ASA Security Fundamentals

Questions and Answers

What is a characteristic of each context in ASA virtualization?

Limited to a single administrator

Dependent on other contexts for administration

Shared security policy with other contexts

Own security policy and interfaces (correct)

What is a requirement for high availability in ASA platforms?

Identical software, licensing, memory, and interfaces on both platforms (correct)

Different administrators on each platform

Different software versions on each platform

Different security policies on each platform

What is the purpose of Identity Firewall control?

To only allow traffic from specific IP addresses

To block all traffic from specific IP addresses

To prioritize traffic from specific IP addresses

To allow users or groups to be specified in place of source IP addresses (correct)

What is the primary function of ASA Threat Control?

To protect against unknown exploit variants

What is a feature of ASA Threat Control protection?

Protection against tens of thousands of known exploits

Study Notes

ASA Virtualization

• Each context is an independent device with its own security policy, interfaces, and administrators.

High Availability

• Both platforms must be identical in software, licensing, memory, and interfaces, including the Security Services Module (SSM).

Identity Firewall

• Control and security policy mechanisms allow users, or groups, to be specified in place of source IP addresses.

ASA Threat Control

• Protects against tens of thousands of known exploits.
• Protects against millions of other unknown exploit variants using specialized IPS detection engines and thousands of signatures.

Description

Test your knowledge of ASA Security features, including virtualization, high availability, identity firewall, and threat control. Learn about the features and capabilities of ASA security platforms.