• Classroom
Course Description

In this course, you’ll focus on the necessity of a comprehensive security policy and how it affects the posture of the network. You will also learn how to analyze and mitigate attacks, taking the mystery out of them.
You will learn to perform basic tasks to secure a small branch type office network using Cisco IOS security features available through web—based GUIs (Cisco Router and Cisco Security Professional [CCP]) and the command—line interface (CLI) on the Cisco routers and switches

Learning Objectives

Develop a comprehensive network security policy to counter threats against information security
Configure routers with Cisco IOS Software security features, including management and reporting functions
Configure IPv6 addressing, routing, and access control in Cisco network routers
Bootstrap the Cisco Adaptive Security Appliance (ASA) Firewall for use in a production network
Configure the Cisco ASA Firewall for remote access SSL VPN
Configure a Cisco IOS zone—based firewall (ZBF) to perform basic security operations on a network
Configure site—to—site VPNs using Cisco IOS features
Configure IOS IPS on Cisco network routers
Configure security features on IOS switches to mitigate various Layer 2 attacks
How a network can be compromised using freely available tools
Implement line passwords, and enable passwords and secrets
Examine Authentication, Authorization, and Accounting (AAA) concepts and features using the local database as well as Cisco Secure ACS 5.2
Run a CCP security audit and analyze the results
Configure packet filtering on the Perimeter Router
Define a virtual tunnel interface Using GRE with IPSec

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.