Home  ›  How to Upload Vwsa License to Eve-ng

How to Upload Vwsa License to Eve-ng

Written By Wednesday, April 13, 2022 Add Comment Edit

How much WSA knowledge do yous need for the CCIE Security? Setting up WCCP on WSA

How much WSA noesis do you need for the CCIE Security? Setting up WCCP on WSA

August twenty, 2015 CCIE, Security, WSA

I am slowly starting to get to grips with the WSA, the Arrangement Setup Wizard crashes out at the same place every fourth dimension, but I seem to be making my mode around that.

Anyway, I have been thinking about how much yous really need to know about the WSA in the written and lab exams, and I don't recall it's a huge amount.

Having a look at the written exam topics, its very brief:

5.14 Cisco Web Security Appliance and Cisco Electronic mail Security Appliance

As for the lab, well, that's a lilliputian more concise:

  • 3.3 Cisco WSA
  • 3.iii.a Implement WCCP
  • iii.3.b Active Directory integration
  • 3.3.c Custom categories
  • 3.3.d HTTPS configuration
  • iii.3.e Services configuration (spider web reputation)
  • 3.3.f Configure proxy bypass lists
  • 3.3.g Web proxy modes
  • 3.3.h Application visibility and control

The WCCP thing goes together with configuring on a router or firewall endpoint, we'll come back to Advertising integration in a moment, merely then we have custom categories, HTTPS and the rest of it – all of which are very much point and click.

And so, allow's return to AD.

Here's where the confusing function is. Accept a look at the software versions for the v4 CCIE Security:

  • Cisco ISR Serial running IOS Software Version xv.i(x)T and xv.2(ten)T
  • Cisco Catalyst 3560/3750 Series Switches running Cisco IOS Software Release 12.2SE/fifteen.0(x)SE
  • Cisco ASA 5500 Series Adaptive Security Appliances Os Software Versions 8.2x, 8.4x, viii.6x
  • Cisco IPS Software Release vii.x
  • Cisco VPN Customer Software for Windows, Release v.x
  • Cisco Secure ACS System software version v.3x
  • Cisco WLC 2500 Series software 7.2x
  • Cisco Aironet 1200 series AP Cisco IOS Software Release 12.4J(ten)
  • Cisco WSA S-series software version 7.1x
  • Cisco ISE 3300 series software version 1.1x
  • Cisco NAC Posture Agent v4.10
  • Cisco AnyConnect Client v3.0X

In that location is a notable exception, and that is any form of Windows server.

This does limit down what is required, and puts the onus back onto locally created accounts, and puts greater weight on configuring WCCP.

While I appreciate that but someone who has really sat the CCIE Security exams can confirm/deny this, I also capeesh that in doing so they would exist in danger of breaking an NDA, but it would be practiced to find out if I am right or not! Feel costless to annotate below.

Setting up WCCP is very straight forwards on the WSA.

Let's do this.

So I have my VM running within of UNetLab, and it points me to use the System Setup Wizard.

We start off with the basics, like hostname and DNS:
Cisco WSA basic configuration for CCIE Security

Next, nosotros tell it where information technology is in the network (i.e. behind another proxy or not)

Cisco WSA basic configuration for CCIE Security

Then I configure the IP addresses:

Cisco WSA basic configuration for CCIE Security

Then this happens, every time.

Cisco WSA basic configuration for CCIE Security

Switching to the console and grepping the GUI log (type in "grep" and it volition listing the files you can read, and select by the number), it shows the post-obit:

Disquisitional: An awarding fault occurred: ('system_setup/wsassw_network_proxy.py process|290', "", "'Direction'", '[util/Aquarium.py screenLoop|409] [util/InternalLibrary.py inverseExtend|328] [util/InternalLibrary.py __call__|746] [screen/Controller.py __call__|25] [util/InternalLibrary.py __call__|746] [screen/CommonController.py __call__|57] [util/InternalLibrary.py __call__|746] [screen/AppController.py __call__|191] [util/InternalLibrary.py __call__|748] [system_setup/wsassw_network_proxy.py __call__|33] [screen/WizardStep.py __call__|16] [screen/WizardStep.py callWizard|8] [system_setup/wsassw_wizard.py __call__|103] [screen/Wizard.py __call__|59] [screen/WizardStep.py run|21] [screen/Controller.py executeAction|67] [screen/WizardStep.py doNextAction|52] [screen/WizardStep.py validateAndProcess|79] [system_setup/wsassw_network_proxy.py procedure|290]')

No idea what that is all about.

Anyway, once you render to the default screen, y'all can click on Commit changes, and it seems pretty solid.

And so moving on (with fingers crossed), WCCP can exist set in a few steps.

From the Network menu, select Transparent redirection:

Cisco WSA WCCP configuration

The default will be an L4 device, and so change information technology to WCCP v2 router, then y'all can click on Add together Service:

Cisco WSA WCCP configuration

Fill in the boxes, giving it a contour name, either selecting the standard service (where you'll accept to refer to it as "spider web-cache" in the router), or requite it a service ID. Set the port numbers, and IP address of the WCCP router (very important), and if you want, set a countersign for the service. I am using "wsawccp" as the password.

Cisco WSA WCCP configuration

Once done, it'll announced in the WCCP v2 Services listing:

Cisco WSA WCCP configuration

Commit the changes:

Cisco WSA WCCP configuration

All looks good.

Cisco WSA WCCP configuration

This is notwithstanding only half the story, we need to set up the ASA for the service, though.

I'll comprehend that in a dissimilar post.

finchcappeariver.blogspot.com

Source: https://www.802101.com/cisco-wsa-wccp-ccie/

0 Response to "How to Upload Vwsa License to Eve-ng"

Post a Comment

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel