New Skills

New Training: Describe Cisco SD-WAN Security

by Team Nuggets
New Training: Explain BGP Concepts picture: A
Published on February 22, 2021

In this 8-video skill, CBT Nuggets trainer Jeff Kish explores security in the SD-WAN architecture, including application-aware firewalling, IPS, URL filtering, and cloud security. Watch this new networking training.

Watch the full course: Cisco CCNP Implementing Cisco SD-WAN Solutions

This training includes:

  • 8 videos

  • 42 minutes of training

You’ll learn these topics in this skill:

  • Intro

  • Edge Security

  • Application-Aware Firewall


  • URL Filtering

  • DNS Security

  • Advanced Malware Protection (AMP)

  • Review and Quiz

Application-Aware vs Web Application Firewalls: What’s the Difference?

In many ways, an application-aware firewall and a web application firewall perform many of the same tasks. In fact, many firewall appliances may include both types of firewalls. There are subtle differences you need to understand, though.

The traditional firewall blocks traffic at a port level. For instance, let's say that you are running an Apache web server in your business. You'll want to allow access to ports 80 and 443 through your firewall so that your Apache server can communicate with the outside world. What happens if a piece of malware shuts down Apache and starts listening for incoming requests on those two ports, though? A traditional firewall will allow those requests through. All it knows is that traffic should be allowed on ports 80 and 443.

An application-aware firewall understands those ports should only be used for Apache. If Apache shuts down, the firewall will not continue to let traffic through on ports 80 and 443.

A web application firewall works similarly. Instead of it being application-aware, it's HTTP-aware. At an application level, all HTTP traffic looks similar. So, web application firewalls are designed to analyze HTTP traffic for differences in the same way an application-aware firewall will analyze traffic to figure out which application incoming traffic is meant for.



Ultimate Security Cert Guide

A 62-page guide to every Palo Alto, Offensive Security, (ISC)2, Check Point, CompTIA, and Cisco certification, and how they fit into your career.

By submitting this form you agree that you have read, understood, and are able to consent to our privacy policy.

Don't Miss Out

Get great content delivered to your inbox.

I have read and understood the privacy policy, and am able to consent to it.

Recommended Articles

Get CBT Nuggets IT training news and resources

I have read and understood the privacy policy and am able to consent to it.

© 2022 CBT Nuggets. All rights reserved.Terms | Privacy Policy | Accessibility | Sitemap | 2850 Crescent Avenue, Eugene, OR 97408 | 541-284-5522