mod 4

Module 04 Course Project Template

Process

Using the latest version of your Network Diagram from your previous project submission, identify the security devices which are configured to support the business end user community, the backbone, and the data center. Find each of these security devices and for each device identify the optimal inspection role the device should be configured to use given its location within the network and the data that flows through it. Save the updated Network Diagram as a Visio Document.

Now that you have identified the suggested roles for the various security devices, concentrate on the security device that is on the perimeter of the end-user community.

Using the following Cisco CLI Book 1: Cisco ASA Series General Operations CLI Configuration Guide as a reference, create the commands necessary to configure this device with the following characteristics:

· A hostname of user-asa

· A domain name of userasa.local

· An enable password of P@ssw0rd with aes encryption

· A timezone setting to central timezone

· An automatic time update

· dns servers set to 8.8.8.8, 8.8.4.4

· Configure 3 Access Lists (Zones)

· - Inside (100)

· - Outside (0)

· - DMZ-SERVERS (50)

· Management Access via SSH/VPN

Record all your commands in notepad. Once you have created the CLI commands to implement Firewall Security , launch PacketTracer (PT-2) in the ISOT Sandbox.

In PT-2 Add an “ASA 5505 Security Devices” into the display. Paste your CLI code into the command window for the ASA security device to test your configuration. Be sure to capture screen shots of the results.

Body

1. Attach your updated Network Diagram.

2. Provide your CLI configuration code.

3. Provide screenshots of your Packet-tracer results.

Executive Summary

In this Executive Summary, discuss how the design work you implemented this week is aligned with the company’s overall strategic goals discussed in the Course Project Introduction.