Implementing Cisco Network Security V3.0

Overview

This is a five-day instructor-led course that focuses on the design, implementation and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies. All IOS examples and hands on experience is done using the IOS CLI.  IPS is covered at the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA . Modern malware examples are provided, cryptographic techniques use stronger hashing and encryption algorithms, and current versions of IOS, Cisco ASA and Cisco AnyConnect are highlighted.

More labs have been incorporated  to ensure the maximum amount of hands on experience possible. There are two types of labs: Discovery and Challenge. A discovery is a guided lab exercise. Explicit directions are provided to the student to guide them through the activity. Along with the directions are scenarios and explanations specifying why the student is implementing the subject technology and the results after configuration are demonstrated.

Challenges, on the other hand, are evaluation labs. The set of tasks is provided to the student, but directions are not provided. There are job aids which the student may utilize, providing information such as IP addresses and command syntax, but no specific description of procedures. An answer key is available for students who wish to verify their techniques. The instructors will of course be on hand to revisit any areas that may need further clarification.

Days:

Course Code:

5

IINS

Pre-Requisites

Attendees should meet the following prerequisites:

  • ICND1 – Interconnecting Cisco Network Devices Part 1 is required.
Content

Security Concepts

  • Threatscape
  • Threat Defense Technologies
  • Security Policy and Basic Security Architectures
  • Cryptographic Technologies

Secure Network Devices

  • Implementing AAA
  • Management Protocols and Systems
  • Securing the Control Plane

Layer 2 Security

  • Securing Layer 2 Infrastructure
  • Securing Layer 2 Protocols

Firewall

  • Firewall Technologies
  • Introducing the Cisco ASA v9.2
  • Cisco ASA Access Control and Service Policies
  • Cisco IOS Zone Based Firewall

VPN

  • IPsec Technologies
  • Site-to-Site VPN
  • Client Based Remote Access VPN
  • Clientless Remote Access VPN

Advanced Topics

  • Intrusion Detection and Protection
  • Endpoint Protection
  • Content Security
  • Advanced Network Security Architectures

Labs

  • Challenge Lab 1: Configure AAA and Secure Remote Administration
  • Challenge Lab 2: Configure Secure Network Management Protocols
  • Challenge Lab 3: Configure Secure EIGRP Routing
  • Challenge Lab 4: Configure Secure Layer 2 Infrastructure
  • Challenge Lab 5: Configure DHCP Snooping and STP Protection
  • Challenge Lab 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge Lab 7: Configure Network Access Control with the Cisco ASA
  • Challenge Lab 8: Configure Site-to-Site VPN on IOS
  • Challenge Lab 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge Lab 10: Configure Clientless SSL VPN on the ASA
Objectives

After you complete this course you should be able to:

  • Describe the current threat landscape
  • Secure the management and control planes of network devices
  • Describe threat defense technologies
  • Secure the management and control planes of network devices
  • Configure AAA on Cisco IOS devices
  • Implement secure management for the Cisco ASA and Cisco IOS routers and switches
  • Secure the control plane
  • Secure the management and control planes of network devices
  • Implement layer 2 infrastructure security
  • Implement layer 2 protocol security
  • Configure management access and NAT on the Cisco ASA
  • Configure access control and service policies on the Cisco ASA
  • Describe IPsec
  • Implement a client-based remote access VPN
  • Implement a clientless remote access VPN
  • Describe IDS and IPS
  • Describe endpoint protection
  • Describe content security
  • Describe advanced network security architectures
Target Audience

This course is aimed at individuals wishing to gain an understanding of Cisco Security on the network or those looking to obatin the Cisco Certified Network Associate for Security Certification.

Certification

Recommended preparation for exams:

  • 210-260 – IINS Implementing Cisco Network Security

Delegates wishing to obtain the CCNA Security Certification will also need to have passed the ICND1 exam or the CCNA Routing and Switching composite exam.

Follow on Courses

Delegates looking to progress their Cisco Security Certification should consider the following courses.

  • SENSS -Implementing Cisco Edge Network Security Solutions
  • SIMOS – Implementing Cisco Secure Mobility
  • SISAS  – Implementing Cisco Secure Access Solutions
  • SITCS  – Implementing Cisco Threat Control Systems
vendors Course Code Course Title Days Date
Cisco Certifications in Dubai, Cisco Training in UAE
IINS Implementing Cisco Network Security V3.0 5 View All Dates

This public courses are pre-scheduled throughout the year at our premises

Online, live and interactive training accessible from anywhere

We can deliver standard or customised training at any time and location that suits your employees

Guaranteed courses are confirmed to run on the specific dates shown