|
Cisco CCNP Certification Training ISCW 1.0: Implementing Secure Converged Wide Area Networks
 With the Cisco CCNP ISCW certification course you will lratn to recognize Cisco
architectural framework models and network requirements, and how remote connections are established. How to configure a network of hosts over a bridging DSL
CPE access device to an aggregate router and verify broadband ADSL configurations for Layer 1 and Layer 2. With the training from the ISCW certification course you will
learn to recognize the MPLS architecture and functionality, configure frame mode MPLS on IOS routers, and distinguish between MPLS VPN and traditional VPN
operation and how IPSec VPNs operate and configure a site-to-site IPsec VPN. The course also covers implementing IPSec site-to-site VPNs using SDM and GRE
tunnels, and provide high-availability VPNs using backup interfaces and the components and operation of Cisco Easy VPN, and configure Easy VPN Server and
the VPN client for Easy VPN Remote access. The Cisco training will also encompass the Cisco Self-Defending Network strategy, secure enterprise networks
from various attacks, disable unnecessary network services and how to secure Cisco routers by protecting the router administrative interface using password features and role-based CLI, and recognize how to mitigate
network threats and attacks by using ACLs to filter traffic.Learn about the secure enterprise networks by implementing Cisco IOS
Firewalls, Cisco IOS IPS using CLI and SDM and the features of secure management and reporting, and securely implement them, and configure and troubleshoot AAA on a Cisco systems router
Target Audience
Network administrators; network engineers; network managers; systems managers; network designers who wish to validate their
ability to install, configure and troubleshoot converged local and wide area networks with 100 to 500 nodes
Prerequisites
Completion of the course Interconnecting Cisco Network Devices ICND 1 & 2 CCNA Certification.
Our ISCW Training includes:
- Over 24 hours of full-multi-media interactive training
- Simulated Router and Switch Labs
- Cisco Book
- 24 x 7 learner support by expert mentors via chat for one year
- Available in CD-ROM format or Online
- Simulated Certification Practice Exams
- We also offer Live Class Nationally and Live Boot Camps
You will learn:
- To recognize Cisco architectural framework models and network requirements, and how remote connections are established.
- To configure a network of hosts over a bridging DSL CPE access device to an aggregate router and verify broadband ADSL configurations for Layer 1 and Layer 2.
- To recognize the MPLS architecture and functionality, configure frame mode MPLS on IOS routers, and distinguish between MPLS VPN and traditional VPN operation.
- To recognize how IPSec VPNs operate and configure a site-to-site IPsec VPN.
- To implement IPSec site-to-site VPNs using SDM and GRE tunnels, and provide high-availability VPNs using backup interfaces.
- To recognize the components and operation of Cisco Easy VPN, and configure Easy VPN Server and the VPN client for Easy VPN Remote access.
- To recognize the Cisco Self-Defending Network strategy, secure enterprise networks from various attacks, and disable unnecessary network services.
- To secure Cisco routers by protecting the router administrative interface using password features and role-based CLI, and recognize how to mitigate network threats and attacks by using ACLs to filter traffic
- To secure enterprise networks by implementing Cisco IOS Firewalls and Cisco IOS IPS using CLI and SDM.
- To recognize the features of secure management and reporting, and securely implement them, and configure and troubleshoot AAA on a Cisco systems router
|
CD-ROM ISCW Training Course
|
skiscwcd
|
$395.00
|
|
|
Online ISCW Training Course
One Year Access
|
skiscwon
|
$365.00
|
|
|
CD-ROM CCNP Certification Course
BCMSN, BSCI, ISCW, ONT
with Books, Mentoring, Simulated labs and test preps
|
skccnpcd
|
$899.00
|
|
|
Online CCNP Certification Course
BCMSN, BSCI, ISCW, ONT
One Year Access
with Books, Mentoring, Simulated labs and test preps
|
skccnpon
|
$799.00
|
|
|
Training Course Content
1.) Network Connectivity
- recognize the IIN and the SONA architectural framework.
- recognize the Cisco network models in the Cisco Enterprise Architecture and their mapping to a traditional three-layer
hierarchical network model, and remote connection requirements in a converged network.
- recognize the typical remote connections that an enterprise network has to support, the challenges of connecting the teleworker, and the Business-Ready Teleworker solution.
- identify basic cable technology terms, standards organizations, and RF signaling terms.
- recognize how data services are delivered over an HFC architecture, the various cable components and their issues, and how
a cable modem is provisioned to work in a SOHO of a subscriber using TCP/IP.
- identify the features, types, and distance limitations of DSL.
- recognize ADSL technology, how it coexists with traditional telephony service, and its encapsulation types.
- recognize how data is transmitted over ADSL using PPPoE and PPPoA.
- specify the Cisco Enterprise Architecture, how to provision a cable modem, and how to establish the discovery stage of a PPPoE session in a given scenario.
2.) Configuring the Cisco CPE and Verifying Broadband ADSL
- recognize how to configure the PPPoE client and PAT.
- recognize how to configure and verify DHCP and static default routes.
- recognize how to verify a PPPoE configuration, and how to configure PPPoA and the DSL ATM Interface.
- configure a Cisco ADSL router as a PPPoE client in a given scenario.
- identify if Layer 1 is causing a failed ADSL service.
- identify if Layer 2 is causing a failed ADSL service.
3.) Frame Mode MPLS Implementation
- recognize the elements of the MPLS conceptual model and the router switch mechanisms.
- recognize the main components of the MPLS architecture, the structure and format of an MPLS label, and the function of LSRs.
- recognize how labels are allocated, distributed, and advertised in a frame mode MPLS network.
- recognize how routers populate the LFIB database, how IP packets cross an MPLS network, and how PHP enhances MPLS performance.
- recognize how to configure frame mode MPLS on a Cisco IOS router.
- configure frame mode MPLS on IOS routers to link a network into the ISP's network, given a scenario.
- recognize MPLS VPN architecture and how it improves on traditional methods of overlay and peer-to-peer VPN.
- recognize how routing information is propagated across the P-network.
- recognize the end-to-end flow of routing updates in an MPLS VPN.
4.) IPSec VPNs
- recognize the basic functions and advantages of the IPSec protocol and the IKE protocols.
- recognize the functionality available within IKE.
- recognize the functions of the ESP and AH IPsec protocols, and message authentication and integrity check using hash.
- recognize the operation of asymmetric and encryption algorithms.
- recognize the elements and operation of the PKI environment.
- recognize how a site-to-site IPSec VPN operates.
- recognize how to configure a site-to-site IPSec VPN.
- configure a site-to-site IPSec VPN with preshared keys authentication, using CLI in a given scenario.
5.) Cisco IPSec VPN Configuration
- recognize how to navigate the site-to-site VPN wizard interface, the components configured by the SDM site-to-site VPN
wizard, how to launch the wizard, and how to set the parameters of the site-to-site VPN tunnel.
- recognize how to define the traffic that the VPN protects and how to complete the configuration by viewing the settings in the Summary window.
- recognize the characteristics of GRE, the purpose of secure GRE tunnels and how to configure them, how to set the
parameters of the site-to-site VPN tunnel, and how to configure IKE using SDM.
- recognize how to configure the IPSec transform set using the SDM wizard, how to configure routing, and how to view the settings in the Summary window.
- recognize how high availability for IPSec VPNs is achieved and the use of IPSec backup peers.
- recognize HSRP operation, IPSec stateful failover functionality, and how to back up a WAN connection using an IPSec VPN.
- remove an IPSec VPN after a successful back up of a WAN connection in a given scenario.
6.) Configuring Cisco Easy VPN
- recognize the components, operation, and benefits of Cisco Easy VPN, and the functionality of Easy VPN Server and Easy VPN Remote.
- recognize how to configure Easy VPN Server and IKE, and the storage locations for Easy VPN group policies.
- recognize where to store user records for Xauth, how to configure local group policies, and how to view configuration settings in the Summary window.
- configure a Cisco router to use Easy VPN Server in a given scenario.
- recognize how to install the VPN client and create a new client connection entry when configuring the VPN client.
- recognize how to configure mutual group authentication, transparent tunneling, and backup servers when configuring the VPN client.
7.) Mitigating Network Attacks and Disabling Unused Services
- recognize the Cisco self-defense network strategy and the types of attacks that enterprise networks must defend against.
- recognize reconnaissance attacks and how to mitigate them.
- recognize access attacks and how to mitigate them.
- recognize DoS attacks and how to mitigate them.
- recognize malicious software and application layer attacks, and how to mitigate them.
- recognize vulnerabilities in configuration management protocols and how to mitigate them, and how to use open source tools to discover network vulnerabilities and threats.
- recognize router services and interfaces that are vulnerable to attack and how to secure routers with AutoSecure.
- recognize how to configure AutoSecure on a Cisco router.
- recognize how to lock down routers with SDM.
- recognize how to secure Cisco router administrative access by using the SDM Security Audit wizard in a given scenario.
8.) Securing Routers, Administrative Access, and Access Lists
- recognize how to secure administrative access to Cisco routers by configuring passwords.
- recognize how to secure administrative access to Cisco routers by setting login failure rates, timeouts, multiple privilege levels, and banner messages.
- recognize the function of role-based CLI, how to configure it, and how to secure configuration files.
- configure a Role-Based CLI view in a given scenario.
- recognize ACL types, formats, and development guidelines, and how to apply ACLs to router interfaces.
- recognize the use of traffic filtering with ACLs to mitigate network threats and how to implement ACLs.
- recognize how to configure router ACLs to mitigate distributed DoS attacks, how to combine ACL functions, and caveats when building ACLs.
9.) IOS Firewalls and IOS IPS
- recognize the basic structure of a layered defense, and the strengths and weaknesses of the three firewall technologies.
- recognize the operation of a stateful firewall and the key features of the Cisco IOS Firewall Feature Set.
- recognize the functions and process of the Cisco IOS Firewall.
- recognize how to configure Cisco IOS Firewall from the CLI.
- distinguish between the Basic and Advanced Firewall Configuration wizards, and recognize how to configure a basic firewall using its wizard.
- recognize how to configure an advanced firewall using the Advanced Firewall Configuration wizard.
- configure a Cisco IOS Firewall in a given scenario.
- distinguish between the functions and operations of IDS and IPS systems.
- recognize the types of IDS and IPS signatures.
- recognize how to configure IPS on Cisco IOS routers and SDF locations.
- recognize how to view IPS policies, customize IPS policies and global settings, view SDEE messages, and tune IPS signatures using SDM.
10.) Securing Management Features and AAA
- recognize the considerations when planning the secure management and reporting of network devices and the factors that affect their architecture.
- recognize how to configure an SSH server, the function of syslog, and how to configure it on Cisco routers.
- recognize the security features of SNMPv3 and how to configure SNMPv3 on a Cisco IOS router.
recognize how to configure an NTP client and a Cisco router as an NTP server.
- secure Cisco router administrative access and configure authenticated NTP communications in a given scenario.
- recognize the concepts and implementation of AAA services, and its protocols, RADIUS and TACACS+.
- recognize how to configure the AAA server.
- recognize how to troubleshoot AAA on a Cisco perimeter router.
- configure AAA login authentication in a given scenario.
|
