Implementing Cisco IOS Network Security
Course Summary | Course Duration 5 Days | |
Duration: 5 days Overview Implementing Cisco IOS Network Security (IINS) v2.0 is a five-day instructor-led course focused on the design, implementation, and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies as examples. The course covers security controls of Cisco IOS devices as well as a functional introduction to the Cisco ASA adaptive security appliance. Using instructor-led discussion, lecture, and hands-on lab exercises, this course allows students to perform basic tasks to secure a small branch office network using Cisco IOS security features that are available through web-based GUIs (Cisco Configuration Professional) and the CLI on Cisco routers, switches, and ASA appliances.
Who should attend Network designers Network administrators Network engineers Network managers System engineers
Certifications Cisco Certified Network Associate Security (CCNA Security) the course prepares for exam 640-554 IINS: Implementing Cisco IOS Network Security (IINS v2.0)
Hands-on Labs include: Hardening Network Elements Using Cisco Configuration Professional Securing Administrative Access to Cisco Routers Configuring AAA on Cisco Routers and Switches to Use Cisco Secure ACS Configuring Data Plane Security on Layer 2 Switches Using ACLs to Implement a Threat Containment Strategy Implementing Cisco IOS Zone-Based Firewalls Implementing Basic Network Connectivity Using Cisco ASDM on the Cisco ASA Appliance Configuring Cisco IOS IPS Configuring Site-to-Site IPsec VPNs Configuring SSL VPNs on Cisco ASA Appliances Using Cisco ASDM
Prerequisites
The knowledge and skills that a student must have before attending this course are as follows: Skills and knowledge equivalent to those learned in Interconnecting Cisco Network Devices Part 1 Version 1.1 (CICND1) Working knowledge of the Windows operating system Working knowledge of Cisco IOS networking and concepts
Delegates will learn how to Upon completing this course, the student will be able to meet these overall objectives: Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features
| Course Outline. Module 1: Networking Security Fundamentals Lesson 1: Introducing Networking Security Concepts Lesson 2: Understanding Security Policies Using a Life-Cycle Approach Lesson 3: Building a Security Strategy for Borderless Networks Module 2: Protecting the Network Infrastructure Lesson 1: Introducing Cisco Network Foundation Protection Lesson 2: Protecting the Network Infrastructure Using Cisco Configuration Professional Lesson 3: Securing the Management Plane on Cisco IOS Devices Lesson 4: Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS Lesson 5: Securing the Data Plane on Cisco Catalyst Switches Lesson 6: Securing the Data Plane in IPv6 Environments Module 3: Threat Control and Containment Lesson 1: Planning a Threat Control Strategy Lesson 2: Implementing Access Control Lists for Threat Mitigation Lesson 3: Understanding Firewall Fundamentals Lesson 4: Implementing Cisco IOS Zone-Based Policy Firewalls Lesson 5: Configuring Basic Firewall Policies on Cisco ASA Appliances Lesson 6: Understanding IPS Fundamentals Lesson 7: Implementing Cisco IOS IPS Module 4: Secure Connectivity Lesson 1: Understanding the Fundamentals of VPN Technologies Lesson 2: Introducing Public Key Infrastructure Lesson 3: Examining IPsec Fundamentals Lesson 4: Implementing Site-to-Site VPNs on Cisco IOS Routers Lesson 5: Implementing SSL VPNs Using Cisco ASA Appliances |
Implementing Cisco IOS Network Security
Course Summary | Course Duration 5 Days | |
Duration: 5 days Overview Implementing Cisco IOS Network Security (IINS) v2.0 is a five-day instructor-led course focused on the design, implementation, and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies as examples. The course covers security controls of Cisco IOS devices as well as a functional introduction to the Cisco ASA adaptive security appliance. Using instructor-led discussion, lecture, and hands-on lab exercises, this course allows students to perform basic tasks to secure a small branch office network using Cisco IOS security features that are available through web-based GUIs (Cisco Configuration Professional) and the CLI on Cisco routers, switches, and ASA appliances.
Who should attend Network designers Network administrators Network engineers Network managers System engineers
Certifications Cisco Certified Network Associate Security (CCNA Security) the course prepares for exam 640-554 IINS: Implementing Cisco IOS Network Security (IINS v2.0)
Hands-on Labs include: Hardening Network Elements Using Cisco Configuration Professional Securing Administrative Access to Cisco Routers Configuring AAA on Cisco Routers and Switches to Use Cisco Secure ACS Configuring Data Plane Security on Layer 2 Switches Using ACLs to Implement a Threat Containment Strategy Implementing Cisco IOS Zone-Based Firewalls Implementing Basic Network Connectivity Using Cisco ASDM on the Cisco ASA Appliance Configuring Cisco IOS IPS Configuring Site-to-Site IPsec VPNs Configuring SSL VPNs on Cisco ASA Appliances Using Cisco ASDM
Prerequisites
The knowledge and skills that a student must have before attending this course are as follows: Skills and knowledge equivalent to those learned in Interconnecting Cisco Network Devices Part 1 Version 1.1 (CICND1) Working knowledge of the Windows operating system Working knowledge of Cisco IOS networking and concepts
Delegates will learn how to Upon completing this course, the student will be able to meet these overall objectives: Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features
| Course Outline. Module 1: Networking Security Fundamentals Lesson 1: Introducing Networking Security Concepts Lesson 2: Understanding Security Policies Using a Life-Cycle Approach Lesson 3: Building a Security Strategy for Borderless Networks Module 2: Protecting the Network Infrastructure Lesson 1: Introducing Cisco Network Foundation Protection Lesson 2: Protecting the Network Infrastructure Using Cisco Configuration Professional Lesson 3: Securing the Management Plane on Cisco IOS Devices Lesson 4: Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS Lesson 5: Securing the Data Plane on Cisco Catalyst Switches Lesson 6: Securing the Data Plane in IPv6 Environments Module 3: Threat Control and Containment Lesson 1: Planning a Threat Control Strategy Lesson 2: Implementing Access Control Lists for Threat Mitigation Lesson 3: Understanding Firewall Fundamentals Lesson 4: Implementing Cisco IOS Zone-Based Policy Firewalls Lesson 5: Configuring Basic Firewall Policies on Cisco ASA Appliances Lesson 6: Understanding IPS Fundamentals Lesson 7: Implementing Cisco IOS IPS Module 4: Secure Connectivity Lesson 1: Understanding the Fundamentals of VPN Technologies Lesson 2: Introducing Public Key Infrastructure Lesson 3: Examining IPsec Fundamentals Lesson 4: Implementing Site-to-Site VPNs on Cisco IOS Routers Lesson 5: Implementing SSL VPNs Using Cisco ASA Appliances |
