View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

SEC0164 - ASA FirePower Network Discovery (Host and Application) (Part 3)

Rating: 
5
Average: 5 (5 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
The video introduces you to a concept of Network Discovery of Cisco ASA FirePower which is am essential component of building a intelligent security system. We will primarily focus on host and application discovery and will explain the differences between passive and active discovery. We will also look at how the discovered information are stored in a host profile and its significance.
 
Part 3 of this video demonstrates Active discovery with NMAP scan
 
Topic:
  • Network Discovery with Host and Application
  • Network Object
  • Discovery Policy and Rules
  • Custom Topology
  • Passive Discovery and Host Profile
  • Active Discovery with NMAP Scan

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.

3 comments

Hi,

Thanks for the video.I am new to Network security and therefore to Cisco Firepower. Is it recommended to perform a scheduled scan of a network with a large number of servers running in it, especially in a live production environment? If yes, will there be any impact on performance?

Thank you.

It depends how often your environment changes. It is probably a good idea to do one at the begining, and then every time there is a major changes. If your environment is more dynamic then you can setup schedule scan. Scanning always impact performance so you want to pick appropriate time.

Hi, i found that nmap scan is nevrer will complete)
it is been for 325hrs...
how to cancel?
https://i.imgur.com/qgMmaxk.png