Lecture CCNA security partner - Chapter 15: SSL VPNs with Cisco ASA

Chapter 15. SSL VPNs with CiscoASA © 2012 Cisco and/or its affiliates. All rights reserved. 1 Contents This chapter prepares you to meet these objectives: • Describe the use cases and operational requirements of Cisco SSL VPNs • Describe the protocol framework for SSL and TLS • Describe a configuration that is based on SSL VPN deployment options and other design considerations • Describe the steps to configure Cisco VPN clientless mode on Cisco ASA and demonstrate the configuration on Cisco ASDM • Describe the steps to configure Cisco full-tunnel mode on Cisco ASA and demonstrate the configuration on Cisco ASDM using the Cisco AnyConnect VPN Client © 2012 Cisco and/or its affiliates. All rights reserved. 2 SSL VPNs in Borderless Networks • Remote-access and mobility services have gone through drastic changes in the past few years. • There are three market transitions driving the network architectures of the future: – Mobility – Video – IT Consumerization © 2012 Cisco and/or its affiliates. All rights reserved. 3 Cisco SSL VPN • The Cisco SSL VPN technology provides remote-access connectivity from almost any Internet-enabled location with a web browser and its native SSL encryption. • Cisco SSL VPN provides the flexibility to support secure access for all users, regardless of the endpoint host from which they establish a connection. • If application access requirements are modest, SSL VPN does not require a software client to be preinstalled on the endpoint host. • This ability enables companies to extend their secure enterprise networks to any authorized user by providing remote-access connectivity to corporate resources from any Internet-enabled location. • Cisco SSL VPN currently delivers three modes of Cisco SSL VPN access: clientless, thin client, and full client © 2012 Cisco and/or its affiliates. All rights reserved. 4 Clientless SSL VPN Versus IPsec VPN © 2012 Cisco and/or its affiliates. All rights reserved. 5 ... - tailieumienphi.vn