SNRS v3.0 - Securing Networks with Cisco Routers and Switches Course Outline

SNRS v3.0 - Securing Networks with Cisco Routers and Switches

Revision: TE5503_20100303

(5.48 KB) View, Download, or Print Course as a PDF.

Course Length:

5 Days

Course Description:

Securing Networks with Cisco Routers and Switches (SNRS) v3.0 is an instructor-led course presented by Cisco training partners to their end-user customers. This five-day course focuses on providing the network specialists with the knowledge and skills needed to secure Cisco IOS router and switch-based networks. Learners will be able to secure the network environment using existing Cisco IOS features, including installing and configuring Cisco IOS Classic Firewall, Cisco IOS Zone-Based Policy Firewall, user group-based firewall, Cisco IOS intrusion prevention system (IPS), authentication proxy, implementing secure tunnels using IP Security (IPsec) technology, and implementing advanced switch security. This course also covers advanced virtual private network (VPN) technologies.

Who Should Attend:

The primary audience for this course is network designers, network administrators, and network engineers.

Benefits of Attendance:

Upon completion of this course, students will be able to:

Implement Layer 2 security features on a network using Cisco IOS commands
Implement Cisco Network Foundation Protection on Cisco IOS routers
Design, install, configure, and troubleshoot site-to-site VPNs using Cisco Integrated Services routers
Design, install, configure, and troubleshoot remote-access communications using Cisco IOS security features
Install, configure, and troubleshoot URL filtering, NAT and PAT, Cisco IOS Classic Firewall, Cisco IOS Zone-Based Policy Firewall, and Cisco IOS IPS on a Cisco Integrated Services router

Prerequisites:

Students should have Cisco Certified Network Associate (CCNA) certification, basic knowledge of Cisco IOS networking and security terms and concepts, and basic knowledge of the Windows operating system.

Course Outline:

Module 1: Network Platform Security with Switches
1. Configuring Advanced Layer 2 Security
2. Introducing Cisco IBNS
3. Implementing Basic 802.1X Authentication
4. Configuring Advanced 802.1X Authentication and Authorization
5. Lab 1-1: Configure Advanced Layer 2 Security
6. Lab 1-2: Configure Basic 802.1X Authentication
7. Lab 1-3: Configure Advanced 802.1X Authentication
8. Lab 1-4: Configure 802.1X VLAN Assignments
Module 2: Network Platform Security with Routers
1. Examining the Cisco Network Foundation Protection Strategy
2. Securing the Control Plane
3. Securing the Management Plane
4. Securing the Data Plane
5. Lab 2-1: Configure the Cisco Network Foundation Protection Strategy
Module 3: Secure Site-to-Site Communications
1. Examining VPN and IPsec Fundamentals
2. Implementing IPsec VPNs with PKI
3. Implementing GRE over IPsec
4. Configuring High-Availability VPNs and VTI
5. Implementing DMVPN
6. Implementing GET VPN
7. Lab 3-1: Configure A Site-To Site VPN Using Certificates
8. Lab 3-2: Configure a GRE over IPsec Tunnel
9. Lab 3-3: Configure a DMVPN Spoke Using Cisco SDM
10. Lab 3-4: Configure GET VPN Using CLI
Module 4: Secure Remote Access Communications
1. Implementing Cisco IOS Remote Access Using Cisco Easy VPN
2. Examining a Cisco IOS SSL VPN
3. Lab 4-1: Configure Cisco Easy VPN Remote
4. Lab 4-2: Configure Cisco Easy VPN Server
5. Lab 4-3: Configure a Cisco IOS SSL VPN
Module 5: Threat Control and Containment
1. Configuring NAT and PAT
2. Configuring a Cisco IOS Classic Firewall
3. Configuring a Cisco IOS Zoned-Based Policy Firewall
4. Configuring Cisco IOS IPS
5. Lab 5-1: Configure Cisco IOS Classic Firewall on a Cisco Router
6. Lab 5-2: Configure a Cisco IOS Zone-Based Policy Firewall with URL Filtering
7. Lab 5-3: Configure Cisco IOS IPS on a Cisco Router