Modular Policy Framework (MPF)
Lesson 1 of 6
Introduction
In this lesson, we will configure the Modular Policy Framework (MPF) on the ASA firewall to perform granular traffic inspection for FTP connections. This is crucial in a real network as it allows us to control and secure specific commands sent to an FTP server, ensuring that only authorized actions are permitted.
Topology & Device Table
+-------------------+
| Internet |
+-------------------+
|
| (Outside)
|
+--------------+
| ASA1 |
| 10.1.101.10 |
+--------------+
| E0/0 |
| E0/1 |
| E0/2 |
+--------------+
|
| (DMZ)
|
+-------------------+
| FTP Server |
| 10.1.104.20 |
+-------------------+
|
| (Inside)
|
+--------------+
| R1 |
| 10.1.101.1 |
+--------------+
| F0/0 |
+--------------+
|
| (Inside)
|
+--------------+
| R2 |
| 10.1.102.2 |
+--------------+
| G0/0 |
+--------------+
|
| (Inside)
|
+--------------+
| R4 |
| 10.1.104.4 |
+--------------+
| F0/0 |
+--------------+
| Device | Interface | IP Address | Subnet Mask | Role |
|---|---|---|---|---|
| ASA1 | E0/0 | 10.1.101.10 | 255.255.255.0 | Firewall |
| ASA1 | E0/1 | 10.1.101.10 | 255.255.255.0 | Firewall |
| ASA1 | E0/2 | 10.1.104.10 | 255.255.255.0 | Firewall |
| R1 | F0/0 | 10.1.101.1 | 255.255.255.0 | Router |
| R2 | G0/0 | 10.1.102.2 | 255.255.255.0 | Router |
| R4 | F0/0 | 10.1.104.4 | 255.255.255.0 | Router |
| FTP | N/A | 10.1.104.20 | 255.255.255.0 | Server |
Subscribe to unlock this lesson
₹7,999/year
Full access to all 6 lessons in this course, plus 74 more lab courses, quizzes, and AI mock interviews. 365 days.
Already have an account? Sign in