Courses: CCNA+CCNP+CCSP+CCIE Security
Duration: 6-month
Price:
Targeted Audience for this course is
-Candidates without any theory and lab knowledge who start it from "0" , no degree required;
-Candidates who want to solidify his or her existing knowledge systematically
Exams required for getting CCIE Security Certification:
-CCIE Security Written Exam (2-hour)
-CCIE Security Lab Exam (1 day)
Note: CCNA & CCNP exams are not compulsory. According to Cisco's policy, you may directly take CCIE Security exam after finishing this bootcamp.
Part I: CCNA |
Course Code |
Exam |
Course outline |
ICND |
640-802 |
1.OSI models、Standards、ProtocolRouting concepts
2. Cisco equipment operation
Device lnfrastucture、Operation command、Device maintaining
3. LAN Technologies
4. WAN Configuration |
Part II: CCNP |
|
Course Code |
Exam |
CCNP Course Outline |
BSCI |
642-901 |
-Implement EIGRP operations
-Implement multiarea OSPF operations
-Describe Integrated IS-IS
-Implement Cisco IOS routing features
-Implement BGP for enterprise ISP connectivity
-Implement multicast forwarding
-Implement IPv6 |
BCMSN |
642-812 |
-Implement VLANs;
-Conduct the operation of Spanning Tree Protocols in hierarchical network;
-Implement Inter-VLAN routing;
-Implement gateway redundancy technologies;
-Describe and configure wireless client access
-Describe and configure security features in a switched network;
-Configure support for Voice
|
ISCW |
642-825 |
-Implement basic teleworker services;
-Implement Frame-Mode MPLS;
-Implement a site-to-site IPSec VPN;
-Describe network security strategies;
-Implement Cisco Device Hardening;
-Implement Cisco IOS firewall;
-Describe and configure Cisco IOS IPS |
ONT |
642-845 |
-Describe Cisco VoiP implementations;
-Describe QoS considerations;
-Describe DiffServ QoS implementations;
-Implement AutoQoS;
-Implement WLAN security and management |
Part III: CCSP |
|
Course Code |
Exam |
CCNP Course Outline |
SND |
642-552 |
-Describe the products in the Cisco security portfolio and explain how they mitigate security threats to a network
-Describe the security features available for a Cisco Layer 2 device in a secure network
-Implement security on a Cisco IOS Router
-Describe and configure Cisco IPS and HIPS
-Configure and verify basic remote access on a Cisco VPN 3000 Concentrator
-Implement a Cisco PIX security appliance |
SNRS |
642-503 |
-Implement Cisco Layer 2 security
-Configure Cisco IOS Firewall to mitigate network threats using the CLI
-Configure Cisco IOS IPS to identify and mitigate threats to network resources using the CLI
-Configure Cisco VPNs to provide secure connectivity for site-to-site and remote access communications using the CLI
-Configure authentication, authorization, and accounting to provide basic secure access control for networks
-Implement Network foundation protection using the CLI |
SNPA |
642-823 |
-Install and configure a security appliance for basic network connectivity
-Configure a security appliance to restrict inbound traffic from untrusted sources
-Configure a security appliance to provide secure connectivity using site-to-site VPNs
-Configure a security appliance to provide secure connectivity using remote access VPNs
-Configure transparent firewall, virtual firewall, and high availability firewall features on a security appliance
-Configure AAA service for access through a security appliance
-Configure routing and switching on a security appliance
-Configure a modular policy on a security appliance
-Monitor and manage an installed security appliance |
IPS |
642-532 |
-Describe how Cisco IDS/IPS sensors are used to mitigate network security threats
-Install Cisco IDS/IPS sensors and configure essential system parameters
-Describe Cisco IDS/IPS sensor advanced system parameters
-Tune Cisco IDS/IPS sensor advanced system parameters to optimize attack mitigation performance
-Analyze Cisco IDS/IPS sensor events to determine the appropriate response to network attacks
-Upgrade and maintain Cisco IDS/IPS sensors
-Troubleshoot Cisco IDS/IPS sensor operation and configuration errors |
CSVPN |
642-511 |
-Cisco virtual private network 3000 concentrator series hardware
-Configuring the Cisco VPN3000 Series Concentrator for remote access Pre-shared keys
-Configuring Cisco virtual private network 3000 series concentrator for remote access using digital certificates
-Configure the Cisco virtual private network firewall features for IPSec software client
-Configure the Cisco virtual private network client auto-initiation feature
-Monitor and Administer Cisco VPN 3000 Remote access networks
-Configure the Cisco VPN 3002 Hardware client for remote access
-Configure the Cisco virtual private network 3002 hardware client
-Configure the Cisco virtual private network client backup server and load balancing
-Configure the virtual private network 3002 hardware client for software auto-update
-Configure the Cisco virtual private network 3000 series concentrator for the IPSec over UDP and IPSec over TCP
-Cisco Virtual private network 3000 series concentrator LAN-to-LAN with Pre-shared keys
-Cisco virtual private network 3000 series concentrator LAN-to-LAN with NAT
-Cisco virtual private network 3000 series concentrator LAN-to-LAN using digital centificates |
Part IV: CCIE Security:
Layer 2 review
- Frame Relay
- ATM
- Bridging
- Telephony
- Switching
Layer 3 and Routing Protocol review
- General Routing
- RIP
- OSPF
- EIGRP
- BGP
- IS-IS
- Route-Maps
- Redistribution
- Multicast
General Cisco Security Recommendations
- General Cisco router configurations
- Disabling unnecessary services
- Combating Denial of Service attacks
PIX Firewall Configuration
- Basic interface configuration
- Permitting traffic through the ASA
- Network Address Translation (NAT)
- Advanced filtering and guards
- Failover
IOS Firewall Configuration
- Basic interface configuration
- Permitting traffic through the router
- NAT
- Session timers and thresholds
Virtual Private Networks (VPNs)
- IPSec and IKE overview
- LAN-to-LAN VPNs
- Dynamic VPNs
- Issues with NAT
- Extended authentication
Certificate Authority
- Microsoft CA configuration overview
- Router and PIX configuration
Point-to-Point Tunneling Protocol (PPTP)
Layer 2 Tunneling Protocol (L2TP)
GRE Tunnels
Cisco Secure Applications
- Cisco Secure Intrusion Detection System (CSIDS)
- Cisco Secure Access Control Server (CSACS)
Authentication, Authorization, and Accounting (AAA)
Intrusion Detection System
- Configuring IDS on a PIX
- Configuring IDS on a router
- Using IDS Sensor version 4
Network Management
- Logging and Network Time Protocol (NTP)
- Login transports (Telnet, SSH, console)
- Simple Network Management Protocol (SNMP)
(Node Lab will offer you 1-month free of apartment and meals. About details, welcome you to visit "International students")
|
