ASA Security Fundamentals

Questions and Answers

What is a characteristic of each context in ASA virtualization?

• Limited to a single administrator
• Dependent on other contexts for administration
• Shared security policy with other contexts
• Own security policy and interfaces (correct)

What is a requirement for high availability in ASA platforms?

• Identical software, licensing, memory, and interfaces on both platforms (correct)
• Different administrators on each platform
• Different software versions on each platform
• Different security policies on each platform

What is the purpose of Identity Firewall control?

• To only allow traffic from specific IP addresses
• To block all traffic from specific IP addresses
• To prioritize traffic from specific IP addresses
• To allow users or groups to be specified in place of source IP addresses (correct)

What is the primary function of ASA Threat Control?

To protect against unknown exploit variants (D)

What is a feature of ASA Threat Control protection?

Protection against tens of thousands of known exploits (B)

Study Notes

ASA Virtualization

• Each context is an independent device with its own security policy, interfaces, and administrators.

High Availability

• Both platforms must be identical in software, licensing, memory, and interfaces, including the Security Services Module (SSM).

Identity Firewall

• Control and security policy mechanisms allow users, or groups, to be specified in place of source IP addresses.

ASA Threat Control

• Protects against tens of thousands of known exploits.
• Protects against millions of other unknown exploit variants using specialized IPS detection engines and thousands of signatures.

Description

Test your knowledge of ASA Security features, including virtualization, high availability, identity firewall, and threat control. Learn about the features and capabilities of ASA security platforms.