Implementing Cisco Edge Network Security Solutions Training (SENSS)

Print Friendly, PDF & Email
Introduction

Implementing Cisco Edge Network Security Solutions Training (SENSS) Course Description

Learn to implement and manage security on Cisco ASA firewalls with Implementing Cisco Edge Network Security Solutions Training (SENSS)

Implementing Cisco Edge Network Security Solutions Training (SENSS) v1.0 is a comprehensive course that is part of the recommended curriculum for the Cisco Certified Network Professional Security (CCNP© Security) certification. Additionally, Implementing Cisco Edge Network Security Solutions Training (SENSS) will prepare you with the knowledge and hands-on experience to configure Cisco perimeter edge security solutions utilizing Cisco switches, Cisco routers and Cisco Adaptive Security Appliance (ASA) firewalls.

You will gain the foundational knowledge and the capabilities to implement and manage security on Cisco ASA firewalls, Cisco routers with the firewall feature set, and Cisco switches. You will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the Implementing Cisco Edge Network Security Solutions Training (SENSS) course, you will be able to reduce the risk to your IT infrastructure and applications.

Duration: 5 days

Implementing Cisco Edge Network Security Solutions Training (SENSS) Related Courses

Customize It

• We can adapt this Implementing Cisco Edge Network Security Solutions Training (SENSS) course to your group’s background and work requirements at little to no added cost.
• If you are familiar with some aspects of this Implementing Cisco Edge Network Security Solutions Training (SENSS) course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Implementing Cisco Edge Network Security Solutions Training (SENSS) course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Implementing Cisco Edge Network Security Solutions Training (SENSS) course in manner understandable to lay audiences.

Audience / Target Group

The target audience for this Implementing Cisco Edge Network Security Solutions Training (SENSS) course is defined here:

• Network Security Engineers

Prerequisites:

The knowledge and skills that a learner must have before attending this Implementing Cisco Edge Network Security Solutions Training (SENSS) course are:

• Cisco Certified Network Associate (CCNA®) certification
• Cisco Certified Network Associate (CCNA®) Security certification
• Knowledge of Microsoft Windows operating system

Objectives:

After completing this Implementing Cisco Edge Network Security Solutions Training (SENSS) course, attendees will be able to:

• Understand current security threat landscape
• Understanding and implementing Cisco modular Network Security Architectures such as SecureX and TrustSec
• Deploy Cisco Infrastructure management and control plane security controls
• Configuring Cisco layer 2 and layer 3 data plane security controls
• Implement and maintain Cisco ASA Network Address Translations (NAT)
• Implement and maintain Cisco IOS Software Network Address Translations (NAT)
• Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
• Implementing Botnet Traffic Filters
• Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW)
• Configure and verify Cisco IOS ZBFW Application Inspection Policy

Implementing Cisco Edge Network Security Solutions Training (SENSS) - Course Content:

Module 1: Secure Design Principles

Network Security Zoning implementation
Zone interface Points
Placement of Services
Cisco Module Network Security Architecture and Principles
Cisco SecureX Architecture and Components
Cisco TrustSec Solution Architecture and Components

Module 2: Deploying Network Infrastructure Protection

Cisco Network Infrastructure Architecture
IOS Control Plane Security Controls
IOS Management Plane Security Controls
Configuring Cisco Traffic Telemetry Methods
ASA Management Plane Security Controls
Cisco Traffic Telemetry Methods Configuration
Deploying Cisco IOS Layer 2 and Layer 3 Data Plane Security Controls

Module 3: Deploying NAT on Cisco IOS and Cisco ASA

Network Address Translation (NAT)
ASA NAT configuration
IOS Software NAT deployment

Module 4: Deploying Threat Controls on Cisco ASA

Cisco Firewall Threat Controls
ASA Basic Access Policies
ASA Application Inspection Policies
ASA Botnet Traffic Filtering
ASA Identity Based Firewall

Module 5: Deploying Threat Controls on Cisco IOS Software

IOS Zone-Based Policy Firewall (ZBFW) Access Policies
Zones and Zone Pairs configuration and verification
ZBFW troubleshooting
IOS Software ZBFW with Application Inspection Policies
Advanced Access Policies
Application-Layer Access Policies
Peer-to-Peer Protocols Inspection
ZBFW URL Filtering Methods

Labs:

Configure Control and Management Plane Security Controls
Configure Traffic Telemetry Methods
Configure Layer 2 Data Plane Security Controls
Configure Layer 3 Data Plane Security Controls
Configure Cisco ASA NAT
Configure Cisco IOS Software NAT
Configure Basic Cisco ASA Access Policies
Configure Advanced Cisco ASA Access Policies
Configure Cisco ASA Botnet Traffic Filter
Configure Cisco ASA Identity Firewall
Configure Basic Cisco IOS Zone-Based Policy Firewall Access Policies
Configure Advanced Cisco IOS Zone-Based Policy Firewall Access Policies

Request More Information

Time Frame: 0-3 Months4-12 Months

No Comments Yet.

Leave a comment

0