Implementing Cisco IOS Network Security (IINS)

Request a Quote for this class

About this Course

Implementing Cisco Network Security (IINS) v3.0 is a 5-day instructor-led course focusing on security principles and technologies, using Cisco security products to provide hands-on examples. Using instructor-led discussions, extensive hands-on lab exercises, and supplemental materials, this course allows learners to understand common security concepts, and deploy basic security techniques utilizing a variety of popular security appliances within a real-life network infrastructure.

Audience Profile

The target audiences for this course are students who aim to be network associates in the domain of network security and who have knowledge that is contained in the Interconnecting Cisco Networking Devices Part 1 (ICND1) course.

At Course Completion

Upon completing this course, the student will be able to meet these overall objectives:

  • Describe common network security concepts
  • Secure routing and switching infrastructure
  • Deploy basic authentication, authorization and accounting services
  • Deploy basic firewalling services
  • Deploy basic site-to-site and remote access VPN services
  • Describe the use of more advanced security services such as intrusion protection, content security and identity management

Prerequisites

The knowledge and skills that a student must have before attending this course are as follows:

  • Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
  • Working knowledge of the Windows operating system Working knowledge of Cisco IOS networking and concepts
  • Working knowledge of Cisco IOS networking and concepts

Course Outline

Module 1: Security Concepts

  • Lesson 1: Threatscape
  • Lesson 2: Threat Defense Technologies
  • Lesson 3: Security Policy and Basic Security Architectures
  • Lesson 4: Cryptographic Technologies
  • Lesson 5: Module Summary
  • Lesson 6: Module Self-Check

Module 2: Secure Network Devices

  • Lesson 1: Implementing AAA
  • Lesson 2: Management Protocols and Systems
  • Lesson 3: Securing the Control Plane
  • Lesson 4: Module Summary
  • Lesson 5: Module Self-Check

Module 3: Layer 2 Security

  • Lesson 1: Securing Layer 2 Infrastructure
  • Lesson 2: Securing Layer 2 Protocols
  • Lesson 3: Module Summary
  • Lesson 4: Module Self-Check

Module 4: Firewall

  • Lesson 1: Firewall Technologies
  • Lesson 2: Introducing the Cisco ASA v9.2
  • Lesson 3: Cisco ASA Access Control and Service Policies
  • Lesson 4: Cisco IOS Zone Based Firewall
  • Lesson 5: Module Summary
  • Lesson 6: Module Self-Check

Module 5: VPN

  • Lesson 1: IPsec Technologies
  • Lesson 2: Site-to-Site VPN
  • Lesson 3: Client Based Remote Access VPN
  • Lesson 4: Clientless Remote Access VPN
  • Lesson 5: Module Summary
  • Lesson 6: Module Self-Check

Module 6: Advanced Topics

  • Lesson 1: Intrusion Detection and Protection
  • Lesson 2: Endpoint Protection
  • Lesson 3: Content Security
  • Lesson 4: Advanced Network Security Architectures
  • Lesson 5: Module Summary
  • Lesson 6: Module Self-

Discovery Labs: 

  • Discovery 1: Exploring Cryptographic Technologies 
  • Discovery 2: Configure and V erify AAA 
  • Discovery 3: Configuration Management Protocol
  • Discovery 4: Securing Routing Protocols
  • Discovery 5: VLAN Security and ACLs on Switches
  • Discovery 6: Port Security and Private VLAN Edge
  • Discovery 7: Securing DHCP , ARP , and STP
  • Discovery 8: Explore Firewall Technologies
  • Discovery 9: Cisco ASA Interfaces and NAT
  • Discovery 10: Access Control Using the Cisco ASA
  • Discovery 11: Exploring Cisco IOS Zone-Based Firewall
  • Discovery 12: Explore IPsec Technologies
  • Discovery 13: IOS-Based Site-to-Site VPN
  • Discovery 14: ASA-Based Site-to-Site VPN
  • Discovery 15: Remote Access VPN: ASA and AnyConnect
  • Discovery 16: Clientless Remote Access VPN

Challenge Labs: 

  • Challenge 1: Configure AAA and Secure Remote Administration
  • Challenge 2: Configure Secure Network Management Protocols
  • Challenge 3: Configure Secure EIGRP Routing
  • Challenge 4: Configure Secure Layer 2 Infrastructure
  • Challenge 5: Configure DHCP Snooping and STP Protection
  • Challenge 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge 7: Configure Network Access Control with the Cisco ASA
  • Challenge 8: Configure Site-to-Site VPN on IOS
  • Challenge 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge 10: Configure Clientless SSL VPN on the ASA