Em Andamento

Config ASA 5505 Firewall(upgraded budget from 30-250)

we now looking for someone who can help us config a ASA 5505 firewall(Transparent mode) provide by OVH.com.

The network situation is only one server behind the firewall as a web server ,there is no other users inside the network, we need the web server been protected from DDoS attack. [url removed, login to view] is a layer out of the firewall and situation.

We are willing to pay 200 USD for proper configuration the firewall.

There is few key points to this configuration:

[url removed, login to view] purpose of this configuration is to maximum protect a single web server from DDoS attack, so smart security rules/policies are extreme important.

[url removed, login to view] configuration must be done by remote connection(ASDM, SSH), there is no possibilities for present in the data center in real life.

3. We require a quick set up guild after configuration. so that we can do the exact same configuration for our customer next time. (we just need to do it step by step, basically what you need to do is simply copy all your command you typed in with some notes)

4. We need to know how to change the maximum number of simultaneous TCP connections.(we prefer the website is visitable during the attack, so the firewall don't drop the normal connection, firewall can recognize the difference between the normal and attack traffic, and for now, please set up a most reasonable traffic simultaneous for a website which have 100,000 IPs a day)

5.(looks stupid but Important!) The configuration must looks complex and professional(not one or two easy rules, but need to automatically recognize most common attack traffic and drop them down, also another reason for this is, The manager in my customer's company will feel much better about paying the money if they look it and thinks it is complex and not easy understand solution for them, some sort of political reason, so if there is 50 rules there and uses all the NAT AAA Globe policy etc, it will be great).

6. We ware receiving tons of ICMP connection request while we experiencing DDoS. So we like to limit or terminate it as it is useless for us.

As well as below is some certificate requirment for people who meet the need.

1. You need to have one of following(at least) certificate from cisco:

Cisco ASA Specialist(Preferred)

CCIE

CCDP

CCIP

CCNP

CCSP

CCVP

A certificate document is require to verify before starting the job.

2. 5 years or more networking experience is preferred.

Habilidades: Cisco, Linux

Ver mais: what do you like most about your job, what do you like least about your job, requirment document, remote specialist, reason for job change, need a professional to sort out, job experience certificate, cisco web, cisco job, cisco experience, cisco 100 remote, certificate of job experience, aaa com, ddos asa config, what is a cisco asa, networking specialist, asa job, aaa a, verify center, stupid, Policies , ovh, next life, network specialist, network cisco

Acerca do Empregador:
( 2 comentários ) erhgesrtwerwer, Netherlands

ID do Projeto: #571774

Premiar a:

sergeytaurus

Hi. I can help you in this task. Please, check the PM. Thanks.

$200 USD em 5 dias
(19 Avaliações)
4.8