Got a question? Call 1800 853 276   |   

Securing the Web with Cisco Web Security Appliance (SWSA)

  • Length 2 days
  • Price $2860 inc GST
  • Version 3.0
Course overview
View dates &
book now
  • Register interest

Why study this course

This course shows you how to implement, use, and maintain Cisco® Web Security Appliance (WSA), powered by Cisco Talos, to provide advanced protection for business email and control against web security threats.

Through a combination of expert instruction and hands-on practice, you’ll learn how to deploy proxy services, use authentication, implement policies to control HTTPS traffic and access, implement use control settings and policies, use the solution’s anti-malware features, implement data security and data loss prevention, perform administration of Cisco WSA solution, and more.

This course helps you prepare to take the exam, Securing the Web with Cisco Web Security Appliance (300-725 SWSA), which leads to CCNP Security and the Cisco Certified Specialist – Web Content Security.

Digital courseware: Cisco provides students with electronic courseware for this course. Students who have a confirmed booking will be sent an email prior to the course start date, with a link to create an account via before they attend their first day of class. Please note that any electronic courseware or labs will not be available (visible) until the first day of the class.

Aligns to certification

Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.

What you’ll learn

After you complete this course you should be able to:

  • Implement Cisco WSA to secure web gateways, provide malware protection, and use policy controls to address the challenges of securing and controlling web traffic

  • Gain valuable hands-on skills focused on web security

  • Earn 16 CE credits toward recertification

Cisco at DDLS

DDLS is a Platinum Learning Partner and we are the largest provider of authorised Cisco training in Australia, offering a wider range of Cisco courses, run more often than any of our competitors. DDLS has won awards such as ANZ Learning Partner of the Year (twice!) and APJC Top Quality Learning Partner of the Year.

Stay ahead of the technology curve

Don’t let your tech outpace the skills of your people

Quality instructors and content

Expert instructors with real world experience and the latest vendor- approved in-depth course content.

Partner-Preferred Supplier

Chosen and awarded by the world’s leading vendors as preferred training partner.

Ahead of the technology curve

No matter your chosen technologies or platforms, we can help you stay one step ahead.

Who is the course for?

  • Security architects

  • System designers

  • Network administrators

  • Operations engineers

  • Network managers, network or security technicians, and security engineers and managers responsible for web security

  • Cisco integrators and partners

We can also deliver and customise this training course for larger groups – saving your organisation time, money and resources. For more information, please contact us on 1800 U LEARN (1800 853 276).

Course subjects

Describing Cisco WSA

  • Technology Use Case

  • Cisco WSA Solution

  • Cisco WSA Features

  • Cisco WSA Architecture

  • Proxy Service

  • Integrated Layer 4 Traffic Monitor

  • Data Loss Prevention

  • Cisco Cognitive Intelligence

  • Management Tools

  • Cisco Advanced Web Security Reporting (AWSR) and Third-Party Integration

  • Cisco Content Security Management Appliance (SMA)

Deploying Proxy Services

  • Explicit Forward Mode vs. Transparent Mode

  • Transparent Mode Traffic Redirection

  • Web Cache Control Protocol

  • Web Cache Communication Protocol (WCCP) Upstream and Downstream Flow

  • Proxy Bypass

  • Proxy Caching

  • Proxy Auto-Config (PAC) Files

  • FTP Proxy

  • Socket Secure (SOCKS) Proxy

  • Proxy Access Log and HTTP Headers

  • Customising Error Notifications with End User Notification (EUN) Pages

Utilising Authentication

  • Authentication Protocols

  • Authentication Realms

  • Tracking User Credentials

  • Explicit (Forward) and Transparent Proxy Mode

  • Bypassing Authentication with Problematic Agents

  • Reporting and Authentication

  • Re-Authentication

  • FTP Proxy Authentication

  • Troubleshooting Joining Domains and Test Authentication

  • Integration with Cisco Identity Services Engine (ISE)

Creating Decryption Policies to Control HTTPS Traffic

  • Transport Layer Security (TLS)/Secure Sockets Layer (SSL)

  • Inspection Overview

  • Certificate Overview

  • Overview of HTTPS Decryption Policies

  • Activating HTTPS Proxy Function

  • Access Control List (ACL) Tags for HTTPS Inspection

  • Access Log Examples

Understanding Differentiated Traffic Access Policies and Identification Profiles

  • Overview of Access Policies

  • Access Policy Groups

  • Overview of Identification Profiles

  • Identification Profiles and Authentication

  • Access Policy and Identification Profiles Processing Order

  • Other Policy Types

  • Access Log Examples

  • ACL Decision Tags and Policy Groups

  • Enforcing Time-Based and Traffic Volume Acceptable Use Policies, and End User Notifications

Defending Against Malware

  • Web Reputation Filters

  • Anti-Malware Scanning

  • Scanning Outbound Traffic

  • Anti-Malware and Reputation in Policies

  • File Reputation Filtering and File Analysis

  • Cisco Advanced Malware Protection

  • File Reputation and Analysis Features

  • Integration with Cisco Cognitive Intelligence

Enforcing Acceptable Use Control Settings

  • Controlling Web Usage

  • URL Filtering

  • URL Category Solutions

  • Dynamic Content Analysis Engine

  • Web Application Visibility and Control

  • Enforcing Media Bandwidth Limits

  • Software as a Service (SaaS) Access Control

  • Filtering Adult Content

Data Security and Data Loss Prevention

  • Data Security

  • Cisco Data Security Solution

  • Data Security Policy Definitions

  • Data Security Logs

Performing Administration and Troubleshooting

  • Monitor the Cisco Web Security Appliance

  • Cisco WSA Reports

  • Monitoring System Activity Through Logs

  • System Administration Tasks

  • Troubleshooting

  • Command Line Interface


  • Comparing Cisco WSA Models

  • Comparing Cisco SMA Models

  • Overview of Connect, Install, and Configure

  • Deploying the Cisco Web Security Appliance Open Virtualisation Format (OVF) Template

  • Mapping Cisco Web Security Appliance Virtual Machine (VM) Ports to Correct Networks

  • Connecting to the Cisco Web Security Virtual Appliance

  • Enabling Layer 4 Traffic Monitor (L4TM)

  • Accessing and Running the System Setup Wizard

  • Reconnecting to the Cisco Web Security Appliance

  • High Availability Overview

  • Hardware Redundancy

  • Introducing Common Address Redundancy Protocol (CARP)

  • Configuring Failover Groups for High Availability

  • Feature Comparison Across Traffic Redirection Options

  • Architecture Scenarios When Deploying Cisco AnyConnect® Secure Mobility

Lab outline

  • Configure the Cisco Web Security Appliance

  • Deploy Proxy Services

  • Configure Proxy Authentication

  • Configure HTTPS Inspection

  • Create and Enforce a Time/Date-Based Acceptable Use Policy

  • Configure Advanced Malware Protection

  • Configure Referrer Header Exceptions

  • Utilise Third-Party Security Feeds and MS Office 365 External Feed

  • Validate an Intermediate Certificate

  • View Reporting Services and Web Tracking

  • Perform Centralised Cisco AsyncOS Software Upgrade Using Cisco SMA


To fully benefit from this course, you should have knowledge of these topics:

  • TCP/IP services, including Domain Name System (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS

  • IP routing

You are expected to have one or more of the following basic technical competencies or equivalent knowledge:

  • Cisco certification (CCENT certification or higher)

  • Relevant industry certification such as (ISC)², CompTIA Security+, EC-Council, Global Information Assurance Certification (GIAC), or ISACA

  • Cisco Networking Academy letter of completion (CCNA® 1 and CCNA 2)

  • Windows expertise: Microsoft [Microsoft Specialist, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE)], CompTIA (A+, Network+, Server+)

Terms & Conditions

The supply of this course by DDLS is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.

Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.