CCNA Security

Module 1: Introduction to Network Security Principles

  • Describe and list mitigation methods for common network attacks.
  • Describe and list mitigation methods for Worm, Virus, and Trojan horse attacks.
  • Describe the Cisco Self Defending Network architecture.

Module 2: Perimeter Security

  • Secure Cisco routers using the SDM Security Audit Feature.
  • Secure Cisco routers by configuring multiple priviledge levels and role based CLI.
  • Implement AAA on Cisco routers using local router database and external ACS.
  • Mitigate threats to Cisco router and networks using ACLs.

Module 3: Network Security Using Cisco IOS Firewalls

  • Configure IP ACLs to prevent IP address spoofing using CLI.
  • Discuss the caveats to be considered when building ACLs.
  • Use CLI and SDM to configure Cisco routers to send Syslog messages to a Syslog server.
  • Mitigation common Layer 2 Attacks.
  • Describe the operational strengths and weaknesses of the different firewall technologies.
  • Explain stateful firewall operations and the function of the state table.
  • Implement Zone Based Firewall using SDM.
  • Define network based vs. host based intrusion detection and prevention.

Module 4: Network Security Using Cisco IOS IPS

  • Explain IPS technologies , attack response, and monitoring options.
  • Enable and verify Cisco IOS IPS operations using SDM.

Module 5: Site-to-Site VPNs

  • Explaing the different methods used in cryptography.
  • Explain IKE protocol functionality and phases.
  • Describe the building blocks of IPSec and the security functions it provides.
  • Configure and verify an IPSec site- to –site VPN with pre-shared key authentication using SDM.

Module 6: LAN, SAN, Voice, and Endpoint Security Overview