| 思科PIX防火墙安全 |
Exam 642-521:
Cisco Secure PIX Firewall Exam (CSPFA) |
 |
| |
| 基础介绍 |
| CCSP认证的必要组成部分,在这门课程中间,主要以实践为导向传授如何配置、规划、管理,校验及CISCO
的防火墙产品,并了解IOS软件中的防火墙特性。 学员应该具备CCNA证书或具有同等水平。(基本的网络安全工作经验和掌握TCP/IP及网络基础知识);熟悉编密码技术:DES,3DES,RSA,ND5/SHA,IP
Sec,基本了解Windows 操作系统。它是CCIP的五门必考科目之一. |
考试摘要 |
| The Cisco Secure PIX Firewall Advanced
exam (CSPFA 642-521) is oneof the exams associated with
the |
|
|
| Cisco Certified Security Professional and the Cisco
Firewall Specialist certifications. Candidates can prepare
for this exam by taking the CSPFA 3.1 course. This exam
includes simulations and tests a candidate's knowledge
and ability to describe, configure, verify and manage
the PIX Firewall product family. CCNA or CCDA recertification
candidates who pass the 642-521 CSPFA exam will be considered
recertified at the CCNA or CCDA level. |
| |
| 考试目标 |
* 熟悉PIX防火墙产品的特点、功能及优势
* 利用PIX防火墙实现访问控制和内容过滤
* 在PIX防火墙上配置特殊的处理协议
* 配置Cisco IOS 路由器的验证代理
* 利用PIX防火墙实现点对点的虚拟专用网络(VPN) |
| |
| 考试范围 |
The following information provides general guidelines
for the content likely to be included on this exam. However,
other related topics may also appear on any specific delivery
of the exam.
Cisco PIX Firewall Technology
and Features
Firewalls
PIX Firewall models
Cisco PIX Firewall
Family
PIX Firewall models
PIX services module
PIX Firewall licensing
Getting Started
with the Cisco PIX Firewall
User interface
Examining the PIX Firewall status
ASA security levels
Basic PIX Firewall configuration
Syslog configuration
DHCP server configuration
PPPoE and the PIX Firewall
Translations
and Connections
Transport Protocols
Network Address Translation
Configuring DNS Support
Port Address Translations
Access Control
Lists and Content Filtering
ACLS
Converting Conduits to ACLS
Using ACLS
Object Grouping
Overview of object grouping
Getting started with object groups
Configuring object groups
Nested object groups
Advanced Protocol
Handling
Advanced protocols
Multimedia support
Attack Guards, Intrusion
Detection, and Shunning
Attack guards
Intrusion detection
Authentication,
Authorization, and Accounting
Introduction
Installation of CSACS for Windows NT
Authentication configuration
Downloadable ACLS
Failover
Understanding failover
Serial failover configuration
LAN-based failover configuration
Virtual
Private Networks
PIX Firewall enables a secure VPN
Prepare to configure VPN support
Configure IKE parameter
Configure IPSec parameters
Test and verify VPN configuration
Cisco VPN Client
Scale PIX Firewall VPNs
System Maintenance
Remote access
Command authorization
Cisco PIX Device
Manager
PDM overview
Prepare for PDM
Using PDM to configure the PIX Firewall
Using PDM to create a site-to-site VPN
Using PDM to create a remote access VPN
Enterprise
PIX Firewall Management
Configuring access and translation rules
Reporting, tools, and administration
Enterprise
PIX Firewall Maintenance
Introduction to the auto update server
PIX Firewall and AUS communication settings
Devices, images, and assignments
Reports and administration
Firewall Services Module
FWSM overview
Using PDM with the FWSM |
| |
| |
|
|
|
|
Login |
|
