CCIESEC CCIE Security - Lab Preparation

Level:
Costs:
Total time:
Provider rating: 10 Perpetual Solutions has an average rating of 10 (out of 1 reviews)
Logo Perpetual Solutions

Tip: Receive more information about the programme, starting dates & price. Or request a proposal from multiple providers for in-house training.

Overview

Your experience of this course?

Did you attend the course CCIESEC CCIE Security - Lab Preparation at Perpetual Solutions? Help other people by submitting your review at Springest!

Springest will donate £1.- to the Edukans Foundation as a thank you for each review

 
Schedule:
Daytime
Run time:
6 days
Location type:
Open

completion, maximum participants, and starting dateplaces are unknown for this course.

Prerequisites:

At least 2 years hands-on experience with Cisco Security and SAFE Blueprint architecture.

Students should have passed the CCIE Security Written exam and may already hold some of the security certifications such as CCSP, etc.

Course Description:

This intense course is designed to prepare CCIE candidates for the one-day Security hands-on lab exam. Over six days candidates will solidify their existing knowledge, expose their weaknesses and gain vital test taking strategies. Each candidate will work through challenging scenarios on their own vRack of equipment. Each student will be given dedicated access to their individual vRack throughout the course.

Who Should Attend

This class is d…

Read the complete description

Description

Prerequisites:

At least 2 years hands-on experience with Cisco Security and SAFE Blueprint architecture.

Students should have passed the CCIE Security Written exam and may already hold some of the security certifications such as CCSP, etc.

Course Description:

This intense course is designed to prepare CCIE candidates for the one-day Security hands-on lab exam. Over six days candidates will solidify their existing knowledge, expose their weaknesses and gain vital test taking strategies. Each candidate will work through challenging scenarios on their own vRack of equipment. Each student will be given dedicated access to their individual vRack throughout the course.

Who Should Attend

This class is designed for candidates who are within 6 months of their lab date. The class does not cover introductory material and candidates are expected to have at a minimum a CCSP level knowledge of the topics covered in order to receive the full benefit of the class.

This course includes the following modules:

ASA/PIX Firewall

  • Initial Configuration of PIX/ASA
  • Routing
  • Translations and Connections
  • Access Control Lists and Object Groups
  • Deep Packet Inspection
  • Control URLs and FTP commands using MPF
  • Running BGP thru the Firewall
  • TCP Normalization
  • Transparent Firewall
  • ARP inspection on Firewall
  • Virtual Firewalls (Security Contexts)
  • Active/Standby Failover
  • Statefull Failover
  • Active/Active Failover

IPSEC/VPN

  • LAN-to-LAN IPSec using NAT-T
  • IPSec Hairpinning
  • EZVPN in Client and Network Extension Mode
  • QoS with IPSec
  • DMVPN thru the Firewall
  • Basic Configuration of VPN Concentrator
  • Routing on the Concentrator
  • Administration and Filtering on the Concentrator
  • LAN-to-LAN Tunnel on the Concentrator
  • EZVPN on the Concentrator in Client Mode
  • EZVPN on the Concentrator in Network Extension Mode without XAUTH
  • Remote Access on the Concentrator with RRI and Split Tunnelling

IPS Sensor

  • IPS in Promiscuous Mode
  • SPAN/RSPAN
  • Blocking Using ASA
  • IPS in Inline Mode Interface Pair and Inline VLAN Pair
  • Signature Tuning
  • Custom Stream Signatures
  • Custom HTTP Signatures
  • Custom Packet Signatures

Access Management

  • Configuring ACS for Network Devices
  • Configuring Users and Groups on ACS Server
  • Configuring Routers, Switches and ASA/PIX for Management Authentication using ACS Server
  • Configuring Command Authorization based on the ACS server
  • Configuring Accounting based on the ACS Server
  • Configuring Authentication Proxy on the ASA
  • Configuring Authentication on the Concentrator from the ACS Server
  • Configuring NAC-802.1X Authentication on the Switch

Advanced Network Security and Network Attacks

  • Preventing IP Spoofing
  • Configuring NAT on Routers
  • Configuring IP TCP Intercept
  • Blocking ICMP Attacks
  • Port Security on the Switches
  • DHCP Snooping
  • Dynamic ARP Inspection (DAI)
  • IP Source Guard
  • Mitigating Attacks using CAR
  • Mitigating Attacks using NBAR
  • IOS Firewall
  • Blocking attacks using PBR

For online live training advice please visit our Learning Advice Centre on our website. Be sure to follow us on Twitter to receive special course offers, news and updates!

Reviews

There are no reviews yet. Submit your review and help other people make the right choice. As a thank you for your effort we will donate £1.- to Stichting Edukans.

More courses within this subject:

Compare 36,003 training courses in subjects like Cisco Security

Subscribe to our newsletter?

Receive news, tips, articles, interviews and education on personal development each month.

Sign up to create your own Learning Lists.

Not for humans