Networks Inc Forum  

Go Back   Networks Inc Forum > CCNA Security
Reload this Page CCNA Security - What's it all about?
Register Blogs FAQ Members List Calendar Search Today's Posts Mark Forums Read

Notices
NEW USERS - When you register you must send an email to moderator@networksinc.co.uk from your registered email address stating your username. ALL accounts awaiting moderation will be deleted automatically after 1 week if no email is sent. Inactive accounts not used for 90 days will also be automatically deleted.

Reply
 
Thread Tools Display Modes
  #1  
Old 22-12-2008, 11:11
SJuggins SJuggins is offline
Administrator
  
Join Date: Dec 2008
Posts: 81
Blog Entries: 5
Default CCNA Security - What's it all about?
Thought I'd take the time to post up some details about all of the new courses we'll be running in the New Year. Here's some details what you'll be able to do after taking the passing the CCNA Security:-

Describe the security threats facing modern network infrastructures
Secure Cisco routers
Implement AAA on Cisco routers using local router database and external ACS
Mitigate threats to Cisco routers and networks using ACLs
Implement secure network management and reporting
Mitigate common Layer 2 attacks
Implement the Cisco IOS firewall feature set using SDM
Implement the Cisco IOS IPS feature set using SDM
Implement site-to-site VPNs on Cisco Routers using SDM


Here's the actual syllabus you'll be learning from a combination of the theory and course hands-on labs :-

Cisco CCNA Security IINS Syllabus
Describe the security threats facing modern network infrastructures

* Describe and list mitigation methods for common network attacks
* Describe and list mitigation methods for Worm, Virus, and Trojan Horse attacks
* Describe the Cisco Self Defending Network architecture


Secure Cisco routers

* Secure Cisco routers using the SDM Security Audit feature
* Use the One-Step Lockdown feature in SDM to secure a Cisco router
* Secure administrative access to Cisco routers by setting strong encrypted passwords, exec timeout, login failure rate and using IOS login enhancements
* Secure administrative access to Cisco routers by configuring multiple privilege levels
* Secure administrative access to Cisco routers by configuring role based CLI
* Secure the Cisco IOS image and configuration file


Implement AAA on Cisco routers using local router database and external ACS

* Explain the functions and importance of AAA
* Describe the features of TACACS+ and RADIUS AAA protocols
* Configure AAA authentication
* Configure AAA authorization
* Configure AAA accounting


Mitigate threats to Cisco routers and networks using ACLs

* Explain the functionality of standard, extended, and named IP ACLs used by routers to filter packets
* Configure and verify IP ACLs to mitigate given threats (filter IP traffic destined for Telnet, SNMP, and DDoS attacks) in a network using CLI
* Configure IP ACLs to prevent IP address spoofing using CLI
* Discuss the caveats to be considered when building ACLs


Implement secure network management and reporting

* Use CLI and SDM to configure SSH on Cisco routers to enable secured management access
* Use CLI and SDM to configure Cisco routers to send Syslog messages to a Syslog server


Mitigate common Layer 2 attacks

* Describe how to prevent layer 2 attacks by configuring basic Catalyst switch security features


Implement the Cisco IOS firewall feature set using SDM

* Describe the operational strengths and weaknesses of the different firewall technologies
* Explain stateful firewall operations and the function of the state table
* Implement Zone Based Firewall using SDM


Implement the Cisco IOS IPS feature set using SDM

* Define network based vs. host based intrusion detection and prevention
* Explain IPS technologies, attack responses, and monitoring options
* Enable and verify Cisco IOS IPS operations using SDM


Implement site-to-site VPNs on Cisco Routers using SDM

* Explain the different methods used in cryptography
* Explain IKE protocol functionality and phases
* Describe the building blocks of IPSec and the security functions it provides
* Configure and verify an IPSec site-to-site VPN with pre-shared key authentication using SDM

If you have any questions about the course let me know and I'll be happy to help.

Thanks,
Stuart.
Reply With Quote
  #2  
Old 02-01-2009, 09:56
anselm
Guest
  
Posts: n/a
Default Cisco Certified Security Professional
What is Cisco Certified Security Professional Prerequisite: CCNA or CCNA security?

Do I need to get CCNA before CCNA security? I'm a bit lost here.
Reply With Quote
  #3  
Old 02-01-2009, 21:52
SJuggins SJuggins is offline
Administrator
  
Join Date: Dec 2008
Posts: 81
Blog Entries: 5
Default
Hi,

Well in the past (before the CCNA Security existed), you needed to pass your CCNA and the SND (Securing Network Devices) exam before your could qualify as a CCSP (you can take and pass all of the exams but won't have the certification until you pass the prereqs).

With the arrival of the new CCNA Security all you need to do now is take and pass this exam and then you meet the prereqs for the CCSP.

Hope that helps.
Stuart.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 19:47.

Contact Us - Home - Archive - Top

Powered by vBulletin® Version 3.7.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.