[Home]

The ASDM challenges include:

• Challenge_001. Watch a lecture on PIX/ASA
• Challenge_002. Click on the challenge to watch a demo of ASDM
• Challenge_003. This is a demo challenge for the ASDM
• Challenge_004. This is a demo challenge for the ASDM
• Challenge_005. This is a demo challenge for the ASDM (Setup the banners.)
• Challenge_006. Cisco PIX/ASA ASDM Default Gateway demo.
• Challenge_007. Setup a static route.
• Challenge_008. Setup the interfaces with additional details such as the speed (10, 100 or auto) and the duplex setting (half, full or auto).
• Challenge_009.the challenge to watch a demonstration of setting up users on the ASDM.
• Challenge_010. This is a demo challenge for the ASDM for setting up users and passwords, along with setting the Exec password.
• Challenge_011. This is a demo challenge for the ASDM for setting up users and passwords, along with setting the Exec password.
• Challenge_012. This is a demo challenge for the ASDM for enabling local authentication
• Challenge_013.Double click on the challenge to watch a demonstration of setting up timeouts and disabling NAT.
• Challenge_014. This is a demo challenge for the ASDM for enabling local authentication, and for no address translation.
• Challenge_015. Double click on the challenge to watch a demonstration of setting up of a static mapping.
• Challenge_016. This is a demo challenge for the ASDM for enabling local authentication, and for no address translation.
• Challenge_017. Double click on the challenge to watch a demonstration of setting up SNMP and HTTP access
• Challenge_018. This is a demo challenge for the SNMP configuration.
• Challenge_019. This is a challenge for the HTTP access and setting up the Web server on the device.
• Challenge_020. Double click on the challenge to watch a demonstration of setting up RIP.
• Challenge_021. This is a challenge for the RIP configuration with passive interfaces so that the PIX/ASA listens to routing updates.
• Challenge_022. Double click on the challenge to watch a demonstration of setting up a static ARP cache and priority queing.
• Challenge_023. This is a challenge enables priority queuing on an interface. With PIX/ASA 7.0 and onwards it is possible to create input and output queues to store data packets before they arrive or leave an interface.
• Challenge_024. This is a challenge configures ARP.
• Challenge_025. Double click on the challenge to watch a demonstration of setting up an MTU and IP Spoofing Control
• Challenge_026. This is a demo challenge for the ASDM and involves configuring the MTU (Maximum Transmission Unit) on an interface. The MTU is the maximum data packet size (in Bytes) that can be supported. Normally for an Ethernet network this is set to 1500 Bytes. The IP protocol can support a range of maximum data packet sizes, but Ethernet data frames only support a payload of around 1500 bytes, thus on most networks the MTU is set to 1500.
• Challenge_027. This is a demo challenge for the ASDM and involves configuring IP spoofing on an interface. This feature is enabled with the ip verify reverse-path interface intName command. It uses Unicast Reverse Path Forwarding (Unicast RPF). It allows the firewall to verify the reachability of the source address in packets which arrive on its interfaces, and will thus reject packets with spoofed network addresses.
• Challenge_028. This is a demo challenge for the ASDM for auto-update
• Challenge_029. Double click on the challenge to watch a demonstration of setting up of Auto-Update, Date/Time, Timeouts, Fragmentation, and others.
• Challenge_030. This is a demo challenge for the ASDM to change the date/time.
• Challenge_031. This is a demo challenge for the ASDM to change the timeouts.
• Challenge_032. This is a challenge for the ASDM to add a URL-server.
• Challenge_033. This challenge involves defining the fragments per IP packet. Normally this is set at a maximum of 24 fragments per IP packet, with, up to, 200 fragments awaiting reassembly. Fragmented packets can be used in a DoS attack. This challenge restricts the number of fragments.
• Challenge_034. This challenge involves disabling passive FTP.
• Challenge_035. Double click on the challenge to watch a demonstration of setting up of ICMP settings and ACLs
• Challenge_036. This challenge involves enabling ICMP on interfaces.
• Challenge_037. This challenge involves defining a Level 3 ACL and applying it to an interface.

Demos

There are a few demos at:

• PIX/ASA ASDM Challenge 3 [ Click here - a3 ]. In this demo the interface details of E0, E1 and E2 are setup.
• PIX/ASA ASDM Challenge 7 [ Click here - a7 ]. In this demo static routes and the default gateway are setup.
• PIX/ASA ASDM Challenge 10 [ Click here - a10 ]. In this demo users are setup.
• PIX/ASA ASDM Challenge 14 [ Click here - a14 ]. In this demo timeouts are setup, along with disabling NAT.
• Other demos are: [ Demo 5 ] [ Demo 6 ] [ Demo 7 ] [ Demo 8 ] [ Demo 9 ] [ Demo 10 ] [ Demo 11 ].

This is a demo simulator for ASDM. A pre-release version of the ASDM simulator is at:

[Demo 1][Demo 2][Demo 3][Demo 4][Demo 5][Demo 6][Demo 7][Demo 8][Demo 9][Demo 10][Demo 11].