Course overview

This course is brought to you in cooperation with Global Knowledge, the world’s largest Cisco Learning Solutions Partner.
ISCW training course prepares you for Exam 642-825.Learn to secure the network environment using existing Cisco IOS security features and configure the three primary components of the Cisco IOS Firewall Feature set (Firewall, Intrusion Prevention System [IPS], and Authentication, Authorization, and Accounting [AAA]). In this task-oriented course, you'll get the knowledge and skills needed to secure Cisco IOS router networks. Expand the reach of your enterprise network to teleworkers and remote sites, and explore implementing a highly available network with connectivity options such as VPN and wireless.

Goal

You will learn:

• Cisco hierarchical network model as it pertains to the WAN
• Implement teleworker configuration and access
• Implement and verify frame-mode MPLS
• Configure a site-to-site IPsec VPN
• Configure Cisco Easy VPN
• Strategies used to mitigate network attacks
• Configure Cisco device hardening
• Configure IOS firewall features

Target group

IT professionals, network administrators, and technicians who need to design, configure, or support a Cisco WAN that utilizes Cisco's remote access technologies. This course is highly recommended for people pursuing CCNP, CCDP, and CCIE certifications.

Syllabus

1. Network Requirements

The IIN and the SONA framework
Cisco conceptual network models, such as Cisco Enterprise Architecture and Cisco hierarchical network model
Requirements for establishing secure remote connections in a converged network

2. Connect Teleworkers

Topologies for Facilitating Remote Connections
Cable Technology
DSL Technology
Configuring the CPE as the PPPoE and PPPoA Client
Verifying Broadband ADSL Configurations

3. Cisco Device Hardening

Mitigating Network Attacks
Securing Cisco Router Installations and Administrative Access
Configuring AAA on Cisco Routers
Disabling Unused Cisco Router Network Services and Interfaces
Securing Management and Reporting Features
Mitigating Threats and Attacks with Access Lists

4. Cisco IOS Threat Defense Features

Introducing the Cisco IOS Firewall
Implementing Cisco IOS Firewalls
Introducing Cisco IOS IPS
Configuring Cisco IOS IPS

5. IPsec VPNs

IPsec Components and IPsec VPN Features
Site-to-Site IPsec VPN Operations
Configuring IPsec Site-to-Site VPN Using SDM
Configuring GRE Tunnels over IPsec
High Availability Options
Configuring Cisco Easy VPN and Easy VPN Server Using SDM
Implementing the Cisco VPN Client

6. Implement Frame-Mode MPLS

Introducing MPLS Networks
Assigning MPLS Labels to Packets
Implementing Frame-Mode MPLS
MPLS VPN Technology

Prerequisites

Courses ICND1 and ICND2 or CCNA Boot Camp, or equivalent experience and knowledge.

Curriculum material

• ISCW Self-Paced e-Learning CD
• Live post-course lab time
• 642-825 exam voucher

Suggested Follow-On Courses

• BSCI - Building Scalable Cisco Internetworks v3.0
• BCMSN - Building Cisco Multilayer Switched Networks v3.0
• ONT - Optimizing Converged Cisco Networks
• IINS - Implementing Cisco IOS Network Security
• CVOICE - Cisco Voice over IP v6.0

Certification Programs and Certificate Tracks

This course is part of the following program or track:

• CCNP - Cisco Certified Network Professional

Contact

Dragutin Zivkovic
Housing d.o.o.
Zaharova 7, 10000 Zagreb
T: +385 1 4878999
F: +385 1 4878998
e-mail: dragutin.zivkovic@housing.hr