You are here
SEC0077 - ASA 1000V Basic Security Profile (ASDM CLI Mode)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through basic security profile configuration on Cisco ASA 1000V in ASDM mode via CLI. We will demonstrate the concept of Security Profile interfaces by applying different security policies based on Ingress ACL and NAT to our Web and DB servers. We will also go through configuration on a Nexus 1000V to have a VEM communicate with the ASA 1000V and enforce the security policies on a port-profile. The lab ends with connectivity testing to verify our configurations.
Note:
- Security Profile Interface is unique to ASA 1000V
- Security Profile Interface needs to be manually created in ASDM mode, but automatically created in VNMC mode
- Security Profile Interfaces are usually tied to an ASA Inside interface
- VEM references ASA 1000V Inside interface and not Management interface
- ASA 1000V only pass traffic for hosts that have a Security Profile assigned to them through a port-profile.
Topic:
- ASA 1000V PAT and Ingress ACL
- ASA 1000V Security Profile Interface
- Nexus 1000V Vservice and Port-Profile