- Home /
- Shop All /
- Networking & Security /
- IT Security /
- Cisco CCNA Security: Implementing Cisco Network Security (IINS 210-260)
Cisco® CCNA® Security: Implementing Cisco Network Security (IINS 210-260)
Course Specifications
Course Number:
093045
Course Length:
5 days
Course Description
Course Objectives:
In this course, you will secure your network infrastructure by implementing Cisco network security features at the management plane, control plane, and data plane.
You will:
- Describe the fundamentals of networking security.
- Describe network infrastructure security concepts.
- Implement management plane security on Cisco IOS devices.
- Implement ACLs for threat mitigation.
- Implement data plane security on Cisco IOS devices.
- Configure threat control and containment measures.
- Configure security and NAT on Cisco ASA.
- Implement Cisco IOS IPS.
- Describe VPN technologies, PKI, and IPsec concepts.
- Implement VPNs and Cisco AnyConnect.
- Implement control plane security and additional data plane security features.
- Configure secure network management services and 802.1x port-based authentication.
Target Student:
This course is designed for network security specialists, security administrators, and network security support engineers who are responsible for deploying and managing Cisco security products and features in a network infrastructure. Individuals should attend if their primary job responsibility is to secure a network from sophisticated threats.
This course is also designed for students who are seeking CCNA Security certification and who want to prepare for the Implementing Cisco Network Security (IINS) Exam 210-260.
Prerequisites:
To ensure your success in this course, you should be familiar with basic networking and security concepts, and Cisco IOS networking features and concepts. You can obtain this level of skills and knowledge by taking the following Logical Operations courses:
- Cisco® CCENT®/CCNA® 3.0: Interconnecting Cisco Network Devices, Part 1 (ICND1)
- Cisco® CCNA® 3.0: Interconnecting Cisco Network Devices, Part 2 (ICND2)
Course-specific Technical Requirements
Hardware and Software:
You will need the following hardware and software configurations.
NYEDGE1
- Cisco 2911 Router
- 1 * HWIC-2T module
- c2900-universalk9-mz.SPA.152-4.M6.bin
- Licenses: Data and Security
NYEDGE2
- Cisco 2911 Router
- 1 * HWIC-2T module
- c2900-universalk9-mz.SPA.152-4.M6.bin
- Licenses: Data and Security
NYWAN1
- Cisco 2911 Router
- 1 * HWIC-2T module
- 1 * HWIC-1T module
- c2900-universalk9-mz.SPA.152-4.M6.bin
- Licenses: Security and Voice
NYCORE1
- Cisco 3750v2-24PS or Cisco 3750v1-24PS Switch
- 3750v2: 15.0 IPServicesK9
- 3750v1: 12.2 Advanced IP Services
NYCORE2
- Cisco 3750v2-24PS or Cisco 3750v1-24PS Switch
- 3750v2: c3750-ipservicesk9-mz.150-2.SE2
- 3750v1: c3750-ipservicesk9-mz.122-55.SE5
NYACCESS1
- Cisco 2960-24TC-S Switch
- c2960-lanlitek9-mz.150-2.SE9.bin or c2960-lanlitek9-mz.122-55.SE5.bin
Cisco Phone
- Any Cisco IP POE phone will work
- Either SIP or SCCP software
Backend (BGP)
- 2 Cisco 2800 series routers
- 1 * WIC-2T module
- 2 * Cisco 2811 routers running enterprise software. These routers need to run BGP and Frame Relay services
PLABWEB01: Windows Standalone Server
- OS: Windows Server 2008 R2 64-bit standard or above
- Hard disk space: 25 GB
- RAM: 2 MB
- CPU: Intel Xeon CPU E5-2680 v2 @ 2.8 GHz
- IIS role installed, running LabShared website
- PLABCSCO01 must be able to connect to PLABWEB01
You will also require a computer or laptop for the PLABCSCO01 device with the following minimum hardware and software configurations:
- Processor (CPU): Intel Core i3-3xxx or equivalent - Microsoft Windows 7 Professional, Enterprise, or Ultimate
- Memory: 4 GB RAM - Internet Explorer 11 or above
- Storage: 500 GB internal hard drive - PuTTY (http://www.putty.org/)
- NIC - IP Address 192.168.16.10/24, GW .1 - Tftpd32 (http://tftpd32.jounin.net/)
- Display card that runs at 1280 x 1024 or higher display resolution, and a compatible display monitor - FileZilla (https://filezilla-project.org/)
- Internet access (contact your local network administrator) - 7ZIP (http://www.7-zip.org)
- Keyboard and mouse - This machine will also require access to the following files for Lesson 8, "Implementing Cisco IOS IPS": IOS-S818-CLI, sigv5-SDM-S809, realm-cisco.pub
Accessories:
You will require the following cables for the setup:
- 5 straight-through cables.
- 4 crossover cables.
- 1 Cisco console cable. You may need a USB-to-serial adapter if your PC/laptop does not have a serial port.
- 5 Cisco serial DCE/DTE cables.
Course Content
Lesson 1: Networking Security Fundamentals
Topic A: Network Security Concepts
Topic B: Security Policies Using a Life-Cycle Approach
Topic C: Network Topologies
Lesson 2: Network Infrastructure Security
Topic A: Introduction to Cisco NFP
Topic B: Introduction to Control Plane Security
Topic C: Introduction to Management Plane Security
Topic D: Introduction to Data Plane Security
Lesson 3: Implementing Management Plane Security on Cisco IOS Devices
Topic A: Secure Remote Access Using SSH
Topic B: Configure Custom Privilege Levels and Views
Topic C: Configure Cisco IOS and Key Network Services
Lesson 4: Implementing ACLs for Threat Mitigation
Topic A: Implement ACLs Using CLI
Topic B: Configure TCP Intercept and VACLs
Lesson 5: Implementing Data Plane Security on Cisco IOS Devices
Topic A: Content and Endpoint Security
Topic B: Configure VLANs, Trunks, and InterVLAN Routing
Topic C: Implement Layer 2 Security
Lesson 6: Configuring Threat Control and Containment Measures
Topic A: Fundamentals of Firewalls
Topic B: Implement Zone-Based Policy Firewalls Using Cisco IOS
Lesson 7: Configuring Security and NAT on Cisco ASA
Topic A: Configure ASA
Topic B: Implement NAT and PAT
Lesson 8: Implementing Cisco IOS IPS
Topic A: Fundamentals of IPS
Topic B: Configure Cisco IOS IPS
Topic C: Verify Cisco IOS IPS Configuration
Lesson 9: VPN Technologies, PKI, and IPsec
Topic A: Fundamentals of VPN Technologies
Topic B: Fundamentals of PKI
Topic C: Fundamentals of IPsec
Lesson 10: Implementing VPNs and Cisco AnyConnect
Topic A: Implement Site-to-Site VPNs on Cisco IOS Routers
Topic B: Implement SSL VPNs Using the Cisco ASA Appliance
Topic C: Implement Cisco AnyConnect Using the Cisco ASA Device Manager
Lesson 11: Implementing Control Plane Security and Additional Data Plane Security Features
Topic A: Configure Control Plane Security on Cisco IOS Devices
Topic B: Configure Control Plane Policing on Cisco IOS CLI
Topic C: Additional Data Plane Security Concepts
Topic D: Implement Policy-Based NAT on a Cisco ASA Appliance
Lesson 12: Configuring Secure Network Management Service and 802.1x Port-Based Authentication
Topic A: Configure Secure Network Management Services
Topic B: Configure 802.1x Port-Based Authentication
SKU | 093045I |
---|---|
Weight | 2.7340 |
Coming Soon | No |
Days of Training | 5.0 |
Audience | Instructor |
Product Family | CHOICE |
Product Type | Print and Digital Courseware |
Electronic | Yes |
ISBN | 1424627214 |
Language | English |
Page Count | 496 |
Curriculum Library | Cisco |
Year | No |
Manufacturer's Product Code | No |
Current Revision | 1.0 |
---|---|
Revision Notes | No Revision Information Available |
Original Publication Date | 2017-02-03 00:00:00 |