Services
Convergent Communications, Inc. - A Cisco Systems Learning Partner
Business/Enterprise Solutions Certification Packages
Cisco AS Courses
E-Learning About CCI
Consulting Home Page
Courses Schedules & Pricing Registration Contact Us
Product Training
Deploy Assure
Sec. Networks with Cisco Routers and Switches


Course Description

Course Objectives

Intended Audience

Course Outline & Labs

SCHEDULE

COURSES INDEX

Securing Networks with Cisco Routers and Switches (SNRS) - 5-day Course

Course Description

In this recently updated, lab-intensive course, you'll get the knowledge and skills needed to secure Cisco IOS router and switch networks. Get in-depth training on IOS-based VPN configurations, including traditional IPSec Site-to-Site VPN, PKI/Digital Certificates for authentication, and Cisco Easy VPN Remote Access VPN. You'll also cover newer VPN technologies such as Dynamic Multipoint VPN (DMVPN) and WebVPN. Our exclusive labs extend the WebVPN experience to include the SSL VPN Client and Cisco Secure Desktop.

You will explore the three components of the IOS Firewall Feature Set: IOS Stateful Firewall, Authentication Proxy, and IOS Intrusion Prevention System, and you'll examine the classic IOS Firewall as well as the new Zone-Based policy firewall. You will explore Layer 2 security, and in our exclusive labs, you'll examine several Layer 2 attacks and learn to use IOS switch security features to mitigate those attacks.

Discover Cisco's Network Foundation Protection, including Control Plane Policing and Control Plane Protection, Management Plane Protection, Data Plane Protection, and the next generation of ACL technology, Flexible Packet Matching. You'll also work with Trust and Identity using Cisco Secure Access Control Server (ACS) to provide RADIUS services used for 802.1x network access control including dynamic VLAN assignment. Our exclusive labs include using ACS with WebVPN and Authentication Proxy.


TOP


Course Objectives

In this course students will learn:

  • Layer 2 Security - Attack methods and techniques to mitigate the attacks
  • Trust and Identity - Authentication, Authorization, and Accounting using TACACS+ and RADIUS
  • 802.1x - Identity-based network access control, including dynamic VLAN assignment for end users
  • Network Foundation Protection - Secure an IOS router's control plane, management plane, and data plane, and use Flexible Packet Matching
  • VPN Connectivity:
    • IPSec Overview
    • Site-to-Site IPSec VPN using Pre-Shared Keys for Authentication
    • Site-to-Site IPSec VPN using Public Key Infrastructure and Digital Certificates for Authentication
    • Dynamic Multipoint VPN
    • Cisco IOS SSL VPN (WebVPN)
    • Easy VPN Server for Remote Access IPSec VPN
  • Protect your network with Cisco IOS Classic Firewall and Cisco IOS Zone-Based Policy Firewall
  • Provide identity-based access control through an IOS router using Authentication Proxy
  • Defend against threats on your network using IOS Intrusion Prevention Systems


TOP


Intended Audience

Internetwork professionals who want to ensure security of their network or who seek Cisco Certified Security Professional (CCSP) certification.

TOP


Course Outline

  1. Layer 2 Security Features
  2. Trust and Identity
  3. Network Foundation Protection
  4. Secured Connectivity
  5. Adaptive Threat Defense

 

Course Labs

  • Lab 1: Remote Lab Environment
  • Lab 2: Introduction to the Remote Lab Environment
  • Lab 3: Layer 2 Security
  • Lab 4: AAA and 802.1x Port Authentication and Authorization
  • Lab 5: Configure Network Foundation Protection
  • Lab 6: Site-to-Site VPN Using Pre-Shared Keys
  • Lab 7: Site-to-Site VPN Using Digital Certificates
  • Lab 8: DMVPN
  • Lab 9: IOS SSL VPN (WebVPN)
  • Lab 10: Configure Cisco Easy VPN Server
  • Lab 11: IOS Classic Firewall
  • Lab 12: IOS Zone-Based Firewall
  • Lab 13: IOS Authentication Proxy
  • Lab 14: IOS IPS

TOP



301-565-0138 : info@ccitraning.net

Courses | Schedule | Registration | Contact Us | Homepage | Related Links
Business/Enterprise Solutions | E-Learning | Consulting | Certification Packages | CISCO AES Courses | About Us

© Convergent Communications, Inc.