HBFITES Data Center, Collaboration, Security, Storage, Wireless, Telepresence Training +91-9886770046 info@hbfites.com

IINS v2.0 - Implementing Cisco IOS Network Security

Description

Implementing Cisco IOS Network Security (IINS) v2.0 is a five-day instructor-led course that is presented by Cisco Learning Partners to end users and channel partner customers. The content focuses on the design, implementation, and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies as examples. The course covers security controls of Cisco IOS devices as well as a functional introduction to the Cisco ASA adaptive security appliance. Using instructor-led discussion, lecture, and hands-on lab exercises, this course allows students to perform basic tasks to secure a small branch office network using Cisco IOS security features that are available through web-based GUIs (Cisco Configuration Professional) and the CLI on Cisco routers, switches, and ASA appliances.

Objectives

Upon completing this course, the student will be able to meet these overall objectives:

  • Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle
  • Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure
  • Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks
  • Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features

Prerequisites

The knowledge and skills that a student must have before attending this course are as follows:

  • Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
  • Working knowledge of the Windows operating system
  • Working knowledge of Cisco IOS networking and concepts

Who Should Attend

The primary audience for this course is as follows:

  • Network designers
  • Network administrators
  • Network engineers
  • Network managers
  • System engineers

Outline

  • Module 1: Networking Security Fundamentals
    • Lesson 1: Introducing Networking Security Concepts
    • Lesson 2: Understanding Security Policies Using a Life-Cycle Approach
    • Lesson 3: Building a Security Strategy for Borderless Networks
  • Module 2: Protecting the Network Infrastructure
    • Lesson 1: Introducing Cisco Network Foundation Protection
    • Lesson 2: Protecting the Network Infrastructure Using Cisco Configuration Professional
    • Lesson 3: Securing the Management Plane on Cisco IOS Devices
    • Lesson 4: Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS
    • Lesson 5: Securing the Data Plane on Cisco Catalyst Switches
    • Lesson 6: Securing the Data Plane in IPv6 Environments
  • Module 3: Threat Control and Containment
    • Lesson 1: Planning a Threat Control Strategy
    • Lesson 2: Implementing Access Control Lists for Threat Mitigation
    • Lesson 3: Understanding Firewall Fundamentals
    • Lesson 4: Implementing Cisco IOS Zone-Based Policy Firewalls
    • Lesson 5: Configuring Basic Firewall Policies on Cisco ASA Appliances
    • Lesson 6: Understanding IPS Fundamentals
    • Lesson 7: Implementing Cisco IOS IPS
  • Module 4: Secure Connectivity
    • Lesson 1: Understanding the Fundamentals of VPN Technologies
    • Lesson 2: Introducing Public Key Infrastructure
    • Lesson 3: Examining IPsec Fundamentals
    • Lesson 4: Implementing Site-to-Site VPNs on Cisco IOS Routers
    • Lesson 5: Implementing SSL VPNs Using Cisco ASA Appliances

    Lab Outline

    • Lab 2-1: Hardening Network Elements Using Cisco Configuration Professional
    • Lab 2-2: Securing Administrative Access to Cisco Routers
    • Lab 2-3: Configuring AAA on Cisco Routers and Switches to Use Cisco Secure ACS
    • Lab 2-4: Configuring Data Plane Security on Layer 2 Switches
    • Lab 3-1: Using ACLs to Implement a Threat Containment Strategy
    • Lab 3-2: Implementing Cisco IOS Zone-Based Firewalls
    • Lab 3-3: Implementing Basic Network Connectivity Using Cisco ASDM on the Cisco ASA Appliance
    • Lab 3-4: Configuring Cisco IOS IPS
    • Lab 4-1: Configuring Site-to-Site IPsec VPNs
    • Lab 4-2: Configuring SSL VPNs on Cisco ASA Appliances Using Cisco ASDM