Cisco Certified Network Associate (ccna) Practice Lab
Download 1.21 Mb.
|
- Navigate this page:
- Exercise 3 - Next-Generation Firewalls
- Learning Outcomes
- Traditional Firewalls
| Alert: Depending on the hardware that you have connected to, the software version will be either 12.X or 15.x, and your output may be different.Note: You may find some of the above output familiar. The above information is always displayed as part of the switch’s boot up process.
The output displayed on your device may differ from the above output. However, see if you can find the following information about your device: Cisco IOS Version The IOS filename and location The uptime of the switch How many and what type of interfaces the switch has The configuration register There are no screenshot items for this exercise. Leave all devices in their current state and proceed to the next exercise. Exercise 3 - Next-Generation FirewallsA firewall is a security device that is used to protect your network. There are different types of firewalls that are available (for example, network firewalls, web application firewalls, and stateful inspection firewalls). Generally, firewalls are divided into two types: Traditional firewalls Next-generation firewalls (NGFW) In this exercise, you will learn about the differences between these two types. Learning OutcomesAfter completing this exercise, you will be able to: Describe and Compare Next-Generation Firewalls with Traditional Firewalls Your DevicesThis exercise contains supporting materials for Cisco. Traditional FirewallsTraditional firewalls control traffic entering or exiting a point within the network. It provides this using stateless or stateful methods, depending on the type of protocol that is being run. Firewalls with stateless filtering, filter traffic based on source and destination addresses, or other static values. These firewalls don’t keep track of the state of network connections, and they are not aware of data flows. They are also known as an access control list (ACL). Firewalls with stateful filtering provide filtering by comparing fields in the IP, TCP, and UDP headers and using security zones inside firewall rules. They are aware of communication paths and can track the state of network connections. Over the years, businesses have changed, and today you have many applications that are used in the business world (skype, dropbox, slack). Traditional firewalls are not able to see or control these applications, which makes corporate networks vulnerable to threats. This is where NGFW comes in. Download 1.21 Mb. Share with your friends:
|