Detailed Outlines
Course Outlines
Module 1: Secure Design Principles
- Course Overview
- Network Security Zoning
- Cisco Module Network Security Architecture
- Cisco SecureX Architecture and Cisco TrustSec Solution
Module 2: Deploying Network Infrastructure Protection
- Intro Cisco Network Infrastructure Architecture and Deploying Cisco IOS Control Plane Security Controls, Cisco IOS Management Plane Security Controls
- Deploying Cisco ASA Management Plane Security Controls
- Lab 2-1: Configuring Control and Management Plane Security
- Configuring Cisco Traffic Telemetry Methods
- Lab 2-2: Configuring Cisco Traffic Telemetry Methods
- Deploying Cisco IOS Layer 2 and Layer 3 Data Plane Security Controls
- Lab 2-3 and 2-4: Configuring Cisco Layer 2 and Layer 3 Data Plane Security
Module 3: Deploying NAT on Cisco IOS and Cisco ASA
- Introducing Network Address Translation
- Deploying Cisco ASA Network Address Translation
- Lab 3-1: Configuring Cisco ASA NAT
- Deploying Cisco IOS Software Network Address Translation
Module 4: Deploying Threat Controls on Cisco ASA
- Introducing Cisco Threat Controls
- Deploying Cisco ASA Basic Access Policies
- Lab 4-1: Configur3 Cisco ASA Access Policy
- Deploying Cisco ASA Application Inspection Policies
- Lab 4-2: Configuring Authentication Using WebAuth
- Deploying Cisco ASA Botnet Traffic Filtering
- Lab 4-3: Configuring Cisco ASA Botnet Traffic Filter
- Deploying Cisco ASA Identity Based Firewall
- Lab 4-4: Configuring Cisco ASA Identity Based Firewall
Module 5: Deploying Threat Controls on Cisco IOS Software
- Deploying Cisco IOS Software with Basic Zone-Based Firewall Policy
- Lab 5-1: Configure Cisco IOS Software with Basic ZBFW
- Deploying Cisco IOS Software ZBFW with Application Inspection Policies
- Lab 5-2: Configure Cisco IOS Software ZBFW with Application Inspection Policy
Objectives and Pre-requisites
Course Objectives
- Understand current security threat landscape
- Understanding and implementing Cisco modular Network Security Architectures such as SecureX and TrustSec
- Deploy Cisco Infrastructure management and control plane security controls
- Configuring Cisco layer 2 and layer 3 data plane security controls
- Implement and maintain Cisco ASA Network Address Translations (NAT)
- Implement and maintain Cisco IOS Software Network Address Translations (NAT)
- Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
- Implementing Botnet Traffic Filters
- Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW)
- Configure and verify Cisco IOS ZBFW Application Inspection Policy
Prerequisites
The knowledge and skills you must have before attending this course are as follows:
- Cisco Certified Network Associate (CCNA®) certification
- Cisco Certified Network Associate (CCNA®) Security certification
- Knowledge of Microsoft Windows operating system