Module 20 Flashcards
What products provides dedicated firewall services in one device?
Cisco ASA with FirePOWER Services
What are Cisco ASAs?
NGFW (Next Generation Firewall)
devices that deliver integrated threat defense across the entire attack continuum
What does the choice of ASA model depend on?
An organization’s requirements, such as maximum throughput, maximum connections per second, and budget
What does the Cisco ASAv do?
Brings the power of ASA appliances to the virtual domain
What are the two firewall interface modes of operation available on ASA devices?
Routed mode and transparent mode
What happens in routed mode for an ASA device?
Two or more interfaces separate Layer 3 networks (domains)
What happens in transparent mode for an ASA devices?
The ASA functions like a Layer 2 device
Why is an ASA in transparent mode referred to as a “bump in the wire” or a “stealth firewall”
The ASA functions like a Layer 2 device and is not considered a router hop
What do the Advanced ASA firewall features include?
-ASA virtualization
-High availability with failover
-Identity firewall
-Threat control and containment services
What do most ASA appliances come pre-installed with?
Either a Base license or a Security Plus license
What is the Cisco ASA 5506-X for?
A full-featured security appliance for small businesses, branch offices, and enterprise teleworker environments
What does the Cisco ASA 5506-X give?
High performance firewall, SSL VPN, IPsec VPN, and rich networking services in a plug-and-play appliance
What does the ASA assign to distinguish between inside and outside networks?
Security levels
What is the range of security level numbers?
0 (untrustworthy) to 100 (very trustworthy)
Is outbound traffic allowed and inspected by default?
Yes
