Course info
Aug 29, 2016
2h 41m

This course is designed to introduce you to some of the advanced topics of the CCNA Security certification exam. These topics are a precursor to the CCNP Security are are touched on in theory in this course. You'll learn about Cisco FireSIGHT, Cisco Email Security, and Cisco Web Security. Each module addresses topics found on the CCNA Security exam.

About the author
About the author

Brandon is a CCIE (Security, #23837), Cisco Press author, and has over 13 years experience as a Cisco Instructor.

More from the author
VPN Fundamentals for CCNP® Security
1h 52m
Feb 12, 2018
ISE BYOD for CCNP Security (300-208) SISAS
2h 8m
Nov 8, 2017
More courses by Brandon Carroll
Section Introduction Transcripts
Section Introduction Transcripts

Email Security
Well, Hi there everyone, and welcome to Email Security, again, an advanced topic in terms of CCNA Security. In fact, it's fairly new in terms of CCNA Security, and you're going to learn more about it when you get into the CCNP Security program, but let's talk about what you need to know at the CCNA Security level. So this'll serve also as your overview for the module, so first of all we're going to need to understand a little bit about ESA deployment, and really where it fits into the modular network architecture. We're going to talk briefly about that. We'll talk about the two options that we can implement, the ESA as an appliance, and the ESAV, which is a virtual appliance. We're also going to talk about deployment options such as on-prem, virtual, and hybrid deployments. We're also going to get into the email flow, and we'll talk about the chain of events that happens when an email is sent, both incoming and outgoing. We'll get into the details of that, and this'll all highlight how email security is handled in a Cisco environment, and we do that, of course, with the ESA, so with that said let's go ahead and move into our introduction to the ESA, ESA Deployment, and why it's so important that we have email security.

Web Security
It is time for Web Security, and I know you're looking forward to that. In this module here we're going to get into a couple of things. Let's just jump right into the overview. First of all, we're going to do kind of a high level overview of web security, just an in generals, probably some things that you already know, but we're going cover it just for good measure. We're then going to talk about the Web Security Appliance, and give you an introduction to Cisco's WSA. We'll talk about WSA deployments, WSA features, and then we're going to introduce you to Cloud Web Security, and how we would deploy CWS. Alright, with that said let's get into our web security overview. Well, first of all, you know that web security is important. There are just tons and tons of threats that exist today that target web traffic or HTTP traffic, and even HTTPS traffic for that matter. There's things like malware, people trying to steal your data. We see data loss, we see people internally trying to send data out that they shouldn't be, but people try to steal your data or corrupt your data. We also see inappropriate web content, and we know that we have to fight that in the business place. So that's really what we want to address are those threats that exist, and Cisco addresses those issues with two products, the Web Security Appliance, as well as Cloud Web Security, CWS, and these are specific to web security. Don't get me wrong though, the FireSIGHT does do a lot of filtering that can help us with URLs and such, but we're just being specific in this particular module to these two products, WSA and CWS. For more information you can go on back to the FireSIGHT module on IPS, and you can take a look at how it functions at a high level there. Okay, so we know we need web security, let's talk about the Cisco WSA.