-
Course
- Core Tech
Automating Cisco ASA and Firepower Policies Using APIs
Network security is more important today than ever before. This course will teach you how to automate common security operations on Cisco ASA, FTD, and FMC products in the context of enterprise Internet Edge security design.
What you'll learn
Conceptually, firewall security policies are straightforward, but managing them in production has historically been a challenge due to scale, efficacy, and business alignment. In this course, Automating Cisco ASA and Firepower Policies Using APIs, you'll leverage Ansible to configure Cisco Adaptive Security Appliance (ASA) policies via infrastructure-as-code. Next, you'll discover how to interact with the Cisco Firepower Threat Defense (FTD) REST API to reconstruct classic ASA policies on the next-generation security platform, which integrates firewall and Intrusion Prevention System (IPS) capabilities. Finally, you'll learn how to manage distributed FTD deployments using the Firepower Management Center (FMC) REST API, a centralized "single pane of glass" for the Firepower ecosystem of products. When you're finished with this course, you'll have the skills and knowledge of security programmability needed to confidently build, design, and operate professional-grade automation solutions.
Table of contents
- Course Introduction, Prerequisites, and Business Scenario | 6m
- Revisiting the Fundamentals of Firepower and Ansible | 3m 34s
- Demo: Installing Ansible and Building Auxiliary Files | 7m 48s
- Demo: Writing and Testing Jinja2 Templates to Define ASA Policies | 6m 53s
- Demo: Developing Playbooks to Deploy and Purge ASA Policies | 5m 32s
- Module Summary and Homework Challenge | 58s
About the author
Nick Russo, CCDE #20160041 and CCIE #42518, is your go-to-guy for all things networking and automation. Nick loves training online and speaking at industry conferences sharing his expertise.
More Courses by Nick