Securing Networks with Cisco Routers and Switches v1.0 SECURE

Course Specifications

Course length: 5 days
Course Description
Exam: 642-618
CCNP

The Securing Networks with Cisco Routers and Switches (SECURE) 1.0 course is an instructor-led course that is presented by Cisco Learning Partners to their end-user customers. This five-day course aims at providing network security engineers with the knowledge and skills they need to secure Cisco IOS Software router- and switch-based networks, and provide security services that are based on Cisco IOS Software. Successful graduates will be able to secure the network environment using existing Cisco IOS Software features. In addition, they will be able to install and configure components of the Cisco IOS Software, such as a zone-based policy firewall, Cisco IOS Intrusion Prevention System (IPS), and a CiscoPyraminduser-based firewall. They will also be able to install secure tunnels using IP Security (IPsec) virtual private network (VPN) technology. This technology includes public key infrastructure (PKI), virtual tunnel interface (VTI) and dynamic virtual tunnel interface (DVTI), Group Encrypted Transport VPN (GET VPN), Dynamic Multipoint Virtual Private Network (DMVPN), Secure Sockets Layer (SSL) VPN, and advanced switch security features. The course focuses on the implementation and troubleshooting aspects of the Lifecycle Services approach, adding some elements of the design phase as well.

Register Now

Target Student: The following lists the skills and knowledge that learners must possess to benefit fully from the course. This also includes recommended Cisco learning offerings that learners should first complete to benefit fully from this course.
Working knowledge of the Microsoft Windows operating system

Cisco CCNA certification:
Interconnecting Cisco Network Devices Part 1 (ICND1)
Interconnecting Cisco Network Devices Part 2 (ICND2)
Cisco CCNA Security certification:
Implementing Cisco IOS Network Security (IINS)

Performance-Based Objectives

Evaluate components of Cisco IOS Software NFP; choose, configure, and troubleshoot Cisco Catalyst IOS Software switched infrastructure protection controls, evaluate Cisco IBNS components and choose authentication protocols; choose, configure, and troubleshoot basic and advanced Cisco Catalyst IOS Software 802.1X authenticator and Cisco Secure ACS features; implement and maintain Cisco IOS Software routed data plane security controls; choose, configure, and troubleshoot advanced Cisco IOS Software control plane security controls; choose, configure, and troubleshoot advanced Cisco IOS Software management plane security controls
Configure and troubleshoot the basic features of Cisco IOS NAT; configure and troubleshoot the basic and advanced features of a Cisco IOS Zone-Based Policy Firewall; configure and troubleshoot the features of Cisco IOS IPS
Evaluate Cisco IOS site-to-site VPN technologies; configure and troubleshoot Cisco IOS VTI-based site-to-site IPsec VPNs; configure and troubleshoot PKI integration in Cisco IOS site-to-site IPsec VPNs; configure and troubleshoot a Cisco IOS DMVPN network; choose and configure Cisco IOS site-to-site IPsec VPN high availability features; configure and troubleshoot a Cisco IOS GET VPN network
Evaluate Cisco IOS Software remote access VPN technologies; configure and troubleshoot a Cisco IOS Software SSL VPN gateway; configure and troubleshoot a Cisco IOS Software Easy VPN Remote device and gateway

Course Content

Lesson 1: Deploying Cisco IOS Software Network Foundation Protection
Topic 1A: Deploying Network Foundation Protection Controls
Topic 1B: Deploying Advanced Switched Data Plane Security Controls
Topic 1C: Implementing Cisco Identity-Based Network Services
Topic 1D: Deploying Basic 802.1X Features
Topic 1E: Deploying Advanced Routed Data Plane Security Controls
Topic 1F: Deploying Advanced Control Plane Security Controls
Topic 1G: Deploying Advanced Management Plane Security Controls

Lesson 2: Deploying Cisco IOS Software Threat Control and Containment
Topic 2A: Deploying Cisco IOS Software Network Address Translation
Topic 2B: Deploying Basic Zone-Based Policy Firewalls
Topic 2C: Deploying Advanced Zone-Based Policy Firewalls
Topic 2D: Deploying Cisco IOS Software IPS

Lesson 3: Deploying Cisco IOS Software Site-to-Site Transmission Security
Topic 3A: Site-to-Site VPN Architectures and Technologies
Topic 3B: Deploying VTI-Based Site-to-Site IPsec VPNs
Topic 3C: Deploying Scalable Authentication in Site-to-Site IPsec VPNs
Topic 3D: Deploying DMVPNs
Topic 3E: Deploying High Availability in Tunnel-Based IPsec VPNs
Topic 3F: Deploying GET VPN

Lesson 4: Deploying Secure Remote Access with Cisco IOS Software
Topic 4A: Remote Access VPN Architectures and Technologies
Topic 4B: Deploying Remote Access Solutions Using SSL VPN
Topic 4C: Deploying Remote Access Solutions Using Cisco Easy VPN

Appendix A: Case Study: Configuring and Verifying Basic 802.1X Features
Appendix B: Deploying Advanced 802.1X Features
Appendix C: Case Study: Configuring and Verifying Advanced 802.1X Features

Register Now