Course Details
Overview
Implementing Cisco Network Security (IINS) v3.0 is a 5-day instructor-led course presented by Cisco Learning Partners to end users and channel partner customers. The course focuses on security principles and technologies, using Cisco security products to provide hands-on examples. Using instructor-led discussions, extensive hands-on lab exercises, and supplemental materials, this course allows learners to understand common security concepts, and deploy basic security techniques utilizing a variety of popular security appliances within a “real-life” network infrastructure.
Associated Certification:
Objectives
Upon completion of the course, students will have the knowledge and skills to:
- Describe common network security concepts
- Secure routing and switching infrastructure
- Deploy basic authentication, authorization and accounting services
- Deploy basic firewalling services
- Deploy basic site-to-site and remote access VPN services
- Describe the use of more advanced security services such as intrusion protection, content security and identity management
Outline
Module 1 Security Concepts
- Threatscape
- Threat defense technologies
- Security policy and basic security architectures
- Cryptographic technologies
Module 2 Secure Network Devices
- Implementing AAA
- Management protocols and systems
- Securing the control plane
Module 3 Layer 2 Security
- Securing layer 2 infrastructures
- Securing layer 2 protocols
Module 4 Firewall
- Firewall technologies
- Introducing the Cisco ASA v9.2
- Cisco ASA access control and service policies
- Cisco IOS zone based firewall
Module 5 VPN
- IPsec technologies
- Site-to-Site VPN
- Client based remote access VPN
- Clientless remote access VPN
Module 6 Advanced Topics
- Intrusion detection and protection
- Endpoint protection
- Content Security
- Advanced network security architectures
Labs
- Discovery 1: Exploring Cryptographic Technologies
- Discovery 2: Configure and Verify AAA
- Discovery 3: Configuration Management Protocols
- Discovery 4: Securing Routing Protocols
- Discovery 5: VLAN Security and ACLs on Switches
- Discovery 6: Port Security and Private VLAN Edge
- Discovery 7: Securing DHCP, ARP, and STP
- Discovery 8: Explore Firewall Technologies
- Discovery 9: Cisco ASA Interfaces and NAT
- Discovery 10: Access Control Using the Cisco ASA
- Discovery 11: Exploring Cisco IOS Zone-Based Firewall
- Discovery 12: Explore IPsec Technologies
- Discovery 13: IOS-Based Site-to-Site VPN
- Discovery 14: ASA-Based Site-to-Site VPN
- Discovery 15: Remote Access VPN: ASA and AnyConnect
- Discovery 16: Clientless Remote Access VPN
- Challenge 1: Configure AAA and Secure Remote Administration
- Challenge 2: Configure Secure Network Management Protocols
- Challenge 3: Configure Secure EIGRP Routing
- Challenge 4: Configure Secure Layer 2 Infrastructure
- Challenge 5: Configure DHCP Snooping and STP Protection
- Challenge 6: Configure Interfaces and NAT on the Cisco ASA
- Challenge 7: Configure Network Access Control with the Cisco ASA
- Challenge 8: Configure Site-to-Site VPN on IOS
- Challenge 9: Configure AnyConnect Remote Access VPN on ASA
- Challenge 10: Configure Clientless SSL VPN on the ASA
Target Audience
- Channel Partner / Reseller
- Customer
- Employee
Prerequisites
- Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
- Working knowledge of the Windows operating system
- Working knowledge of Cisco IOS networking and concepts