MicroNugget: What are Dynamic Access Policies (DAP)?

preview_player
Показать описание

In this video, Keith Barker covers how to implement a Dynamic Access Policies (DAP) on the ASA and why you should consider using one. He’ll also provide a brief demonstration of how to restrict browsing on the internal network, as well as set up a web-type ACL that will filter all other traffic from specific users.

Keith begins by defining what a dynamic access policy is and why you should use one. He uses the example of a fast-moving worm on the internet that only affects Windows 7 machines. A DAP allows you to interrogate machines accessing your network (even if they’re on a VPN) to find out if they have things like firewalls present or updated antivirus software, as well as what their operating system is. You can create and apply a DAP that will stop all users at risk of that worm from accessing your network until you solve the problem. This can work in any number of cases, and drastically increases your capacity to protect your network.

Start learning with CBT Nuggets:

Рекомендации по теме
Комментарии
Автор

is it possible to push additional specific entry to split ACL via DAP?

pnp