Cisco Certified Inter-Network Expert (CCIE)

Cisco Certified Security Professional

Module 1

Securing Networks with Cisco Routers and Switches (SNRS 642-502) - 4 Hours

  • Cisco Secure ACS for Windows configuration
  • Configuring Cisco IOS Security Feature Set including IOS Firewall CBAC (Context-Based Access Control), Authentication Proxy and IPS (Intrusion Prevention System)
  • Layer 2 Security, including Cisco IBNS (Identity Based Network Services), and 802.1x Port-Based Authentication
  • Building Cisco IOS-based VPNs Using Cisco Routers and Pre-Shared Keys
  • Building Cisco IOS-based VPNs Using Cisco Routers and Certificate Authorities - Cisco IOS Remote Access Using Cisco Easy VPN
  • Cisco Security Device Manager (SDM).

Module 2

Securing Networks with PIX and ASA (SNPA 642-522) – 6 Hours

  • Cisco Security Appliance Technology and Features
  • Cisco PIX Security Appliance and ASA Adaptive Security Appliance Families
  • Getting Started with Cisco Security Appliances
  • Translations and Connections
  • Access Control Lists and Content Filtering
  • Object Grouping
  • Authentication, Authorization, and Accounting
  • Switching and Routing
  • Modular Policy Framework
  • Configuring Security Appliance Remote Access Using Cisco Easy VPN
  • Configuring ASA for WebVPN
  • Configuring Transparent Firewall
  • Configuring Security Contexts
  • Failover
  • Cisco Security Appliance Device Manager
  • Configuring PIX Security Appliance Remote Access Using Cisco Easy VPN

Module 3

Cisco Secure Virtual Private Networks (CSVPN 642-511) – 6 Hours

Introduction

  • Network Security and the Cisco Virtual Private Network
  • Overview of VPN and IPSec Technologies
  • Cisco Virtual Private Network 3000 Concentrator Series Hardware Overview
  • Configure Cisco VPN 3000 for Remote Access Using Pre-shared Keys
  • Configure Cisco VPN 3000 for Remote Access Using Digital Certificates
  • Configure Cisco VPN Firewall Feature for IPSec Software Client
  • Configure Cisco VPN Client Auto-initiation
  • Monitor and Administrator Cisco Virtual Private Network 3000 Remote Access Networks
  • Configure Cisco Virtual Private Network 3002 Hardware Client Remote Access
  • Configuring Cisco 3002 Hardware Client for user and unit authentication
  • Configuring Cisco 3002 Hardware Client for backup server, load balancing and reverse route
  • Configuring Cisco 3002 Hardware Client for software auto-update
  • Configuring Cisco 3002 Hardware Client for IPSec over TCP and UDP
  • Cisco VPN 3000 LAN-to-LAN with Pre-Shared Keys
  • Configure Cisco VPN Concentrator for LAN-toLAN Using NAT
  • Configure Cisco Virtual Private Network 3000 LAN-to-LAN Using Digital Certificates

Module 4

Implementing Cisco Intrusion Prevention System (IPS 642-532) – 2 Hours

  • Security Fundamentals
  • Intrusion Prevention Overview
  • Getting Started with the IDS Command Line Interface
  • Using IDM
  • Basic Sensor Configuration
  • Cisco Intrusion Detection System Alarms and Signatures
  • Signature Engines
  • Signature Configuration
  • Sensor Tuning
  • Alarm Monitoring and Management
  • Blocking Configuration
  • Capturing Network Traffic for Intrusion Detection Systems

Module 5

Securing Cisco Network Devices (SND 642-552) – 3 Hours

  • Introduction to Network Security Policies
  • Securing the Perimeter
  • Securing the LAN Devices
  • Configuring a Cisco IOS Firewall
  • Securing Networks with Cisco IOS IPS
  • Building IPSec VPNs
  • Copyright © Centric Technologies. All rights reserved