Those joining this course will get a detailed lesson in the necessity of comprehensive security policy and how it affects the health of the network. You will learn the basics of securing the networks of small office branches using Cisco IOS security features made available using web browser-based graphical interfaces Cisco Router and Security Device Manager, as well as the command-line interface on the Cisco router. You'll be given a broad course on firewall technologies as well as how to configure zone-based policies for firewalls. In addition, you'll both learn how to apply the fundamentals of network security and the inner workings of cryptographic services.
This will be a five-day course, and you will be required to take several prerequisite courses before you can attend this class. These include classes in Interconnecting Cisco Network Devices 1 and Interconnecting Cisco Network Devices 2, or the Cisco CCNA Boot Camp v2.0. You'll also need a working knowledge of the Windows operating system.
Those who should attend this class include network designers, network administrators, network engineers, network managers, and system engineers.
Detailed Course Description:
This class will teach you how to configure and protect routers and switches using pods that include a 2811 router, a 1841 router, and a 3560 switch coupled with a VMware server and 10 Virtual Machines. The topography within these are designed to simulate what you'll experience when working with small to mid-sized business using practical, realistic scenarios.
You'll also take a crash course in the basics of Network Address Translation as well as PAT. This will involve configuring the Network Address Translation at the perimeter so that the internal network can connect to the external network. Then, you must test and verify that the Network Address Translation is working, before finally verifying that the Network Address Translation configurations are sound.
Once this has been completed, you will begin the course on Ethical Hacking. It will first involve a demostration of the vulnerabilities of a network using freely available tools if there has not been proper configuration of the security features. You will then undo these attacks in later lessons.
The next lesson the class will teach you how protect access to the IOS Command Line. You will be required to implement passwords and secrets in order to fulfill the basic security requirements. To this aims you will learn how to program in a minimum length for the passwords.Then, you will need to use the service password encryption feature, before means-testing your password security with a variety of attacks aimed at cracking the passwords. Finally, all that's left is to set privilege levels and verify the IOS-FW Configuration.
The fourth lesson to be taught will be on how to prepare and install Cisco SDM on the configured and secure router. The lab will instruct you on how to maintain public/private key pairs and on how to use self-signed digital certificates to prevent the use of HTTPS from being too cumbersome.
In the fifth lesson, you will be examining Authentication, Authorization, and Accounting (AAA) features using local databases. Users will need to be implemented in the database so that they may be linked to privilege levels set up in previous lessons so that they may be ultimately authorized. Role-based CLI will be introduced so that command sets can be assigned to groups of users.
The sixth lab will involve the aforementioned Authentication, Authorization, and Accounting concepts using Cisco Secure Access Control Server as an AAA server. You will need to integrate with Active Directory in order to match groups for authorization. Finally, you will perform command-level accounting, and test what would happen in case the AAA server fails.
The seventh and eight labs deal collectively with IOS Security Management and IOS Router Services. You will have to configure SSH protocol to give secure connections to the CLI. You will have to create a Syslog so that all security events will be reported to a Syslog server. In addition, you will need to create a security audit using SDM, and run them so that you may analyze the results and determine how it should correct the problems found.
The ninth lab centers around packet filtering and the practical applications of it in securing your computer. You will need to set a packet filtering on the Perimeter Router so that the IOS-FW can be dedicated to dealing with more troublesome issues.
The tenth lab will teach you the power of IOS Zone-Based Firewalls and their place in the stateful inspection of IOS Firewalls, allowing you to deny traffic between zones.
The eleventh and twelfth labs will instruct you on Site-To-Site VPN, teaching you how to configure them and using GRE with IPSec in order to get around the incompatibility between it and the Zone-Based Firewall.
The thirteenth lab will provide a look into IOS IPS Functionality and signature definitions. You will need to use the freely provided IPS Manager Express application to monitor IPS events.
The final lesson will give you a detailed examination on Layer 2 Security. This will teach you how to protect against attackers coming from the same subnet using special security features built into the switch, no matter the topography involved. This lesson will take lessons learned from all of the previous labs and mix them together so that you may learn how to successfully repel such attackers.
Click here to get more information about this class!
Testimonials:
"The instructor was excellent, his teaching style and re-enforcing the topics with examples worked well . It has been the best training I have ever had including location of the hotel to the training room, the food service (very good too) that saved many hours a day and the equipment was perfect for the tasks required of it. Getting out of class at 10:30pm and being able to walk over to the room and starting the studying at 10:45pm was such a big help. Was it easy? Not at all, it took discipline before the class (on-line sessions) 45+ hours and during the class. I went to bed at 1am or later each night and was up a going by 5:30am every day. Was I tired each day? Yeah but I signed up for a Boot Camp not a Skillpath Happy Hour. I got to catch up on my sleep Saturday PM AFTER I had the two exams passed!! Also the staff were exceptional; responsive and handled everything right away."
Peter Bartley, CCNA, CCENT
Sr. Information Systems Team Leader
General Physics Corporation (GP)
"I was pretty worried about taking the CCNA Boot Camp but thanks to the instructor and course work provided by Intense I found it fun and easy to further my career. I would recommend Intense to anyone serious about getting a certification. You can save a lot of time and aggravation by using Intense plus the entire experience is enjoyable. I would highly recommend this course as I already have to 2 of my friends"
Robert Zoppelt
US Army
"Great experience taking this class. Never thought I would be able to learn all this material in one week."
Thomas Horvath
US Army
"Great instructor, great class, great subject. I look forward to more."
Brian McMasters
US Army
"I enjoyed the CCNA course and was surprised at how well I picked up such a large amount of material in just a week."
AJ McQuay
Interface
"Great course..I am a repeat customer..would not go any place else..:)"
"Both the instructor and site administrator worked very hard to make sure that we had everything that we needed, both from a personal level as well as a professional level. If for some reason we did not have what we needed, they got it. Hats off to them for making my Cisco training a success!"
Jim
Martco
"Outstanding course that was relevent, to the point, and extremely useful."
"The instructor was very good in his presentations, and examples. He really knew the material!"
R. French
Huttig
“Intense School's Training went great and I just passed my CCENT/CCNA! I took the test for the first time this afternoon and passed with a score of 931. Thank you for all of your help!”
Micah Gaylor
CCNA Certified
"The class was great!"
Mike Reifsnyder
Abraxas Corporation
"The course provide a wealth of learning information and exposure. I was impressed with the instructors level of delivery as his experience in the field was made evident."
Robert Reid
Alcoa
"The course handouts, professionalism, expertise, and teaching methods of the instructor, The instructors were superb. One of the best courses I have ever had in my life."
Jim Bass
AOL
"Instructor was great. Site admin, Ernest, was SUPER."
Anthony Delanko
Booz Allen Hamilton
"All in all this class was a wonderful experience and I am very happy with Wes as our instructor. I would recommend this to anyone."
Kyle Belitz
Booz Allen Hamilton
" Great Course! Kept me going and really help to prepare me for the CCNA exam"
Stephen Martin
Booz Allen Hamilton
"I enjoyed the course and thought it was very informative. The instructor was very knowledgeable."
Timothy Muniz
Booz Allen Hamilton
"Great course..I am a repeat customer..would not go any place else..:)"
Bill Mixon
"The instructor was very good in his presentations, and examples. He really knew the material!"
"The class was great. Wes is extremely knowledgeable and was able to convey the materials effectively while keeping the class attention."
"This is a great class. this is a very effective method to learn the topic."
"Intense School becomes highly recommended to those seeking professional certification. Ive gained a lot more knowledge from participating in the CCNA Boot Camp which will improve my job performance/troubleshooting skills a great deal. The instrutor did an excellent job in conveying the course material during class"
"This is a great class. this is a very effective method to learn the topic."
“The course provided a wealth of learning information and exposure. I was impressed with the instructors level of delivery as his experience in the field was made evident.”
Click here to get more information about this class!
