Packt+ | Advance your knowledge in tech

0

All Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

CCNA Security 210-260 Certification Guide

You're reading from CCNA Security 210-260 Certification Guide Build your knowledge of network security and pass your CCNA Security exam (210-260)

Product type Paperback

Published in Jun 2018

Publisher Packt

ISBN-13 9781787128873

Length 518 pages

Edition 1st Edition

Tools

Cisco

Concepts

IT Certification

Authors (3):

Glen D. Singh

Vinod

Anandh

View More author details

Table of Contents (23) Chapters

Title Page

Packt Upsell

Contributors

Preface

1. Exploring Security Threats FREE CHAPTER

2. Delving into Security Toolkits

3. Understanding Security Policies

4. Deep Diving into Cryptography

5. Implementing the AAA Framework

6. Securing the Control and Management Planes

7. Protecting Layer 2 Protocols

8. Protecting the Switch Infrastructure

9. Exploring Firewall Technologies

10. Cisco ASA

11. Advanced ASA Configuration

12. Configuring Zone-Based Firewalls

13. IPSec – The Protocol that Drives VPN

14. Configuring a Site-to-Site VPN

15. Configuring a Remote-Access VPN

16. Working with IPS

17. Application and Endpoint Security

1. Other Books You May Enjoy

Leave a review - let other readers know what you think

Index

Configuring a site-to-site VPN using a Cisco ASA

In this section, we are going to take a look at configuring a site-to-site VPN tunnel using the Adaptive Security Appliance (ASA). Using the following topology, we will apply some fundamental configurations on both ASAs before configuring the VPN tunnel. We want to ensure the devices have basic connectivity between each other:

On ASA-1, the following configurations were applied:

GigabitEthernet1—200.1.1.2/30 (Outside).
GigabitEthernet0—192.168.2.1/24 (Inside).
PAT set to use the IP address on the Outside interface.
Set a default route to the ISP. In the lab configuration, the default gateway for ASA-1 is 200.1.1.1/30.

On ASA-2, the following configurations were applied:

GigabitEthernet1—100.1.1.2/30 (Outside)
GigabitEthernet0—192.168.4.1/24 (Inside)
PAT set to use the IP address on the Outside interface
The default gateway for ASA-2 is 100.1.1.1/30

Checking the device connectivity from ASA-1, we ping 100.1.1.2:

Since we've ensured connectivity between...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at £13.99/month. Cancel anytime

Authors (3)

Glen D. Singh

Glen D. Singh

Glen D. Singh is a cybersecurity author, educator and SecOps professional. His areas of expertise are cybersecurity operations, offensive security tactics and techniques, and enterprise networking. He holds a Master of Science (MSc) in cybersecurity and many industry certifications from top awarding bodies such as EC-Council, Cisco, and Check Point. Glen loves teaching and mentoring others while sharing his wealth of knowledge and experience as an author. He has written many books, which focus on vulnerability discovery and exploitation, threat detection, intrusion analysis, incident response, network security, and enterprise networking. As an aspiring game changer, Glen is passionate about increasing cybersecurity awareness in his homeland, Trinidad and Tobago.

See other products by Glen D. Singh

Vinod

Vinod

Michael Vinod is a freelance IT trainer and consultant specializing in Cisco routing, switching, and security technologies. He has expertise in the field of networking, with close to 3 years of field experience and 7 years of experience, as a Cisco training consultant. He has a passion for training individuals on Cisco technologies and has received accolades from various clients.

See other products by Vinod

Anandh

Anandh

Vijay Anandh is an IT consultant and public speaker specializing in Cisco routing and switching, security, and F5 load balancer technologies. He has 9 years of combined experience as a training consultant and network architect.

See other products by Anandh

Other recommended products

Related to this chapter

CCNA Routing and Switching 200-125 Certification Guide

CCNA Routing and Switching 200-125 Certification Guide

Cisco Certified Network Associate (CCNA) Routing and Switching is one of the most important certificates in order to stay up-to-date with networking skills. This Certification Guide covers everything you need to know in order to pass the CCNA Routing and Switching 200-125.

Oct 2018 16h 48m

Implementing and Administering Cisco Solutions: 200-301 CCNA Exam Guide

Implementing and Administering Cisco Solutions: 200-301 CCNA Exam Guide

200-301 CCNA exam tests for skills required by a network engineer to design, implement, and troubleshoot enterprise network infrastructure. Implementing and Administering Cisco Solutions: 200-301 CCNA Exam Guide offers complete, up-to-date coverage of the 200-301 exam so you can take it with confidence, fully equipped to pass the first time.

Nov 2020 25h 28m

Cisco Certified CyberOps Associate 200-201 Certification Guide

Cisco Certified CyberOps Associate 200-201 Certification Guide

The Cisco Certified CyberOps Associate 200-201 certification exam helps you gain the skills and knowledge needed to prevent, detect, analyze, and respond to cybersecurity incidents. This book offers complete up-to-date coverage of the 200-201 exam so you can confidently pass first time while getting hands-on cybersecurity experience.

Jun 2021 22h 0m

CCENT/CCNA: ICND1 100-105 Certification Guide

CCENT/CCNA: ICND1 100-105 Certification Guide

CCENT is the entry-level certification for those looking to venture into the networking world. This book is designed to help you prepare for the ICND Part 1 (100 – 105) exam, thus obtaining the CCENT certification. Apart from learning computer network essentials, you will be able to enhance your networking skills by learning switching and routing, troubleshooting, security, and more

Apr 2018 12h 4m

CompTIA Network+ Certification Guide

CompTIA Network+ Certification Guide

CompTIA Network+ Certification Guide makes the most complex Network+ concepts easy to understand despite having no prior knowledge. It offers exam tips in every chapter along with access to practical exercises and exam checklist that map to the exam objectives and it is the perfect study guide to help you pass CompTIA Network+ exam.

Dec 2018 14h 4m

Implementing Cisco Networking Solutions

Implementing Cisco Networking Solutions

Most enterprises use Cisco networking equipment to design and implement their networks. However, some networks outperform networks in other enterprises in terms of performance and meeting new business demands, because they were designed for the present while keeping the future in mind. This book talks about how to design and implement enterprise networks for small to mid-size organizations efficiently and effectively, so that the network design can accommodate newer demands from the users in a seamless manner, ranging from adding more branches/ users to adding new services, and evaluating and implementing new technologies to optimize costs, or enhance the user experience.

Sep 2017 14h 32m

Practical Network Automation

Practical Network Automation

Network automation is the process of automating the management and functionality of computer networks. Numerous tools, methodologies, and technologies are used to automate a network; this book covers all these functionalities.

Nov 2017 8h 52m

Cisco ACI Cookbook

Cisco ACI Cookbook

Cisco ACI cookbook is a step by step guide that simplifies the complex Cisco Application Centric Infrastructure for you. Using the practical recipes in this book you can efficiently develop and adapt hybrid environments for your organisation. This book provides an all-round idea of Cisco ACI and will enable you to develop skills using which you can automate IT tasks efficiently.

May 2017 14h 8m

Modern Cryptography for Cybersecurity Professionals

Modern Cryptography for Cybersecurity Professionals

Every minute of the day, there are petabytes of data exchanged between our homes, cars, businesses, and IoT devices. But just what exactly is involved when using cryptographic techniques? Modern Cryptography for Cybersecurity Professionals will help you to understand common cryptographic techniques and terms used today to secure our data.

Jun 2021 9h 32m

Hands-On Enterprise Automation with Python

Hands-On Enterprise Automation with Python

In the coming years Python programming has developed massively in terms of automation. Enterprise automation with Python will teach you how simple Python programming can make your life easier with automating your infrastructure

Jun 2018 13h 16m

pfSense 2.x Cookbook

pfSense 2.x Cookbook

pfSense is a FreeBSD-based firewall that provides a platform for flexible and powerful routing and firewalling. This book focuses on configuring essential and other commonly used pfSense services; such as traffic shaping, redundancy, high availability, static and dynamic routing, backup and restoration of pfSense, and diagnostic tools.

Dec 2018 9h 56m

Securing Remote Access in Palo Alto Networks

Securing Remote Access in Palo Alto Networks

This book focuses largely on different methodologies for connecting remote users, highlighting the benefits and drawbacks as well as step-by-step instructions. You'll understand phishing prevention and log forwarding, and find a comprehensive section on troubleshooting common issues with the help of examples.

Jul 2021 11h 12m

Personalised recommendations for you

Based on your interests and search pattern

Mastering Palo Alto Networks

Mastering Palo Alto Networks

Mastering Palo Alto Networks is a hands-on guide that helps you progress from a beginner to an expert in configuring Palo Alto firewalls. It covers setup, management, and optimization with real-world examples for both on-prem and cloud environments.

May 2025 21h 32m

Cloud Native Anti-Patterns

Cloud Native Anti-Patterns

Uncover and fix cloud native anti-patterns across strategy, culture, security, and operations. This book guides you through the practical steps to avoid common traps and shift your organization toward cloud-native best practices that drive lasting success.

Mar 2025 14h 44m

AWS for System Administrators

AWS for System Administrators

Master the art of designing, deploying, and managing AWS infrastructure with industry best practices. You'll learn to automate workflows, optimize costs, and implement robust disaster recovery strategies for scalable cloud success.

May 2025 14h 12m

Kubernetes for Generative AI Solutions

Kubernetes for Generative AI Solutions

Learn step by step how to design, optimize, and deploy Generative AI projects on Kubernetes. Covering networking, observability, security, scaling, and cost optimization strategies, this guide takes you from first deployment to production excellence.

Jun 2025 11h 8m

Azure Cloud Projects

Azure Cloud Projects

Azure Cloud Projects offers a hands-on introduction to Microsoft Azure, designed to help you build real-world cloud solutions, develop job-ready skills, and apply best practices that are widely used across the cloud computing industry.

May 2025 8h 28m

Sustainable Cloud Development

Sustainable Cloud Development

This book introduces best practices for developing and deploying high-performing, eco-friendly cloud applications, helping you meet sustainability goals while delivering efficient cloud solutions.

Mar 2025 9h 12m

SLIs and SLOs Demystified

SLIs and SLOs Demystified

This comprehensive guide to reliability engineering dives deep into SLIs, SLOs, observability, and incident management. It shows you how to optimize system reliability and make data-driven decisions to balance performance and business goals.

Apr 2025 10h 0m