Traffic is checked by the Cisco CWS before it is allowed to visit the intended web server. If malicious popups or redirects are detected, the Cisco CWS denies the traffic to the malicious sites:
Cisco Cloud Web Security deployment model
by Vijay Anandh, Michael Vinod, Glen D. Singh
CCNA Security 210-260 Certification Guide
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
- Exploring Security Threats
- Delving into Security Toolkits
- Understanding Security Policies
- Deep Diving into Cryptography
- Implementing the AAA Framework
- Components of AAA
- Implementing Cisco AAA - authentication
- Issues with authentication 
- Implementing Cisco AAA - authorization
- Implementing Cisco AAA - accounting
- Summary
- Securing the Control and Management Planes
- Introducing the security policy
- Technologies to implement secure management network
- Planning considerations for secure management
- Log messaging implementation for security
- Control Plane Policing
- Summary
- Protecting Layer 2 Protocols
- Layer 2 attack mitigation
- Features of the Virtual Local Area Network
- VLAN tagging
- Features of trunking
- VLAN Trunking Protocol
- Spanning Tree Protocol fundamentals
- Port states
- Steps in implementing STP
- Cisco Discovery Protocol
- Layer 2 protection toolkit
- Protecting with a BPDU guard
- Protecting with root guard
- Combating DHCP server spoofing
- Mitigating CAM-table overflow attacks
- MAC spoofing attack
- Port security configuration
- LAB: securing Layer 2 switches
- Lab-port security
- Summary
- Protecting the Switch Infrastructure
- Exploring Firewall Technologies
- Cisco ASA
- Cisco ASA portfolio
- ASA features
- Basic ASA configuration
- Viewing the filesystem
- Setting a hostname
- Setting the clock
- Assigning a domain name to the ASA
- Securing access to the privilege exec mode
- Saving the configurations
- Setting a banner
- Assigning IP addresses on the interfaces
- Setting a default static route
- Creating a local user account
- Remote access
- Configuring Port Address Translation
- Setting up the Adaptive Security Device Manager
- Getting familiar with the ASDM
- Summary
- Advanced ASA Configuration
- Routing on the ASA
- Device name, passwords, and domain name
- Setting banners using the ASDM
- Configuring interfaces
- System time and Network Time Protocol
- Dynamic Host Configuration Protocol
- Access control list on the ASA
- Object groups
- Creating policies on the ASA
- Advanced NAT configurations
- Summary
- Configuring Zone-Based Firewalls
- Zone-Based Firewall terminologies
- Overview of Cisco Common Classification Policy Language
- Configuring a Zone-Based Firewall
- Configuring a Cisco IOS router to use Cisco Configuration Professional (CCP)
- Using Cisco Configuration Professional (CCP) to configure the Zone-Based Firewall
- Using the command-line interface to configure the Zone-Based Firewall
- Step 1 – Creating the zones
- Step 2 – Identifying traffic by using Class Maps
- Step 3 – Defining an action using policy maps
- Step 4 – Identifying a zone-pair and creating match to a policy
- Step 5 – Assigning the zones to the interfaces
- Step 6 – Creating an ACL for access into the DMZ from any source
- Summary
- IPSec – The Protocol that Drives VPN
- Configuring a Site-to-Site VPN
- Configuring a Remote-Access VPN
- Working with IPS
- Application and Endpoint Security
- Other Books You May Enjoy
Cisco Cloud Web Security deployment model
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.