You are here
SEC0169 - ASA FirePower Custom Application Detector (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video shows you how to create an custom application detector on Cisco ASA FirePower. We will be simulating a custom business application using a TCP/IP Server/Client tool, perform a WireShark packet capture, and attempt to construct an application detector to match it. If you have an application that is not supported by the FireSight System and would like to build an access-control around it, this is a video to watch.
Part 2 of this video goes through testing and validating our application detector configuration
Topic:
- Application Detector
- Access Control Rule with Application Filtering
- Traffic Generation with TCP/IP Server and Client Tool
- WireShark Packet Capture
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
1 comments
Hi
You are awesome man !!! your videos are so good and explanatory that I understood every aspects. but you have missed a part between application detector part 1 and part 2 you didnt shown how you make that custom detector using wireshark?