Create a network object DMZ-web-server to statically translate the DMZ web server internal IP address to the outside public IP address 209.165.200.241. Create a network object called INSIDE-nat with subnet 192.168.10.0/24 and enable the IP addresses of the hosts in the internal network to be dynamically translated to access the external network via the outside interface.
#TRANSFORM CREDIT PASSWORD#
HQ-ASA5506 username Car1Admin password adminpass01aaa authentication ssh console LOCALcrypto key generate rsa modulus 1024yesssh 192.168.10.250 255.255.255.255 INSIDEssh timeout 20 Step 5: Configure NAT Service for the ASA device for both INSIDE and DMZ networks. Configure SSH session timeout to be 20 minutes.Configure HQ-ASA5506 to accept SSH connections only from the Net Admin workstation.Generate a RSA key pair to support with modulus size of 1024 bits.Configure AAA to use the local database for SSH connections to the console port.Configure the ASA device with AAA authentication using the username of Car1Admin and password of adminpass01.If there is any interface that does not receive an IP address, please reconfigure the IP address for that interface. NOTE: After this step, check again to make sure that the interfaces G1/1, G1/2, G1/3 are configured with IP addresses. Configure the INSIDE, OUTSIDE, and DMZ interfaces with the following:
#TRANSFORM CREDIT FULL#
Note: In order to receive full credit for you configuration, you must save your configuration file after making any changes to the device configuration. HQ-ASA5506 is already configured with a password: Thecar1Admin.
Part 1: Configure the ASA 5506-X Step 1: Configure Basic Settings on the ASA device. In some cases, values have been simplified to streamline the assessment, and in other cases, values have been used by necessity in order to facilitate the assessment of certain skills in Packet Tracer. Note: Some values and approaches to configuring devices in this simulated assessment may not conform to current security best practices. In this case, you will only implement a VPN between headquarters and a single branch. Your job is to prototype the network in the lab prior to your company installing the equipment at the Car1 sites. The Car1 Company has become concerned about network security and has contracted you to implement Layer 2 security, an ASA device, and VPN services from HQ to the branches. Your company has been hired by a used car dealership that has a corporate headquarters and multiple branch offices.
Configure Layer 2 security on a LAN switch.Configure an ASA firewall to implement security policies.In this practice Packet Tracer Skills Based Assessment, you will: Click the Submit Assessment button to submit your work.Do not close Packet Tracer when you are done.
#TRANSFORM CREDIT WINDOWS#
Do not use the browser Back button or close or reload any Exam windows during the exam.Network Security – Practice PT Skills Assessment (PTSA) AnswersĪ few things to keep in mind while completing this activity:
0 kommentar(er)
