Configuring Transparent Firewall Mode
- Controlling Traffic in Transparent Firewall Mode
- Using ARP Inspection
- Disabling MAC Address Learning
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 13. Creating Virtual Firewalls on the ASA
- “Do I Know This Already?” Quiz
- Foundation Topics
- Cisco ASA Virtualization Overview
- Virtual Firewall Deployment Guidelines
- Configuration Tasks Overview
- Configuring Security Contexts
- Verifying Security Contexts
- Managing Security Contexts
- Configuring Resource Management
- Verifying Resource Management
- Troubleshooting Security Contexts
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
-
Chapter 14. Deploying High Availability Features
- “Do I Know This Already?” Quiz
- Foundation Topics
- ASA Failover Overview
- Configuring Active-Standby Failover Mode
- Configuring Active-Active Failover Mode
- Tuning Failover Operation
- Verifying Failover Operation
- Leveraging Failover for a Zero Downtime Upgrade
- Exam Preparation Tasks
- Review All Key Topics
- Define Key Terms
- Command Reference to Check Your Memory
- Chapter 15. Integrating ASA Service Modules
- Chapter 16. Traffic Analysis Tools
- Chapter 17. Final Preparation
- Appendix A. Answers to the “Do I Know This Already?” Quizzes
- Appendix B. CCNP Security 642-618 FIREWALL Exam Updates: Version 1.0
- Glossary of Key Terms
- Index
Product information
- Title: CCNP Security FIREWALL 642-618 Official Cert Guide
- Author(s):
- Release date: May 2012
- Publisher(s): Cisco Press
- ISBN: 9781587142710
You might also like
book
CCNP Security FIREWALL 642-617 Official Cert Guide
CCNP Security FIREWALL 642-617 Official Cert Guide David Hucaby, CCIE® No. 4594 Dave Garneau Anthony Sequeira, …
book
CCNP Security VPN 642-647 Official Cert Guide
Trust the best selling Official Cert Guide series from Cisco Press to help you learn, prepare, …
book
CCNP Security Secure 642-637 Official Cert Guide
CCNP Security Secure 642-637 Official Cert Guide is a comprehensive self-study tool for preparing for the …
book
CCNP Security VPN 642-648 Official Cert Guide, Second Edition
The official study guide helps you master all the topics on the CCNP Security VPN exam, …