Cisco® Implementing Cisco® Network Security v3.0 (IINS)
Overview
Overview
Implementing Cisco Network Security (IINS) v3.0 is a 5-day instructor-led course focusing on security principles and technologies, using Cisco security products to provide hands-on examples. Using instructor-led discussions, extensive hands-on lab exercises, and supplemental materials, this course allows learners to understand common security concepts, and deploy basic security techniques utilizing a variety of popular security appliances within a real-life network infrastructure.
Audience Profile
The target audiences of this course are learners who aim to be network associates in the domain of network security and who have knowledge that is contained in the Interconnecting Cisco Networking Devices Part 1 (ICND1) course.
Prerequisite(s) Recommended
This course is designed for students that have knowledge and skills equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1), Interconnecting Cisco Networking Devices Part 2 (ICND2), working knowledge of the Windows Operating System, and knowledge of Cisco IOS networking and concepts.
Learning Objectives
Upon completing this course, the learner will be able to meet these overall objectives:
- Describe common network security concepts
- Secure routing and switching infrastructure
- Deploy basic authentication, authorization and accounting services
- Deploy basic firewalling services
- Deploy basic site-to-site and remote access VPN services
- Describe the use of more advanced security services such as intrusion protection, content security and identity management
Course Outline
Course Outline
Module 1: Networking Security Fundamentals
Lessons
• Introducing Networking Security Concepts
• Understanding Security Policies Using a Life-Cycle Approach
• Building a Security Strategy for Borderless Networks
Module 2: Protecting the Network Infrastructure
Lessons
• Introducing Cisco Network Foundation Protection
• Protecting the Network Infrastructure Using Cisco Configuration Professional
• Securing the Management Plane on Cisco IOS Devices
• Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS
• Securing the Data Plane on Cisco Catalyst Switches
• Securing the Data Plane in IPv6 Environments
Lab: Hardening Network Elements Using Cisco Configuration Professional
Lab: Securing Administrative Access to Cisco Routers
Lab: Configuring AAA on Cisco Routers and Switches to Use Cisco Secure ACS
Lab: Configuring Data Plane Security on Layer 2 Switches
Module 3: Threat Control and Containment
Lessons
• Planning a Threat Control Strategy
• Implementing Access Control Lists for Threat Mitigation
• Understanding Firewall Fundamentals
• Implementing Cisco IOS Zone-Based Policy Firewalls
• Configuring Basic Firewall Policies on Cisco ASA Appliances
• Understanding IPS Fundamentals
• Implementing Cisco IOS IPS
Lab: Using ACLs to Implement a Threat Containment Strategy
Lab: Implementing Cisco IOS Zone-Based Firewalls
Lab: Implementing Basic Network Connectivity Using Cisco ASDM on the Cisco ASA Appliance
Lab: Configuring Cisco IOS IPS
Module 4: Secure Connectivity
Lessons
• Understanding the Fundamentals of VPN Technologies
• Introducing Public Key Infrastructure
• Examining IPsec Fundamentals
• Implementing Site-to-Site VPNs on Cisco IOS Routers
• Implementing SSL VPNs Using Cisco ASA Appliances
Lab: Configuring Site-to-Site IPsec VPNs
Lab: Configuring SSL VPNs on Cisco ASA Appliances Using Cisco ASDM