Course Synopsis
Corporate
Education Division
For registration or more information, please contact us:
Office:
C
-
32/1, Block 5 Gulshan
-
e
-
iqbal
Karachi.
Tel
ephone# : 021
-
3
6034
003
Mobile # : 0300
-
2306623
Email:
ighauri79@yahoo.com
Cisco Certified Network Associate
Security
Course Code
:
640
-
553 IINS
ESP
Course Synopsis
Course Duration:
40Hr
Course
Nature
:
Proprietary
certification
Course Format:
ILT
-
Instructor Led Training
Target Exam
(s)
:
640
-
553
Exam
Conduct by
:
Cisco
Associated
Certification
(s)
:
CCNA
Security
Starting Date :
9
th
January 2010
C
lass Days
and Timings
:
Saturd
ay 7 to 9 and Monday
7 to 9 PM
Course Instructor : Irfan Ghauri
Exam Description
The 640
-
553 Implementing Cisco IOS Network Security (IINS) exam is associated with the CCNA Security certification. This
exam tests a candidate's knowledge of securing
Cisco routers and switches and their associated networks. It leads to validated
skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availab
ility of
data and devices and develops competency
in the technologies that Cisco uses in its security infrastructure.
Candidates can prepare for this exam by taking the Implementing Cisco IOS Network Security (IINS) course.
Exam Topics
The following topics are general guidelines for the content likely t
o be included on the Implementing Cisco IOS Network
Security(IINS) exam. However, other related topics may also appear on any specific delivery of the exam. In order to better
reflect the contents of the exam and for clarity purposes, the guidelines below
may change at any time without notice.
Describe the security threats facing modern network infrastructures
Describe and list mitigation methods for common network attacks
Describe and list mitigation methods for worms, virus, and Trojan Horse attacks
Describe the Cisco Self Defending Network architecture
Secure Cisco routers
Secure Cisco routers usi
ng the SDM Security Audit feature
Use the One
-
Step Lockdown feature in SDM to secure a Cisco router
Secure administrative access to Cisco routers by setting strong encrypted passwords, exec timeout, login failure rate
a
nd
using IOS login enhancements
Secure administrative access to Cisco routers by configuring multiple privilege levels
Secure administrative access to Cisco routers by configuring role based CLI
Secure the Cisco IOS image and configuration file
Implemen
t AAA on Cisco routers using local router database and external ACS
Explain the functions and importance of AAA
Describe the features of TACACS+ and RADIUS AAA protocols
Configure AAA authentication
Configure AAA authorization
Configure AAA accounting
Course Synopsis
Corporate
Education Division
For registration or more information, please contact us:
Office:
C
-
32/1, Block 5 Gulshan
-
e
-
iqbal
Karachi.
Tel
ephone# : 021
-
3
6034
003
Mobile # : 0300
-
2306623
Email:
ighauri79@yahoo.com
M
itigate threats to Cisco routers and networks using ACLs
Explain the functionality of standard, extended, and named IP ACLs used by routers to filter packets
Configure and verify IP ACLs to mitigate given threats (filter IP traffic destined for Telnet, SN
MP, and DDoS attacks) in
a network using CLI
Configure IP ACLs to prevent IP address spoofing using CLI
Discuss the caveats to be considered when building ACLs
Implement secure network management and reporting
Use CLI and SDM to configure SSH on Cisco
routers to enable secured management access
Use CLI and SDM to configure Cisco routers to send Syslog messages to a Syslog server
Mitigate common Layer 2 attacks
Describe how to prevent layer 2 attacks by configuring basic Catalyst switch security featu
res
Implement the Cisco IOS firewall feature set using SDM
Describe the operational strengths and weaknesses of the different firewall technologies
Explain stateful firewall operations and the function of the state table
Implement Zone Based Firewall us
ing SDM
Implement the Cisco IOS IPS feature set using SDM
Define network based vs. host based intrusion detection and prevention
Explain IPS technologies, attack responses, and monitoring options
Enable and verify Cisco IOS IPS operations using SDM
Im
plement site
-
to
-
site VPNs on Cisco Routers using SDM
Explain the different methods used in cryptography
Explain IKE protocol functionality and phases
Describe the building blocks of IPSec and the security functions it provides
Configure and verify an IPSec
site
-
to
-
site VPN with pre
-
shared key authentication using SDM
Prerequisites
CCNA Routing and Switching
Who Should Attend
• Graduates
and Students with engineering and technical background.
• People
working in IT and Network Solution providing firms.
• Employee
related to technical fields.
Fee Structure
Course fee : 8
,000 PKR
Limited seats are available on first come first serve basis.
Equipments available for Lab
Cis
co routers:
871, 1600,
2501, 2522, 2503,
2610
XM
,
2611, 2620, 2621,2651,
28
11.
Cisc
o Catalyst Switches: 2950, 3560.
- Home
- Browse
- All Categories
- AI and Robotics
- Biotechnology
- Clean Technology
- Data Management
- Electronics - Devices
- Enterprise Applications
- Entertainment
- Internet and Web Development
- Management
- Mechanics
- Mobile - Wireless
- Networking and Communications
- Oil and Offshore
- Security
- Semiconductor
- Servers
- Software and s/w Development
- Storage
- Telecommunications
- Urban and Civil
- Community
- Upload
Comments 0
Log in to post a comment