Utbildningar

QA-CIINS

Ladda ner som PDF

Implementing Cisco IOS Network Security

Implementing Cisco IOS Network Security (IINS) is a five-day instructor-led course focused on the design, implementation, and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies as examples.

The course covers security controls of Cisco IOS devices as well as a functional introduction to the Cisco ASA adaptive security appliance. Using instructor-led discussion, lecture, and hands-on lab exercises, this course allows students to perform basic tasks to secure a small branch office network using Cisco IOS security features that are available through web-based GUIs (Cisco Configuration Professional) and the CLI on Cisco routers, switches, and ASA appliances.

Target Audience:

  • Network designers
  • Network administrators
  • Network engineers
  • Network managers
  • System engineers

Certifications:

  • Cisco Certified Network Associate Security (CCNA Security)

the course prepares for exam 210-260 IINS: Implementing Cisco IOS Network Security

Hands-on Labs include:

  • Hardening Network Elements Using Cisco Configuration Professional
  • Securing Administrative Access to Cisco Routers
  • Configuring AAA on Cisco Routers and Switches to Use Cisco Secure ACS
  • Configuring Data Plane Security on Layer 2 Switches
  • Using ACLs to Implement a Threat Containment Strategy
  • Implementing Cisco IOS Zone-Based Firewalls
  • Implementing Basic Network Connectivity Using Cisco ASDM on the Cisco ASA Appliance
  • Configuring Cisco IOS IPS
  • Configuring Site-to-Site IPsec VPNs
  • Configuring SSL VPNs on Cisco ASA Appliances Using Cisco ASDM

Prior knowledge

  • Skills and knowledge equivalent to those learned in Interconnecting Cisco Network Devices Part 1 Version 1.1 (CICND1)
  • Working knowledge of the Windows operating system
  • Working knowledge of Cisco IOS networking and concepts

Objectives:

  • Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle
  • Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure
  • Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks
  • Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features
    • Course Outline:

      Module 1: Networking Security Fundamentals

      This module describes the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle.

      • Lesson 1: Introducing Networking Security Concepts
      • Lesson 2: Understanding Security Policies Using a Life-Cycle Approach
      • Lesson 3: Building a Security Strategy for Borderless Networks


      Module 2: Protecting the Network Infrastructure

      This module explains how to develop and implement security countermeasures aimed at protecting network elements as part of the network infrastructure. The module explains examples of control plane, data plane, and management plane security controls, within the Cisco Network Foundation Protection (NFP) framework,... Läs mer

      Objectives:

    • Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle
    • Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure
    • Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks
    • Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features
      • Course Outline:

        Module 1: Networking Security Fundamentals

        This module describes the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle.

        • Lesson 1: Introducing Networking Security Concepts
        • Lesson 2: Understanding Security Policies Using a Life-Cycle Approach
        • Lesson 3: Building a Security Strategy for Borderless Networks


        Module 2: Protecting the Network Infrastructure

        This module explains how to develop and implement security countermeasures aimed at protecting network elements as part of the network infrastructure. The module explains examples of control plane, data plane, and management plane security controls, within the Cisco Network Foundation Protection (NFP) framework, providing tools to implement those security controls as part of a security policy.

        • Lesson 1: Introducing Cisco Network Foundation Protection
        • Lesson 2: Protecting the Network Infrastructure Using Cisco Configuration Professional
        • Lesson 3: Securing the Management Plane on Cisco IOS Devices
        • Lesson 4: Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS
        • Lesson 5: Securing the Data Plane on Cisco Catalyst Switches
        • Lesson 6: Securing the Data Plane in IPv Environments

        Module 3: Threat Control and Containment

        This module explains how to deploy and maintain threat control and containment technologies for perimeter security in small and medium-sized networks.

        • Lesson 1: Planning a Threat Control Strategy
        • Lesson 2: Implementing Access Control Lists for Threat Mitigation
        • Lesson 3: Understanding Firewall Fundamentals
        • Lesson 4: Implementing Cisco IOS Zone-Based Policy Firewalls
        • Lesson 5: Configuring Basic Firewall Policies on Cisco ASA Appliances
        • Lesson 6: Understanding IPS Fundamentals
        • Lesson 7: Implementing Cisco IOS IPS

        Module 4: Secure Connectivity

        This module describes secure connectivity strategies and technologies using VPNs. The module also explains how to configure site-to-site and remote-access VPNs using Cisco IOS features.

        • Lesson 1: Understanding the Fundamentals of VPN Technologies
        • Lesson 2: Introducing Public Key Infrastructure
        • Lesson 3: Examining IPsec Fundamentals
        • Lesson 4: Implementing Site-to-Site VPNs on Cisco IOS Routers
        • Lesson 5: Implementing SSL VPNs Using Cisco ASA Appliances

        Notable differences between CIINS v2.0 and v3.0 (current version)

        There are several notable changes in this newly updated course. Cisco Configuration Professional is not covered in IINS 3.0. All IOS examples are hands-on and done using IOS CLI. IPv6 is not covered in IINS 3.0. IPv6 is now covered in ICND1. The implementation of IPS on IOS is not covered in IINS 3.0, instead IPS is covered on the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA in IINS 3.0. Also, modern malware examples are included in this course and cryptographic techniques use stronger hashing and encryption algorithms, and current version of IOS, Cisco ASA and Cisco AnyConnect are featured.

        Utbildningen levereras i samarbete med

        Kurs-ID: QA-CIINS
        Längd: 5 dagar
        Pris exkl moms: 25 116 kr

        Frågor om kursen?

        Har du frågor om kursens innehåll, leveransdatum/ort eller behöver en företagsanpassad variant? Fyll i formuläret nedan!


        Avtalsrabatter och kampanjer kan ej nyttjas på denna kurs.


        Ort och datum

        Cloud Access
        i Läs mer

        Delta på kursen från ditt hem, jobb eller annan plats.

        16 jan-20 jan
        Boka nu!
        27 mar-31 mar
        Boka nu!
        8 maj-12 maj
        Boka nu!
        19 jun-23 jun
        Boka nu!

        Tipsa