- Copertina flessibile: 889 pagine
- Editore: Cisco Systems; 1 edizione (6 giugno 2011)
- Collana: Cisco Press Networking Technology Series
- Lingua: Inglese
- ISBN-10: 1587141094
- ISBN-13: 978-1587141096
- Peso di spedizione: 1,5 Kg
- Posizione nella classifica Bestseller di Amazon: n. 828.495 in Libri in altre lingue (Visualizza i Top 100 nella categoria Libri in altre lingue)
- Visualizza indice completo
Cisco Firewalls (Inglese) Copertina flessibile – 6 giu 2011
Chi ha acquistato questo articolo ha acquistato anche
Alexandre has worked with Cisco security technologies since the year 2000 and is a well recognized expert in the LATAM security community. He is a frequent speaker at Cisco Networkers and other security conferences and has helped in training partners and customers in Brazil. In this book, he proposes a totally different approach to the important subject of firewalls: Instead of just presenting configuration models, he uses a set of carefully crafted examples to illustrate the theory in action. From the configuration fundamentals to advanced topics such as voice inspection, multicast, IPv6 and identity-based firewalls, the book unveils important details about the operations of Cisco firewall solutions, enabling the reader to better use this knowledge on security design. A must-read !
--Luc Billot, Security Consulting Engineer at Cisco (Emerging Markets and European Market)
I think that Alexandre's book could have the alternative title 'Cisco Firewalls Illustrated.' The way in which he links theory and practice is really insightful and greatly helps in understanding individual features and making better use of them for security design. Definitely a reference work in the subject !
--Louis Senecal, CCIE 2198, Consulting Systems Engineer, Cisco (Canada)
In this fully illustrated tour of the world of Cisco Firewalls, Alexandre devotes a great deal of attention to data center-related topics. Network virtualization architecture and the protection of environments that include virtual machines figure among the important subjects covered in the book. For those that want to benefit from virtualization without compromising security, this work is highly recommended.
--David Gonzalez, CISSP #99462, Consulting Systems Engineer at Cisco ( LATAM)
Alexandre Matos da Silva Pires de Moraes
, CCIE No. 6063, has worked as a systems engineer for Cisco Brazil since 1998, in projects that involve not only security and VPN technologies but also routing protocol and campus design, IP multicast routing, and MPLS networks design. He has supported large enterprise and public sector accounts and, for almost three years, coordinated a team of Security engineers in Brazil. Alexandre holds the CISSP, CCSP, and 03 CCIE certifications (routing/switching, security, and service provider). Alexandre, a frequent speaker at Cisco Live, graduated in electronic engineering from the Instituto Tecnológico de Aeronáutica (ITA – Brazil) and has never hidden his sincere passion for mathematics (mainly the fields of synthetic geometry and trigonometry). Alexandre maintains a personal blog in which he discusses topics related to networking and security technologies at http://alexandremspmoraes.wordpress.com/.
Non è necessario possedere un dispositivo Kindle. Scarica una delle app Kindle gratuite per iniziare a leggere i libri Kindle sul tuo smartphone, tablet e computer.
Per scaricare una app gratuita, inserisci il numero di cellulare.
Garanzia e recesso: Se vuoi restituire un prodotto entro 30 giorni dal ricevimento perché hai cambiato idea, consulta la nostra pagina d'aiuto sul Diritto di Recesso. Se hai ricevuto un prodotto difettoso o danneggiato consulta la nostra pagina d'aiuto sulla Garanzia Legale. Per informazioni specifiche sugli acquisti effettuati su Marketplace consulta… Maggiori informazioni la nostra pagina d'aiuto su Resi e rimborsi per articoli Marketplace.
Se sei un venditore per questo prodotto, desideri suggerire aggiornamenti tramite il supporto venditore?
Le recensioni clienti più utili su Amazon.com
[...] (by Zeljka Zorz).
"There used to be a time when firewalls were considered a full proof solution for protecting networks, and that time is long gone. History has taught us there are no silver bullets
when it comes to computer and information security, but firewalls are still a great and versatile tool in the hands of those who know how to use them effectively. "Cisco Firewalls"
will tell you how.
The theory behind this book is that the reader should learn what every firewall feature brings to the table so that he could make an informed and correct decision when dealing with his own firewall situation.
In order to do that, the author covers both ASA-centric and IOS-based firewall deployments, and addresses the motivations for the use of features of each of those two types clearly.
The chapter on additional protection mechanisms is very interesting, and so are those that deal with application inspection and that of voice protocols.
It's helpful to point out at this point that advanced users are welcome to skip through chapters, but others should stick to the order given to them by the author, since many of the chapter build on the knowledge introduced in the previous one(s).
The most important thing about this book is that the it's chock full of meaningful and handy examples. This is not a simple handbook - it aims at making the reader think for himself, and make the connection between theory and practice easy and natural.
The last three chapters deal with how IP multicast tasks and the introduction of the IPv6 standard influence the choices on firewall features, and the book ends with a chapter that deals with security design. It is not overly comprehensive, and here is definitely where I could have enjoyed reading more about how new trends like mobility and cloud computing affect the notion of using firewall to protect the future borderless network. But, perhaps that is a subject for another book.
This book is a must read for everyone who is charged with designing, implementing and deploying firewall solutions, and especially if they are Cisco's.
The author has had the interesting notion of using troubleshooting tools to help show how the various firewall features work, so that, in fact, troubleshooting is "performed"
throughout the book instead of at the end - and you'll be grateful for that"
We were not that worried because on the firewall-side, the CLI is basically identical. Nevertheless, some of the functionalities that we needed were available only on ASA8.4 and then we found out that 8.4 requires the new NAT syntax introduced on release 8.3.
The book was extremely helpful in that sense because it offers an incredibly detailed explanation on both the traditional (before 8.3) and new NAT models (post 8.3). After studying chapters 7 and 8 and the appendix, we were able to confidently use 8.4 on the 5585 and profit from the newest features.
Thanks to the author for presenting such a nice material !!
I really liked how Alexandre consolidates in a single book virtualization applied in three different technology areas: network (VLANs and VRFs), security (ASA and FWSM contexts) and servers ("Firewalls and Virtual Machines"). This last part, explained on a chapter named "Firewall Interactions" specially shows how vibrant and broad the subject "Firewall" still is.
If you have to choose one book to learn about Cisco Firewalls this is definitely the one.
The way in which he explores the details of the various scenarios presented is really cool! It becomes much easier to understand features and use them when deploying Security.
If your experience is security products, you will learn much more about how firewalls deal with several networking aspects.
I always worked with other technologies, like voice, and routing. If you are a networking guy, this is a great chance to learn more about security and how all the things work together.
If you wanna configure firewall-related functionalities on your ASA or on IOS router with design in mind, this is a book to add to your shelf.
What a great work!
products. I do like the approach of teaching the tools first (chapter 4) and
using them to demonstrate how stuff works. It was also interesting to
see many topologies that contain ASA and IOS routers (and having
the configuration information for both elements).
The NAT treatment on ASA is simply awesome ! There are tons of details on
both the 8.3 and previous models that will help you on your migration tasks.
The info on the Zone-based Firewall (which I have in many branches) is
really complete (from the basic scenarios to advanced configs, everything
is there for both 12.4 and 15.X releases).
Although it is not an official certification guide, the book is certainly
helpful for those that need to prepare for the CCNP (Firewall and SECURE exams)
and for the Security CCIE. Really worth the investment !