Buy Used
CDN$ 40.00
Used: Very Good | Details
Condition: Used: Very Good
Comment: Ships from within Canada! No apparent writing or highlighting on cover or pages. Light shelf wear. Hassle-free returns! Prime Eligible!
Have one to sell?
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See all 2 images

Cisco ASA: All-in-One Firewall, IPS, Anti-X, and VPN Adaptive Security Appliance (2nd Edition) Paperback – Dec 29 2009

See all 2 formats and editions Hide other formats and editions
Amazon Price
New from Used from
Kindle Edition
"Please retry"
"Please retry"
CDN$ 82.89 CDN$ 33.50

There is a newer edition of this item:

Harry Potter and the Cursed Child
click to open popover

No Kindle device required. Download one of the Free Kindle apps to start reading Kindle books on your smartphone, tablet, and computer.
Getting the download link through email is temporarily not available. Please check back later.

  • Apple
  • Android
  • Windows Phone
  • Android

To get the free app, enter your mobile phone number.

Product Details

  • Paperback: 1152 pages
  • Publisher: Cisco Press; 2 edition (Dec 29 2009)
  • Language: English
  • ISBN-10: 1587058197
  • ISBN-13: 978-1587058196
  • Product Dimensions: 18.6 x 6 x 23.1 cm
  • Shipping Weight: 1.9 Kg
  • Average Customer Review: Be the first to review this item
  • Amazon Bestsellers Rank: #479,272 in Books (See Top 100 in Books)
  •  Would you like to update product info, give feedback on images, or tell us about a lower price?

  • See Complete Table of Contents

Product Description

About the Author

Jazib Frahim CCIE # 5459, is Technical Leader in the Worldwide Security Services Practice of Cisco's Advanced Services for Network Security. He was previously Technical Lead for Cisco's TAC Security team, leading twenty engineers in resolving complicated security and VPN technologies. He is author of Cisco Network Admission Control, Volume II and Cisco SSL VPN Solutions. Omar Santos Senior Network Security Engineer and Incident Manager at Cisco's Product Security Incident Response Team, has designed, implemented, and supported secure networks for Fortune 500 companies and the U.S. government, including the Marine Corps and DOD.

Customer Reviews

There are no customer reviews yet on
5 star
4 star
3 star
2 star
1 star

Most Helpful Customer Reviews on (beta) HASH(0xa3c6606c) out of 5 stars 25 reviews
16 of 17 people found the following review helpful
HASH(0xa3c7db1c) out of 5 stars Old version July 12 2011
By K. Howanitz - Published on
Format: Paperback Verified Purchase
The book is a well written introduction for the Cisco ASA 5500 series. Wish the Index was more thorough, and some sections you have to skip around to complete. This later complain though may in part be because this book covers the ASA IOS versions 8.2 and before, and some major changes came with version 8.3. (At the time of this review, the current version is 8.4.) This does not matter much for some of the basic setup operations, such as interface & logging setup, but NAT/PAT and ACE/ACL setup has changed dramatically. Since those are two fundamental areas of firewall setup, what would otherwise be 4 or 5 star book, drops to a 2 or 3 star review, especially considering that most organizations are not going to want to run old versions of IOS on their security devices.

There is some documentation on the updated version available online, but especially when it comes to examples, I think they are not written well. Would be happy to purchase an updated copy of this book to add to my bookshelf that would cover version 8.4.
9 of 9 people found the following review helpful
HASH(0xa3c7dd68) out of 5 stars Excellent Resource for Cisco ASA admins and for CCIE Security Candidates Feb. 28 2010
By Shahid Shafi - Published on
Format: Paperback
This book is written by Omar Santos and Jazib Frahim and both of them are leading Security engineers from Cisco Systems. Hence you are in extremely capable hands and the book is worth every penny. Having said that, the book is huge (over 1000 pages) and it may not be feasible to read it cover to cover but it is filled with excellent information. It is comprised of 20 chapters emphasizing five key technology areas including Cisco ASA product overview and firewall portfolio, Firewall technology, IPS, Content Security (URL Filtering, Anti-X etc) and VPNs.

The book is filled with configuration examples for both CLI and ASDM GUI. It covers ASA 8.2 code and hence the content is extremely current, fresh and relevant. The book explains firewall theory, implementation, tuning and troubleshooting in great detail, making it an excellent resource for Cisco ASA administrators and CCIE Security candidates as the lab test ASA firewall in great detail.

I bought this book to learn more about firewall virtualization and transparent firewalls. The book spends over 100 pages on these two technologies and cover them with great detail. Virtualization is configured step by step using both CLI and ASDM and then important troubleshooting commands are also covered. Transparent firewalls are clearly explained with detailed configuration examples. Also the chapter contains a table showing readers how routed mode firewalls differ from transparent firewalls and what features are not supported when ASA is running in transparent mode.

Only minor complaint I have is the book should dedicate one more chapter for a detailed case study and showcase all technologies like Site to Site VPNs, Remote Access VPNs, SSL VPNs, IPS, AntiX, Tranparent Firewalls and Virtual Firewalls at the same time by showing a enterprise network with one head office and two branch offices. This will help readers to see all technologies in action at the same time and further clarify things.

Overall I am extremely satisfied with this product and strongly endorse it for CCIE Security candidates and Cisco ASA administrators as their one stop resource for Cisco ASA firewalls.
4 of 4 people found the following review helpful
HASH(0xa3c7dfa8) out of 5 stars Excellent resource for ASA management April 3 2010
By Kristy M. Westphal - Published on
Format: Paperback
The sheer weight of this book intimidates you right out of the box! However, once you open it up and start reading, you realize that you have an excellent reference for the Cisco ASA product. From the beginning where the book introduces you to the overall solution to where it spends a chapter on each of the components mentioned in the title (even better- some have much more in-depth coverage) to the end where an entire section is dedicated to configuring the Virtual Private Networks, this book provides the necessary information to securely set up and use this important appliance.

I liked many aspects of this book, but when I initially cracked it open and saw the product overview alone, I knew that this was the type of book that I needed if I wanted to maintain this type of solution. Why? Well, this particular section walked you through the different models of the ASA product line, complete with pictures of each and diagrams of where and what all the different features are. This is the type of information that you don't need every day, but when you need it you typically end up scrounging for it on the web, taking considerable time and effort away from your troubleshooting efforts.

The rest of the book is equally detailed, providing the step by step information that you need to set up the important features of this product. Throughout the sections that explain the features, you find notes about default settings and other limitations that the feature may encounter. Architecture diagrams and screen shots also help the reader to understand what they are actually doing rather than just barking out orders and having the setup be dictated.

Lastly, to clear up one mystery that puzzled me from the start: Anti-X isn't a new fangled threat that we need to worry about. It appears that description covers the anti-spam, anti-virus and anti-spyware configurations of the features that the box provides.

If you have an ASA appliance, then this book will be invaluable in your support of this device.
2 of 2 people found the following review helpful
HASH(0xa3c81240) out of 5 stars Good but already dated Oct. 30 2011
By Hasbrouck H. McCall - Published on
Format: Paperback Verified Purchase
Even though I have a CCNA from a few years back, my Cisco skills are somewhat rusty. So I just started a new job where they had boxes of switches and a ASA 5510 all partially configured but not yet deployed. The switches were no problem but this ASA 5510 is a beast for someone use to ISA server and Sonicwall. So I purchased this book to help me get past the entry stage of setup and better understand all of the features and use the ASDM GUI software. Having just updated the ASA 5510 software to the most current at the time 8.4.xx, I searched the available books and this one caught my eye partially from the positive reviews and partially because it was current through the version 8.3 release of OS. After reading through the book, and making meticulous notes for a design plan of attack, I found out after about a week and ½ of struggling that the version release from Cisco of 8.4 had major changes to the OS, the NAT configurations, and even the ASDM. The Cisco help desk tech that finally explained this to me said he and his colleagues had to spend 5 weeks in training to be able to support all the changes in this new release. So many of the CLI configurations and several of the ASDM screen shots to not line up with the actual current version. If you are running version 8.3 or earlier, then this book will be helpful to you. I would also like more reference to best practices as well as the default settings. There are so many options in regards to the setup of the ASA firewall that it would be nice to know which way would meet the preferred methods. Also there are not as many real life examples as I was hoping for. This book is good but unfortunately did not help me as much as I thought it would.
3 of 3 people found the following review helpful
HASH(0xa3c810d8) out of 5 stars Excellent book on Cisco ASA. March 11 2010
By Syed - Published on
Format: Paperback
My company is a big Cisco shop and we extensively use 10+ Cisco ASAs for firewall and VPN purposes. I had bought the 1st edition of this book a few years back and it helped me a lot in doing my daily job of managing the devices.
We are now in the process of deploying AnyConnect clients and wanted to get some guidance around it. I bought this book last week and I already feel very comfortable about deploying AnyConnect in our environment.
Each chapter starts off with an in-depth architectural overview of the features to be discussed. It then provides full step-by-step configuration examples using both ASDM and CLI. There are a number of deployment scenarios in each chapter. It even covers many troubleshooting and monitoring examples that helped me a lot when I started deploying it in my lab network
A must have if you have a Cisco ASA or if you are planning to deploy a new ASA in your environment !!!!