Official Course Description: MCCCD Approval: 06/28/05
CNT181 20056-99999	L+L	4 Credit(s)	5 Period(s)
Cisco Securing IOS Networks
Applications of Cisco Networking technologies in designing and implementing security solutions to reduce risk of revenue loss and vulnerability. Hands-on experience and skills in security policy design and management, security technologies, products and solutions, secure router installation, configuration, and maintenance, AAA (Authentication, Authorization, and Accounting), and VPN (Virtual Private Network) implementation using routers. Preparation for the Securing Cisco IOS Networks (SECUR) exam, which applies toward the Cisco Certified Security Professional (CCSP), Virtual Private Network (VPN) Specialist, Intrusion Detection System (IDS) Specialist and the Firewall Specialist certifications. Prerequisites: CNT170 or permission of instructor.

Go to Competencies    Go to Outline
 

MCCCD Official Course Competencies:
CNT181   20056-99999	Cisco Securing IOS Networks

1.	Explain the necessity, concepts, and goals of network security, including a clear security policy. (I)
2.	Identify primary network threats and vulnerabilities of networks, and describe technologies used to secure the network. (I)
3.	Configure router and switch security. (II)
4.	Define and configure Access Control Lists (ACLs) and (CBAC) Context Based Access Control. (III)
5.	Install and configure components of network identity management using authentication, authorization, and accounting (AAA). (IV)
6.	Configure an authentication proxy using a router. (IV)
7.	Initialize, configure, and verify router-based Intrusion Detection Systems (IDS), signature implementation, logging, and Simple Network Management Protocol (SNMP). (V)
8.	Configure and troubleshoot tunneling and VPN technologies such as Generic Routing Encapsulation (GRE) and Internet Protocol Security (IPSec). (VI)
9.	Configure site-to-site and remote access IPSec Virtual Private Network (VPN) using pre-shared keys and digital certificates. (VI)
10.	Explain enterprise router management methods. (VII)

Go to Description    Go to top of Competencies
 

MCCCD Official Course Outline:
CNT181   20056-99999	Cisco Securing IOS Networks

I. Overview of Network Security A. Weaknesses, threats, and improper use of network B. Security framework, products, and policy II. General Router and Switch Security A. Disabling unnecessary services B. Securing the perimeter router C. Managing Routers III. Access Control Lists (ACLs) and Content Based Access Control (CBAC) A. Access Control Lists B. Content Based Access Control (CBAC) C. CBAC Configuration IV. Router Authentication, Authorization, and Accounting (AAA) Security A. Authentication, Authorization, and Accounting (AAA) security of network access C. Network Access Server (NAS) Authentication, Authorization, and Accounting (AAA) authentication process C. Cisco Secure Access Control Systems (ACS) D. The Cisco Internetwork Operating System (IOS) Firewall Authentication Proxy V. Router Intrusion Detection Monitoring and Management A. Cisco Internetwork Operating System (IOS) Firewall Intrusion Detection System (IDS) B. Initialize, configure and verify Internetwork Operating System (IOS) Firewall Intrusion Detection System (IDS) C. Monitor with Logging and Syslog D. Simple Network Management Protocol (SNMP) VI. Router Site to Site Virtual Private Networks (VPN) A. Site-to-site and remote Virtual Private Networks B. IOS Cryptosystem C. Internet Protocol Security (IPSEC) and Generic Routing Encapsulation (GRE) D. Digital Certificates VII. Router Remote Access Virtual Private Networking (VPN) A. Remote access Virtual Private Networks (VPN) B. Cisco Easy Virtual Private Networks (VPN) C. Router Management Center (MC)

Go to Description    Go to top of Competencies    Go to top of Outline