CCNA Security

CCNA Security 2018-05-08T15:43:13+00:00

CCNA Security

Course Length :  35 Hours

Course Description

The Implementing Cisco Network Security (IINS) course student will be learning secure network infrastructure, understanding core security concepts, managing secure access, VPN encryption, firewalls, intrusion prevention, web and email content security, and endpoint security.

Course Prerequisites

It is recommended that you have the following skills and knowledge before starting this course:

  • CCNA Routing and Switching.
  • Configure and manage users, groups, and shared resources in a simple SOHO network.
  • Understand the use of basic access control measures, such as authentication, security policy, encryption, and firewalls.

Outline

1.Security Concepts

  • Common security principles
  • Common security threats
  • Cryptography concepts
  • Describe network topologies

2.Secure Access

  • Secure management
  • AAA concepts
  • 1X authentication
  • Describe the BYOD architecture framework
  • Describe the function of mobile device management (MDM)

3.VPN

  • VPN concepts
  • Remote access VPN
  • Site-to-site VPN
  • Implement an IPsec site-to-site VPN with pre-shared key authentication on Cisco routers and ASA firewalls
  • Verify an IPsec site-to-site VPN

4.Secure Routing and Switching

  • Security on Cisco routers
  • Securing routing protocols
  • Common Layer 2 attacks
  • Mitigation procedures
  • VLAN security

5.Cisco Firewall Technologies

  • Describe operational strengths and weaknesses of the different firewall technologies Proxy firewalls
  • Application firewall
  • Personal firewall
  • Compare stateful vs. stateless firewalls
  • Operations
  • Function of the state table
  • Implement NAT on Cisco ASA 9.x
  • Implement zone-based firewall
  • Zone to zone
  • Self zone
  • Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x
  • Configure ASA access management
  • Configure security access policies
  • Configure Cisco ASA interface security levels
  • Configure default Cisco Modular Policy Framework (MPF)
  • Describe modes of deployment (routed firewall, transparent firewall)
  • Describe methods of implementing high availability
  • Describe security contexts
  • Describe firewall services

6.IPS

  • Describe IPS deployment considerations
  • Network-based IPS vs. host-based IPS
  • Modes of deployment (inline, promiscuous – SPAN, tap)
  • Placement (positioning of the IPS within the network)
  • False positives, false negatives, true positives, true negatives
  • Describe IPS technologies
  • Rules/signatures
  • Detection/signature engines
  • Trigger actions/responses (drop, reset, block, alert, monitor/log, shun)
  • Blacklist (static and dynamic)

7.Content and Endpoint Security

  • Describe mitigation technology for email-based threats
  • SPAM filtering, anti-malware filtering, DLP, blacklisting, email encryption
  • Describe mitigation technology for web-based threats
  • Local and cloud-based web proxies
  • Blacklisting, URL filtering, malware scanning, URL categorization, web application filtering, TLS/SSL decryption
  • Describe mitigation technology for endpoint threats
  • Anti-virus/anti-malware
  • Personal firewall/HIPS
  • Hardware/software encryption of local data
Online Course Fee Payment
Other Amount:
Your Email Address:

 CCNA Security

  • Duration :   35 Hours
  • Certificates :   Yes
Online Course Fee Payment
Other Amount:
Your Email Address:

Quick Facts

The Implementing Cisco Network Security (IINS) course student will be learning secure network infrastructure, understanding core security concepts, managing secure access, VPN encryption, firewalls, intrusion prevention, web and email content security, and endpoint security.