• Classroom
Course Description

In this class, you will learn the industry best practices for securing your Cisco routers and switches. You will learn to secure switches, including advanced Layer 2 security and Identity-Based Networking Services (IBNS) based on IEEE 802.1X. You will cover network platform security, VPN, Firewall, and IPS, and you will learn to secure a router’s control, plane, and management planes.

You will spend a large portion of the class on advanced VPN topics

Learning Objectives

Advanced IOS security technologies for locking down routers and switches: 802.1X, COPP/CPPr, and user-based authentication
Various VPN technologies and their use in production environments: DMVPN, GRE, GRE w/ IPSEC, IPSEC, GET, EzVPN, and SSL
IOS IPS exploration with IME and Cisco configuration professional
Launch live attacks against the network using BackTrack4 and learn mitigation techniques
Use Cisco IME software to monitor alerts from the IOS IPS process
Use the new Cisco Configuration Professional tool to configure IPS
Advanced IPS topics: event action overrides, event action filters, signature tuning, and custom signature creation

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.