You are here
SEC0072 - ASA 1000V Basic Edge Security Profile and Policies (VNMC Mode)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through basic configuration of Edge Security Profile and Policies on Cisco ASA 1000V in VNMC mode. We will demonstrate the concept of Security Profile interfaces by applying different security policies based on Ingress ACL and NAT to our Web and DB servers. We will also go through configuration on a Nexus 1000V to have a VEM communicate with the ASA 1000V and enforce the security policies on a port-profile. The lab ends with connectivity testing to verify our configurations.
Note:
- Security Profile Interfaces are usually tied to an ASA Inside interface
- VEM references ASA 1000V Inside interface and not Management interface
- ASA 1000V only pass traffic for hosts that have a Security Profile assigned to them through a port-profile.
Topic:
- ASA 1000V Security Policies (NAT, Ingress ACL)
- ASA 1000V PAT Object-Group
- ASA 1000V Security Profile Interface
- Nexus 1000V Vservice and Port-Profile