Deploying Firewall Services With the Cisco Catalyst 6500 v2.0 (CAT-6KFWSM) — A 2-day course
Synopsis
The Cisco Catalyst 6500 Firewall Services Module (FWSM) provides centralized firewall services under distributed control, allowing firewall services to be easily provisioned for deploying and scaling n-tier applications.
In this course, you will learn how to design effective firewall services solutions with the Cisco Catalyst 6500. You will learn how to implement and deploy the FWSM, how to streamline the provisioning of multiple firewall contexts, and how to deploy the FWSM in high-availability configurations.
Course Objectives
After completing this training course the student will be able to:
- Describe the basic installation and configuration procedures for configuring the FWSM
- Describe the purpose and use of Network Address Translation (NAT) and Port Address Translation (PAT)
- Describe the proper mode for attaching the FWSM to the network
- Configure routed and transparent modes
- Specify the traffic which is allowed to transit the FWSM
- Configure static routes
- Configure Remote Management
- Configure Advanced NAT functions
- Configure AAA services
- Configure deep packet inspection
- Provision and manage multiple contexts in order to provide centralized services under distributed control
- Configure high-availability firewall services using two FWSMs
Intended Audience
This course is designed for Systems Engineers who need to design and implement firewall services using the FWSM.
Prerequisites
- CCNP certification or equivalent experience
- Familiarity with the architecture of the Catalyst 6500 platform
- Intermediate-level knowledge of firewall concepts, such as NAT and packet inspection
Publicly scheduled dates, locations, and prices
A schedule of dates for this course is not currently available. Please call 0800 651 0338 or use our contact form to enquire about places and availability.
Course Contents
Understanding Firewall Services
- Firewall Fundamentals
- Explaining Firewall Functions
- Overview of the FWSM
Deploying the Firewall Services Module
- FWSM Design Guidelines
- Configuring VLANs
- Initial Configuration
- Configuring FWSM Modes
- Configuring Routed Mode
- Configuring Transparent Mode
- Identifying Traffic with Access Lists
- Configuring Static Routes
Configuring Advanced Features
- Using Object Groups
- Modular Policy Framework
- Configuring IP Routing
- Using Advanced NAT
- Configuring AAA Services
- Using URL Filtering
- Using Adaptive Security Device Manager (ASDM)
Using FWSM with Multiple Contexts
- Overview of Multiple Contexts
- Packet Classification
- Creating Contexts
- Resource Management
Configuring High Availability
- Failover Concepts
- Failover Monitoring
- Configuring Active/Standby Failover
- Configuring Active/Active Failover
FWSM Management
- FWSM Architecture and Management
- Managing System Access
- Managing User Access Levels
- Managing Software, Licenses, and Configurations
Course labs
- Lab 1: Configure the Catalyst 6500 Switch
- Lab 2: Configure FWSM Transparent Mode
- Lab 3: Configure FWSM Routed Mode
- Lab 4: Configure Access Through the FWSM
- Lab 5: Configure ACLs on the FWSM
- Lab 6: Configure FWSM Advanced Features
- Lab 7: Configure Multiple Contexts
- Lab 8: Configure High Availability
- Lab 9: Manage the FWSM
