ExitCertified Formation Formation de Java Solaris Red Hat IBM Symantec Siebel PeopleSoft
 
ExitCertified Formation Formation de Java Solaris Red Hat IBM Symantec Siebel PeopleSoft
 
start courses and schedules education savings it certification education solutions
recherche de formation
Faites confiance à votre formation en TI   |
Oracle University reconnaît ExitCertified comme Partenaire en formation de l’année en Amérique du Nord.

IINS - Implementing Cisco IOS Network Security

Format: Formation en classe avec formateur
Autres formats:
 
 

In this course, you'll focus on the necessity of a comprehensive securitypolicy and how it affects the posture of the network. You will also learn how toanalyze and mitigate attacks, taking the mystery out of them.

You will learn to perform basic tasks to secure a small branch type officenetwork using Cisco IOS security features available through web-based GUIs(Cisco Router and Security Device Manager [SDM]) and the command-line interface(CLI) on the Cisco routers and switches.

We made significant enhancements to the standard IINS course materials andlab exercises, providing you with information that is vital for securityprofessionals. Exclusive lessons and labs you won't find anywhere else include:

  • Self-signed certificate management in IOS routers
  • Spoof mitigation with Unicast reverse path forwarding
  • Route table protection with route authentication
  • Ethical hacking
  • NAT coverage
  • GRE over IPsec, which provides a VPN solution that is compatible with ZBF

Our IINS course covers everything you need to prepare for the CCNA Securitycertification exam. In addition, our exclusive material provides the biggerpicture and adds relevancy so the standard concepts are easier to understand,retain, and put into practice.

You Get...

  • Five extra security e-Lab credits, good for 30 days, so you can practice and refine your skills
  • Enhanced content that exceeds standard authorized Cisco content
  • World-class Certified Cisco Systems instructors
  • An enhanced lab topology based on our Flexible Security Architecture that represents a real-world network
 
 

Compétences acquises
 
  • Develop a comprehensive network security policy to counter threatsagainst information security
  • Configure routers with Cisco IOS Software security features, includingmanagement and reporting functions
  • Configure a Cisco IOS zone-based firewall (ZBF) to perform basic securityoperations on a network
  • Configure site-to-site VPNs using Cisco IOS features
  • Configure IPS on Cisco network routers
  • Configure security features on IOS switches to mitigate various Layer 2attacks
  • Configure Network Address Translation (NAT) to allow connectivity fromthe internal network to the external network
  • How a network can be compromised using freely available tools
  • Implement line passwords, and enable passwords and secrets
  • Examine Authentication, Authorization, and Accounting (AAA) concepts andfeatures using the local database
  • Run an SDM security audit and analyze the results
  • Configure packet filtering on the Perimeter Router
  • Define a virtual tunnel interface Using GRE with IPsec

Qui peut en profiter
 
  • Network designers
  • Network and security administrators
  • Network, systems, and security engineers
  • Network and security managers

Préalables
 
  • ICND1 and ICND2 or CCNA Boot Camp
  • Working knowledge of the Windows operating system
 
Enroll For This Class
Enroll For This Class
Cisco Training Class Ce cours de qualité supérieure est donné par des formateurs certifiés.

Il y a une différence. Découvrez-la
Training Class Enrollment Ask A Question About This Training
Code: 5241
Format: Formation en classe avec formateur
Durée: 5 days
Certifié par: Cisco
Frais d’inscription (CAD): 3,295$
TrainingIndustry.com selects ExitCertified as a Top 20 IT Training Company for 2011
Recherchez des cours semblables
Cours connexes

Trier l'horaire par: 
No Course Dates Ce cours n'est pas prévu à l'horaire pour l'instant. Si vous êtes intéressé à suivre ce cours, utilisez le lien ci-dessous pour demander une date.
   
demander la date/l’emplacement demander de la formation sur place
 

IINS - Implementing Cisco IOS Network Security Contenu détaillé
 
 
1. Exclusive - NAT and PAT
  • Basics of NAT and PAT
  • Configuring NAT and PAT
  • Maintaining NAT and PAT
  • Advanced Concepts
2. Introduction to Network Security Principles
  • Network Security Fundamentals
  • Network Attack Methodologies
  • Operations Security
  • Security Policy
  • Building Cisco Self-Defending Networks
  • Cryptographic Services
  • Symmetric Encryption
  • Cryptographic Hashes and Digital Signatures
  • Asymmetric Encryption and PKI
3. Perimeter Security
  • Securing Administrative Access to Cisco Routers
  • Cisco SDM
  • Configuring AAA on a Cisco Router Using the Local Database
  • Configuring AAA on a Cisco Router to Use Cisco Secure ACS
  • Implementing Secure Management and Reporting
  • Locking Down the Router
4. Network Security Using Cisco IOS Firewalls
  • Firewall Technologies
  • Creating Static Packet Filters Using ACLs
  • Configuring Cisco IOS Zone-Based Policy Firewall
5. Site-to-Site VPNs
  • IPsec Fundamentals
  • Building a Site-to-Site IPsec VPN
  • Configuring IPsec on a Site-to-Site VPN Using Cisco SDM
  • Exclusive - IPsec over GRE
6. Network Security Using Cisco IOS IPS
  • IPS Technologies
  • Configuring Cisco IOS IPS Using Cisco SDM
7. LAN, SAN, Voice, and Endpoint Security Overview
  • Endpoint Security
  • SAN Security
  • Voice Security
  • Mitigating Layer 2 Attacks
Lab 1: Exclusive - Network Address Translation
  • Test and Verify NAT
  • Verify the Configurations
Lab 2: Ethical Hacking
  • Use Nmap to Scan the Network
  • Exclusive - Perform Vulnerability Analysis with Nessus
  • Exclusive - Execute a Buffer Overflow Attack with Metasploit
  • Exclusive - Perform a Port Forwarding Attack with Fpipe
  • Exclusive - Launch a SYN Flood Attack with Hping
  • Exclusive - Simulate Worm Propagation
  • Exclusive - Perform an ARP Cache Poisoning Attack with Cain
Lab 3: Securing IOS Administrative Access
  • Set Passwords on the Physical Lines
  • Configure Enable and Enable Secret Passwords
  • Set VTY Line Passwords
  • Use Service Password Encryption
  • Exclusive - How Secure are Encrypted Passwords?
  • Exclusive - How Secure are Hashed Passwords?
  • Password Min-Length
  • Line Timeouts
  • Exclusive - Privilege Levels
  • Configure Banner Messages
  • Verify the IOS-FW Configuration
 
Lab 4: Exclusive - Preparing Cisco SDM
  • Prepare the Admin PC for SDM
  • Prepare the IOS-FW for SDM
  • Install SDM on the Admin PC
  • Launch SDM
  • Manage IOS-FW Keys and Certificates
  • Launch SDM again
  • Verify Router Configuration
Lab 5: Configuring IOS AAA with the Local Database
  • Enable AAA
  • Test AAA
  • Define and Test other Usernames
  • Configure Role-Based CLI
  • Exclusive - Role-Based CLI and AAA Authorization
  • Exclusive - SDM's Built-In Roles
  • Enhanced Login Features
  • Verify the Router Configuration
Lab 6: Configuring IOS AAA with ACS
  • Connect to ACS
  • Set Up IOS-FW to ACS Communication
  • Define a New Group and User in ACS
  • Configure ACS-Based Authentication and Authorization
  • Test ACS-Based Authentication and Authorization
  • Configure ACS and Active Directory Integration
  • Exclusive - Test the Fallback Method
  • Exclusive - Command Authorization Sets
  • AAA Accounting
  • Verify the Router Configuration
Lab 7: IOS Secure Management and Reporting
  • Configure SSH Server
  • Configure NTP on the IOS-FW and Perimeter Router
  • Configure Syslog on the IOS-FW
  • Configure Syslog on the Perimeter Router
  • Exclusive - Configure Unicast-RPF Verification
  • Exclusive - Configure Route Authentication
  • Verify the Router Configuration
Lab 8: Securing IOS Router Services
  • Run a Mock Security Audit
  • Run a Real Security Audit
  • Perform Configuration Adjustments
  • Verify the Router Configuration
Lab 9: Packet Filtering Using ACLs
  • Limit VTY Access
  • Filter Bogon Packets, Allow Outbound Connections
  • Exclusive - Understand Packet Filter Limitations
  • Allow Expected Traffic to the DMZ Server
  • Allow Other Services from the Inside
  • Test ACL Policy
  • Exclusive - Insert Lines into an Existing ACL
  • Verify Router Configuration
Lab 10: IOS Zone-Based Firewall
  • Basic Firewall Wizard
  • Exclusive - Implement the DMZ Inbound
  • Exclusive - Implement the DMZ Outbound
  • Exclusive - Allow Perimeter Router Management
  • Exclusive - Demonstrate Attack Mitigation
  • Verify the Router Configuration
Lab 11: Site-to-Site VPN: Traditional IPsec
  • Verify No Tunnel/No Connectivity
  • Exclusive - Prepare the Perimeter Router for the Tunnel
  • Prepare the IOS-FW for the Tunnel
  • Use the Site to Site VPN Wizard
  • Verify VPN Status
  • Verify the Router Configuration
Lab 12: Exclusive - Site-to-Site VPN: GRE and IPsec
  • Prepare the Perimeter Router for the Tunnel
  • Use the VPN Wizard
  • Review the Updated Firewall Policy
  • Generate, Update and Apply the Mirror Configuration
  • Troubleshoot the Tunnel
  • Verify the Router Configuration
Lab 13: IOS Intrusion Prevention System
  • IOS IPS Wizard
  • Exclusive - Deobfuscation
  • Signature Definitions
  • Exclusive - IPS Manager Express
  • Signature Actions
  • Exclusive - Event Action Overrides
  • Exclusive - Event Action Filters
  • Verify the Router Configuration
Lab 14: Layer 2 Security
  • Exclusive - Perform Port Based Attacks
  • Configure Port Security
  • Exclusive - Demonstrate Attack Mitigation
  • Exclusive - Perform an ARP Cache Poisoning Attack
  • Exclusive - Configure Private VLAN Edge
  • Verify the Switch Configuration


  ExitCertified is your Authorized IT Training Partner  
  Lorsque vous suivez un cours certifié chez ExitCertified, vous apprenez directement des concepteurs des produits que vous utilisez. Notre engagement envers la communauté des TI, de même que notre autorisation à offrir des cours certifiés, vous assurent une expérience de formation supérieure. Il y a une différence. Apprenez directement de la source.

Il y a une différence. Apprenez directement de la source.		  
Training Contacts  
   
Canada United States

Formation à Montréal :: 514.876.1666
Formation à Ville de Québec :: 514.876.1666
Formation à Ottawa :: 613.232.3948
Formation à Toronto :: 416.487.3948

Formation à Vancouver :: 604.633.3948
Formation à Victoria :: 1.866.328.3948
Formation à Calgary :: 403.291.2855
Formation à Edmonton :: 780.441.3948
Formation à Regina :: 1.866.328.3948

 Formation à Sacramento :: 916.669.3970
Formation à San Francisco :: 415.975.3948
Formation à San Jose :: 408.288.3948
Formation à Las Vegas :: 1.800.803.3948
Formation à Phoenix :: 602.889.9350
À travers le monde - 613.232.3948 Des questions?
Il nous fait plaisir de vous aider. Transmettez-nous ce formulaire par courriel et nous vous répondrons dans les plus brefs délais.
   



(c) 2012 ExitCertified Corp. Tous droits réservés.


ExitCertified est un fournisseur international agréé de formation en technologies. Voici quelques-uns de nos cours les plus souvent consultés :
 
Formation Sun Formation Oracle Formation Symantec Formation IBM Formation Red Hat :: Linux
Formation Java, Cours J2EE, Formation JSP, servlets, EJB, Struts, réseaux, Formation Solaris, Java Composite Application Platform (JCAPS), SeeBeyond, XML, Formation Solaris 10, certification Java, certification Solaris Cours PeopleSoft, 11g, Formation Oracle SQL, Oracle PL/SQL, DBA, Hyperion, Fusion Middleware, 10g, 9i, certification 11g, certification DBA, certification Oracle Formation NetBackup, Cours Veritas, protection contre les virus, sécurité des TI, certification Symantec DB2, OS/400, Formation zSeries, s/390, iSeries, AIX SUSE, Formation RedHat
         
Formation MySQL Formation Apple Formation en gestion de projet    
Base de données MySQL Cours Apple, Formation Leopard Formation du PMI