Cisco Training and Certifcation

Cisco Training and Certifcation

Cisco Certified Network Associate (CCNA) Routing and Switching is a certification program for entry-level network engineers that helps maximize your investment in foundational networking knowledge and increase the value of your employer's network. CCNA Routing and Switching is for Network Specialists, Network Administrators, and Network Support Engineers with 1-3 years of experience. The CCNA Routing and Switching validates the ability to install, configure, operate, and troubleshoot medium-size routed and switched networks.
logo-cisco-partner
Enquire For Price & Details

Courses

1. Cisco Interconnecting Networking Devices Part 1 v2.0 (ICND1)

Overview
Students will learn how to install, operate, configure, and verify a basic IPv4 and IPv6 network, including configuring a LAN switch, configuring an IP router, connecting to a WAN, and identifying basic security threats.

Duration

  • Classroom Learning – 5 Day(s)

Course Outline

Lesson 1: Building a Simple Network

  • Exploring the Functions of Networking
  • Understanding the Host-to-Host Communication
  • Introducing LANs
  • Operating Cisco IOS Software
  • Starting a Switch
  • Understanding Ethernet and Switch
  • Troubleshooting Common Switch Media

Lesson 2: Establishing Internet Connectivity

  • Understanding the TCP/IP Internet
  • Addressing and Subnets
  • Understanding the TCP/IP Transport
  • Exploring the Functions of Routing
  • Configuring a Cisco Router
  • Exploring the Packet-Delivery Proce…
  • Enabling Static Routing
  • Managing Traffic Using ACLs
  • Enabling Internet Connectivity

Lesson 3: Managing Network Device Security

  • Securing Administrative Access
  • Implementing Device Hardening
  • Implementing Traffic Filtering

Lesson 4: Building a Medium-Sized Network

  • Implementing VLANs and Trunks
  • Routing Between VLANs
  • Using a Cisco Network Device
  • Introducing WAN Technologies
  • Introducing Dynamic Routing Protocol
  • Implementing OSPF

Lesson 5: Introducing IPv6

  • Introducing basic IPv6
  • Understanding IPv6
  • Configuring IPv6 Routing

Lesson 6: ICND1 Superlab

  • ICND1 Superlab

2. Cisco Interconnecting Cisco Networking Devices Part 2 V2.0 (ICND2)

The Interconnecting Cisco Networking Devices, Part 2 (ICND2) v2.0 course provides entry-level network administrators, network support, and help desk technicians with the knowledge and skills needed to install, configure, operate, and troubleshoot a small enterprise network.ICND2 v2.0 is augmented by a virtual classroom presentation, which has additional slides and interactions for instructor use. ICND2 v2.0 focuses on understanding redundant topologies, troubleshooting common network issues, configuring EIGRP and multi-area OSPF in both IPv4 and IPv6, understanding Wide Area Network technologies, and becoming familiar with device management and Cisco licensing.

Who Should Attend

Individuals seeking CCNA Routing and Switching certification Pre- and post-sales network engineers involved in installing and supporting enterprise branch office networks Entry-level network engineers, network administrators, network support technicians, and help desk technicians.

Prerequisites

The recommended knowledge and skills that a learner should have to attend this course:

  • Understand network fundamentals
  • Implement local area networks
  • Implement Internet connectivity
  • Manage network device security
  • Implement WAN connectivity
  • Implement basic IPv6 connectivity

WHAT YOU’LL LEARN

  • Operate a medium-sized LAN with multiple switches, supporting VLANs, trunking, and spanning tree
  • Troubleshoot IP connectivity
  • Configure and troubleshoot EIGRP in an IPv4 environment
  • Configure EIGRP for IPv6
  • Configure and troubleshoot OSPF in an IPv4 environment
  • Configure OSPF for IPv6
  • Define characteristics, functions, and components of a WAN
  • SNMP, syslog, and NetFlow
  • Manage Cisco device configurations, Cisco IOS images, and licenses.

Course Outline

Lesson 1 – Implementing Scalable Medium-Sized Networks

  • Troubleshooting VLAN Connectivity
  • Building Redundant Switched Topologies
  • Improving Redundant Switched Topologies with EtherChannel
  • Layer 3 Redundancy

Lesson 2 – Troubleshooting Basic Connectivity

  • Troubleshooting IPv4 Network Connectivity
  • Troubleshooting IPv6 Network Connectivity

Lesson 3 – Implementing an EIGRP-Based Solution

  • Implementing EIGRP
  • Troubleshooting EIGRP
  • Implementing EIGRP for IPv6

Lesson 4 – Implementing a Scalable, Multiarea Network, OSPF-Based Solution

  • OSPF
  • Multiarea OSPF IPv4 Implementation
  • Troubleshooting Multiarea OSPF
  • OSPFv3

Lesson 5 – Wide-Area Networks

  • WAN Technologies
  • Configuring Serial Encapsulation
  • Establishing a WAN Connection Using Frame Relay
  • VPN Solutions
  • Configuring GRE Tunnels

Lesson 6 – Network Device Management

  • Configuring Network Devices to Support Network Management Protocols
  • Managing Cisco Devices
  • Licensing

3. The Cisco Certified Design Associate (CCDA)

DESGN – Designing for Cisco Internetwork Solutions v3.0
In this course, you will learn how to design a strong and effective network as you prepare for the Cisco Certified Design Associate (CCDA) certification. Our enhancements to Cisco’s authorized content, combined with case-study practice and our exclusive exam practice homework, will prepare you for the exam in only five days.

Who Needs to Attend

  • Network engineers and architects
  • Systems administrators and network designers
  • Anyone who wants CCDA certification
  • IT managers wanting greater skill in network design

Prerequisites

  • CCNA certification is highly recommended
  • Familiarity with basic internetworking technologies such as LAN, WAN, bridging, switching, protocols, and network management
  • SWITCH – Implementing Cisco IP Switched Networks v2.0
  • ROUTE – Implementing Cisco IP Routing v2.0

What You’ll Learn

  • How to identify designed requirements and characterize (baseline) the existing network
  • Principles of network design and the guidelines for building a network design solution
  • How the Enterprise Composite Network model simplifies the complexity of today’s networks
  • Design an Enterprise Campus in a hierarchical modular fashion using Cisco Borderless Networks and modular design
  • Design Enterprise Campus and Enterprise Edge networks
  • Select the appropriate Network Management Solution
  • Design the WAN and branch office
  • Design a network addressing plan for IPv4 and IPv6
  • Select optimal routing protocols for the network
  • Design a modern data center using Cisco and industry best practices
  • Evaluate security solutions for the network
  • Design Voice, Video, and Collaboration solutions
  • Design a wireless solution using lightweight access points and the Cisco Wireless LAN Controller
  • Understand the role of software defined networks in a design
  • All topics on the CCDA certification exam
  • Test-taking tips and techniques

Follow-On Courses

  • TSHOOT – Troubleshooting and Maintaining Cisco IP Networks v2.0
  • BGP – Configuring BGP on Cisco Routers v4.0
  • MPLS – Implementing Cisco MPLS v3.0
  • ARCH – Designing Cisco Network Service Architectures v3.0

Certification Programs and Certificate Tracks
This course is part of the following programs or tracks:

  • CCDA Design

Course Outline

Lesson 1- Applying a Methodology to Network Design

  • PPDIOO
  • Identifying Design Requirements
  • Characterizing the Existing Network
  • Using the Top-Down Approach
  • Implementing the Design Methodology

Lesson 2- Network Design Objectives

  • Designing the Network Hierarchy
  • Modular Approach to Network Design
  • Infrastructure Services
  • Network Management Protocols and Features

Lesson 3- Campus and Data Center Design Considerations

  • Campus Design Methodology
  • Layer 2
  • Layer 3
  • High Availability

Lesson 4- Enterprise Network Design

  • Traffic and Interconnection
  • Security
  • Edge Connectivity
  • WAN Design
  • Branch Design
  • Data Center Design

Lesson 5- Internal Routing and Connecting to the Internet

  • Routing Protocol Considerations
  • Expanding EIGRP
  • Expanding OSPF
  • Introducing IS-IS
  • Expanding IS-IS
  • Using BGP

Lesson 6- Expanding the Existing Network

  • QoS
  • Wireless
  • Integrating Collaboration

Lesson 7- IP Addressing Design

  • Concepts
  • Addressing Plan for IPv4
  • IPv6 Addressing
  • Supporting IP Addressing

Lesson 8- Introduction to Software-Defined Networking

  • Need
  • Definition
  • Flavors

Case Studies

  • Case Study 1: Ask the Right Questions
  • Case Study 2: Design a Branch LAN
  • Case Study 3: Branch Connections to Headquarters
  • Case Study 4: Branch Routing
  • Case Study 5: Design Support for Wireless and Collaboration
  • Case Study 6: Designing the IPv4 Addressing Plan
  • Case Study 7: Designing the IPv6 Addressing Plan

4. Cisco Certified Network Associate (CCNA) Routing and Switching

Cisco Certified Network Associate (CCNA) Routing and Switching is a certification program for entry-level network engineers that helps maximize your investment in foundational networking knowledge and increase the value of your employer’s network. CCNA Routing and Switching is for Network Specialists, Network Administrators, and Network Support Engineers with 1-3 years of experience. The CCNA Routing and Switching validates the ability to install, configure, operate, and troubleshoot medium-size routed and switched networks.

Prerequisites
No prerequisites

Interconnecting Cisco Networking Devices: Accelerated (CCNAX) 2.0 Exam Description
The 200-120 CCNA exam is the composite exam associated with the CCNA Routing and Switching certification. Candidates can prepare for this exam by taking the Interconnecting Cisco Networking Devices: Accelerated (CCNAX) course. This exam tests a candidate’s knowledge and skills required to install, operate, and troubleshoot a small to medium-size enterprise branch network. The topics include all the areas covered under the 200-120 CCNA exam.

The following topics are general guidelines for the content likely to be included on the 200-120 CCNA exam. However, other related topics may also appear on any specific delivery of the exam. The guidelines below may change at any time without notice in order to better reflect the contents of the exam and for clarity purposes.
Recommended Training
200-120 CCNA – Interconnecting Cisco Networking Devices: Accelerated (CCNAX)
100-101 ICND1 – Interconnecting Cisco Networking Devices Part 1 (ICND1)
200-101 ICND2 – Interconnecting Cisco Networking Devices Part 2 (ICND2)

Course Contents

CCNA Topics 2013

IP Data Networks

  • Understand the operation of data networks.
  • Know the purpose and functions of network devices such as routers, switches, bridges and hubs.
  • Be able to select components to meet a specific network requirement.
  • Understand how certain applications can impact network performance.
  • Know the protocols, purpose and operation of both the OSI and TCP/IP models.
  • Describe the data flow between two hosts on a network
  • Be able to choose the most appropriate cables, media, ports and connectors to connect network devices and hosts to a LAN.

LAN Switching

  • Understand the media access control method for Ethernet.
  • Describe the basic switching concepts and the operation of switches.
  • Configure and verify switch configuration including remote access management.
  • Verify a network and switch operation using basic utilities such as ping, telnet and SSH.
  • Describe VLANs and the need for routing between VLANs.
  • Understand network segmentation and traffic management.
  • Be able to configure and verify VLANs.
  • Configure and verify trunking on Cisco switches.
  • Understand advanced switching technologies:
    -RSTP
    -PVSTP
    -EtherChannel
  • Be able to configure and verify PVSTP operation.
  • Describe the process of root bridge election.

IP Addressing (IPv4 and IPv6)

  • Describe the need for public and private addresses for IPv4.
  • Understand IPv6 addresses.
  • Describe the appropriate IPv6 addressing scheme for a LAN/WAN environment.
  • Describe the appropriate IPv4 addressing scheme for a LAN/WAN environment, including VLSM and summarization.
  • Describe the technologies required to run IPv6 and IPv4 concurrently such as dual stack.

IP Routing

  • Understand the basic routing concepts.
  • Understand the boot process of a Cisco router.
  • Configure and verify a basic router configuration using the command line interface.
  • Configure and verify both serial and Ethernet interfaces.
  • Be able to verify the network connectivity and configuration of a router.
  • Configure a static or default route given specific requirements, then verify.
  • Manage Cisco IOS files and image(s).
  • Understand Cisco IOS licensing.
  • Understand and distinguish different methods of routing and routing protocols.
  • Configure and verify EIGRP in a single autonomous system.
  • Configure and verify OSPF (v2 and v3) in a single area.
  • Configure and verify interVLAN routing using router-on-a-stick.
  • Be able to configure SVI interfaces.

IP Services

  • Configure and verify DHCP on a Cisco router.
  • Understand the features and applications of each type of ACL.
  • Be able to configure and verify ACLs.
  • Understand the basic operation of NAT.
  • Configure and verify NAT based on a set of network requirements.
  • Be able to configure and verify NTP as a client.
  • Recognize high availability FHRP.
  • Understand, configure and verify Syslog and utilize Syslog output.
  • Understand SNMP v2 and v3.

Network Device Security

  • Be able to configure and verify device security features.
  • Understand, configure and verify switch port security features.
  • Configure and verify ACLs for filtering network traffic.
  • Limit telnet and SSH access to a router by configuring ACLs.

Troubleshooting

  • Troubleshoot and correct common issues concerning IP addressing and host configurations.
  • Be able to utilize netflow and monitor data.
  • Troubleshoot and fix spanning tree operation.
  • Troubleshoot and resolve routing issues, including OSPF, and EIGRP.
  • Troubleshoot and correct VLAN problems.
  • Identify and resolve interVLAN problems.
  • Troubleshoot and resolve switch trunking issues.
  • Troubleshoot and fix ACL problems.
  • Troubleshoot and correct layer 1 problems.
  • Troubleshoot and correct WAN issues.
  • Troubleshoot EtherChannel issues.

WAN Technologies

  • Understand and identify different WAN technologies including:
    -Metro Ethernet
    -Frame Relay
    -VSAT
    -Cellular 3G and 4G
    -MPLS
    -T1/E1
    -ISDN
    -DSL
    -Cable
    -VPN
  • Configure and verify a serial WAN connection.
  • Configure Frame Relay on Cisco routers including verification.
  • Be able to configure and verify a PPP connection between two Cisco routers.
  • Configure and troubleshoot PPPoE.

5A. Cisco Certified Network Professional (CCNP) - Implementing Cisco IP Routing (ROUTE)

Course Description
Implementing Cisco IP Routing (ROUTE) v2.0 is an instructor-led five day training course developed to help students prepare for Cisco CCNP certification. The ROUTE course is a component of the CCNP Routing and Switching curriculum. This course is designed to provide professionals working with medium to large networks with the skills and knowledge required to incorporate advanced routing concepts when implementing scalability for Cisco routers that are connected to LANs and WANs. Students will build upon the knowledge and skills from CCNA Routing and Switching and help expand competencies to plan, implement, and monitor a scalable routing network. The overall design of the new ROUTE training is now heavily focused on lab-based learning. Some older topics have been removed or simplified from ROUTE v1.0, while several new IPv6 routing topics have been added. The course content has been adapted to Cisco IOS Software Release 15 and technically updated.

Who Should Attend
This course is appropriate for learners who aim to be network professionals and who have knowledge obtained from Cisco CCNA courses. Typical job roles include network engineers, support engineers, systems engineers or network technicians.

Prerequisites
The knowledge and skills that a learner should have before attending this curriculum are as follows: Describing network fundamentals, Establishing Internet and WAN connectivity (IPv4 and IPv6), Managing network device security, Operating a medium-sized LAN with multiple switches, supporting VLANs, trunking, and spanning tree, Troubleshooting IP connectivity (IPv4 and IPv6), Configuring and troubleshooting EIGRP and OSPF (IPv4 and IPv6), Configuring devices for SNMP, syslog, and NetFlow access, and Managing Cisco device configurations, Cisco IOS images, and licenses. It is highly recommended that this course be taken after the following Cisco courses: Interconnecting Cisco Networking Devices v2.0, Part 1 (ICND1 v2.0) and Part 2 (ICND2 v2.0), or Interconnecting Cisco Networking Devices: Accelerated Version 2.0 (CCNAX v2.0).

Benefits of Attendance
Upon completion of this course, students will be able to:

  • Describe routing protocols, different remote connectivity options, and their impact on routing and implementing RIPng
  • Configure EIGRP in IPv4 and IPv6 environments
  • Configure OSPF in IPv4 and IPv6 environments
  • Implement route redistribution using filtering mechanisms
  • Implement path control using policy-based routing and IP SLA
  • Implement enterprise Internet connectivity
  • Secure Cisco routers according to best practices and configure authentication for routing protocols

Course Outline

MODULE 1: BASIC NETWORK AND ROUTING CONCEPTS

  1. Differentiating Routing Protocols
  2. Understanding Network Technologies
  3. Connecting Remote Locations with the Headquarters
  4. Implementing RIPng

MODULE 2: EIGRP IMPLEMENTATION

  1. Establishing EIGRP Neighbor Relationships
  2. Building the EIGRP Topology Table
  3. Optimizing EIGRP Behavior
  4. Configuring EIGRP for IPv6
  5. Discovering Named EIGRP Configuration

MODULE 3: OSPF IMPLEMENTATION

  1. Establishing OSPF Neighbor Relationships
  2. Building the Link-State Database
  3. Optimizing OSPF Behavior
  4. Configuring OSPFv3

MODULE 4: CONFIGURATION OF REDISTRIBUTION

  1. Implementing Basic Routing Protocol Redistribution
  2. Manipulating Redistribution Using Route Filtering

MODULE 5: PATH CONTROL IMPLEMENTATION

  1. Using Cisco Express Forwarding Switching
  2. Implementing Path Control

MODULE 6: ENTERPRISE INTERNET CONNECTIVITY

  1. Planning Enterprise Internet Connectivity
  2. Establishing Single-Homed IPv4 Internet Connectivity
  3. Establishing Single-Homed IPv6 Internet Connectivity
  4.  Improving Resilience of Internet Connectivity
  5. Considering Advantages of Using BGP
  6. Implementing Basic BGP Operations
  7. Using BGP Attributes and the Path Selection Process
  8. Controlling BGP Routing Updates
  9. Implementing BGP for IPv6 Internet Connectivity

MODULE 7: ROUTERS AND ROUTING PROTOCOL HARDENING

  • Securing Cisco Routers
  • Describing Routing Protocol Authentication Options
  • Configuring EIGRP Authentication
  • Configuring OSPF Authentication
  • Configuring BGP Authentication

LABS – THE FOLLOWING DISCOVERY LABS ARE INCLUDED IN THIS COURSE:

  • Discovery 1: Configuring RIPng
  • Discovery 2: Configuring and Investigating Basic EIGRP
  • Discovery 3: Building The EIGRP Topology Table
  • Discovery 4: EIGRP Stub Routing
  • Discovery 5: EIGRP Summarization
  • Discovery 6: EIGRP Load Balancing
  • Discovery 7: EIGRP for IPv6 Configuration
  • Discovery 8: Discovering Named EIGRP Configuration
  • Discovery 9: Basic OSPF Configuration Introduction
  • Discovery 10: Building the Link-State Database
  • Discovery 11: OSPF Path Selection
  • Discovery 12: OSPF Route Summarization
  • Discovery 13: OSPF Stub Areas
  • Discovery 14: Implementing OSPFv3
  • Discovery 15: Basic Redistribution
  • Discovery 16: Manipulate Redistribution
  • Discovery 17: Manipulate Redistribution Using Route Maps
  • Discovery 18: Analyzing CEF
  • Discovery 19: Implementing PBR
  • Discovery 20: NAT Virtual Interface
  • Discovery 21: Basic IPv6 Internet Connectivity
  • Discovery 22: Basic BGP Configuration
  • Discovery 23: Influencing BGP Path Selection
  • Discovery 24: BGP for IPv6
  • Discovery 25: Configuring EIGRP Authentication
  • Discovery 26: OSPF Authentication Configuration

CHALLENGE LABS INCLUDED IN THIS COURSE:

  • Challenge 1: Configure RIPng
  • Challenge 2: Configure EIGRP
  • Challenge 3: Configure and Optimize EIGRP for IPv6
  • Challenge 4: Implement EIGRP for IPv4 and IPv6 Through Named Configuration
  • Challenge 5: Configure OSPF
  • Challenge 6: Optimize OSPF
  • Challenge 7: Configure OSPFv3
  • Challenge 8: Implement Redistribution Using Route Filtering
  • Challenge 9: Implement Path Control
  • Challenge 10: Configuring BGP
  • Challenge 11: Configure Authentication for EIGRP Routes
  • Challenge 12: Configure BGP Authentication

5B. CCNP - Implementing Cisco IP Switched Networks (SWITCH)

Course Description
Implementing Cisco Switched Networks (SWITCH) v2.0 is a five-day instructor-led training course developed to help students prepare for Cisco CCNP certification. The ROUTE course is a component of the CCNP Routing and Switching curriculum. This course is designed to help learners create an efficient and expandable enterprise network by installing, configuring, and verifying network infrastructure equipment according to the Cisco Enterprise Campus Architecture. Some older topics from Version 1 have been removed or simplified, while several new IPv6 routing topics have been added. The course content has been adapted to Cisco IOS Software Release 15 and technically updated.

Duration – 5 Days

Who Should Attend
This course is appropriate for learners with Cisco CCNA-level knowledge who aim to be network professionals. Typical job roles include network engineers, support engineers, systems engineers or network technicians.

Prerequisites
The knowledge and skills that a learner must have before attending this curriculum are as follows: Describing network fundamentals; Establishing Internet and WAN connectivity (IPv4 and IPv6); Managing network device security; Operating a medium-sized LAN with multiple switches, supporting VLANs, trunking, and spanning tree; Troubleshooting IP connectivity (IPv4 and IPv6); Configuring and troubleshooting EIGRP and OSPF (IPv4 and IPv6); Configuring devices for SNMP, syslog, and NetFlow access; and Managing Cisco device configurations, Cisco IOS images, and licenses. It is highly recommended that this course be taken after the following Cisco courses: Interconnecting Cisco Networking Devices v2.0, Part 1 (ICND1 v2.0) and Part 2 (ICND2 v2.0), or Interconnecting Cisco Networking Devices: Accelerated version 2.0 (CCNAX v2.0).

Benefits of Attendance
Upon completion of this course, students will be able to:

  • Describe the hierarchical campus structure, basic switch operation, use of SDM templates, PoE, and LLDP
  • Implement VLANs, trunks, explain VTP, implement DHCP in IPv4 and IPv6 environments, and configure port aggregation
  • Implement and optimize STP mechanism that best suits your network – PVSTP+, RPVSTP+, or MSTP
  • Configure routing on a multilayer switch
  • Configure NTP, SNMP, IP SLA, and port mirroring, and verify StackWise and VSS operation
  • Implement first hop redundancy in IPv4 and IPv6 environments
  • Secure the campus network according to recommended practices

Course Outline

MODULE 1: BASIC CONCEPTS AND NETWORK DESIGN

  • Lesson 1: Analyzing Campus Network Structure
  • Lesson 2: Comparing Layer 2 and Multilayer Switches
  • Lesson 3: Using Cisco SDM Templates
  • Lesson 4: Implementing LLDP
  • Lesson 5: Implementing PoE

MODULE 2: CAMPUS NETWORK ARCHITECTURE

  • Lesson 1: Implementing VLANs and Trunks
  • Lesson 2: Introducing VTP
  • Lesson 3: Implementing DHCP
  • Lesson 4: Implementing DHCP for IPv6
  • Lesson 5: Configuring Layer 2 Port Aggregation

MODULE 3: SPANNING TREE IMPLEMENTATION

  • Lesson 1: Implementing RSTP
  • Lesson 2: Implementing STP Stability Mechanisms
  • Lesson 3: Implementing MST

MODULE 4: INTER-VLAN ROUTING

  • Lesson 1: Implementing Inter-VLAN Routing Using a Router
  • Lesson 2: Configuring a Switch to Route

MODULE 5: HIGH-AVAILABILITY NETWORKS

  • Lesson 1: Configuring Network Time Protocol
  • Lesson 2: Implementing SNMP Version 3
  • Lesson 3: Implementing the Cisco IOS IP SLA
  • Lesson 4: Implementing Port Mirroring for Monitoring Support
  • Lesson 5: Verifying Switch Virtualization

MODULE 6: FIRST HOP REDUNDANCY PROTOCOLIMPLEMENTATION

  • Lesson 1: Configuring Layer 3 Redundancy with HSRP
  • Lesson 2: Configuring Layer 3 Redundancy with VRRP
  • Lesson 3: Configuring Layer 3 Redundancy with GLBP
  • Lesson 4: Configuring First Hop Redundancy Protocol for IPv6

MODULE 7: CAMPUS NETWORK SECURITY

  • Lesson 1: Implementing Port Security
  • Lesson 2: Implementing Storm Control
  • Lesson 3: Implementing Access to External Authentication
  • Lesson 4: Mitigating Spoofing Attacks
  • Lesson 5: Securing VLAN Trunks
  • Lesson 6: Configuring PVLANs
  • Lesson 7: Module Summary

DISCOVERY LABS INCLUDED IN THIS COURSE:

  • Discovery 1: Investigating the CAM
  • Discovery 2: Configuring VLANs and Trunks
  • Discovery 3: VTP Operation
  • Discovery 4: Exploring DHCP
  • Discovery 5: Obtaining IPv6 Addresses Dynamically
  • Discovery 6: EtherChannel Configuration and Load Balancing
  • Discovery 7: Discovering and Modifying STP Behavior
  • Discovery 8: Root Guard
  • Discovery 9: Configuring MST
  • Discovery 10: Routing with an External Router
  • Discovery 11: Routing on a Multilayer Switch
  • Discovery 12: NTP Configuration
  • Discovery 13: IP SLA Echo Configuration
  • Discovery 14: Configuring and Tuning HSRP
  • Discovery 15: Configure VRRP and Spot the Differences from HSRP
  •  Discovery 16: Configure GLBP
  • Discovery 17: Port Security

CHALLENGE LABS INCLUDED IN THIS COURSE:

  • Challenge 1: Network Discovery
  • Challenge 2: Configure DHCP
  • Challenge 3: Configure DHCPv6
  • Challenge 4: Configure EtherChannel
  • Challenge 5: Implement RSTP
  •  Challenge 6: Improve STP Configuration
  • Challenge 7: Configure MST
  • Challenge 8: Configure Routing Between VLANs with a Router
  • Challenge 9: Configure Routing on a Multilayer Switch
  • Challenge 10: Configure NTP
  • Challenge 11: Configure Network Monitoring Using the Cisco IOS IP SLA
  • Challenge 12: Configure HSRP with Load Balancing
  • Challenge 13: Configure VRRP with Load Balancing
  • Challenge 14: Implement GLBP
  • Challenge 15: Configure HSRP for IPv6
  • Challenge 16: Control Network Access with Port Security

5C. CCNP - Troubleshooting and Maintaining Cisco IP Networks (TSHOOT)

Course Description

Troubleshooting and Maintaining Cisco IP Networks (TSHOOT) v2.0 is a five-day instructor-led training course developed to help students prepare for the Cisco CCNP certification. The TSHOOT course is a component of the CCNP Routing and Switching curriculum. This course is designed to train network engineers on monitoring and troubleshooting routed and switched networks through extensive use of hands-on lab exercises. The goal is to help network professionals gain the skills and knowledge needed to diagnose and resolve network problems quickly and effectively. Some older topics have been removed or simplified from TSHOOT v1.0, while several new IPv6 routing topics have been added. The course content has been adapted to Cisco IOS Software Release 15 and technically updated.

Duration: 5 Days

Who Should Attend

The primary audience for this course are network professionals who want to increase their skill level at maintaining and troubleshooting complex Cisco IP networks. The typical job roles for this type of professional are network engineer, network operations center (NOC) technical support personnel, or help desk technicians.

Prerequisites

Prior to attending this course, students should have the knowledge of and experience with the implementation and verification of enterprise routing and switching technologies as offered by the Implementing Cisco Switched Networks (SWITCH) v2.0 and Implementing Cisco IP Routing (ROUTE) v2.0 courses or equivalent skills and knowledge. This includes knowledge and experience of the following technologies: Layer 2 switching, Link aggregation protocols, STP, Inter-VLAN routing solutions, FHRPs, including HSRP, VRRP, and GLBP, Branch office operations, EIGRP, OSPF, Layer 3 path control, Redistribution, BGP, and IPv6 Networking.

Benefits of Attendance

Upon completion of this course, students will be able to:

  • Describe the troubleshooting tools and methodologies that are used to identify and resolve issues in complex enterprise networks
  • Describe how to isolate and fix the network issues that your company, SECHNIK Networking Ltd., is facing
  • Describe how to isolate and fix the network issues that your customer, TINC Garbage Disposal Ltd., is facing
  • Isolate and fix the network issues that your customer, PILE Forensic Accounting Ltd., is facing
  • Isolate and fix the network issues that your customer, Bank of POLONA Ltd., is facing
  • Isolate and fix the network issues that your customer, RADULKO Transport Ltd., is facing

Course Content

  • Module 1: Tools and Methodologies of Troubleshooting
    1. Describing Troubleshooting Methodologies
    2. Using Troubleshooting Procedures
    3. Following Recommended Practices During Routine Network Maintenance
    4. Using Basic Cisco IOS Troubleshooting Tools
    5. Using Specialized Troubleshooting Tools
  • Module 2: Troubleshooting at SECHNIK Networking Ltd.
    1. Debrief of the First Troubleshooting at SECHNIK Networking Ltd.
    2. Debrief of the Second Troubleshooting at SECHNIK Networking Ltd.
    3. Debrief of the Third Troubleshooting at SECHNIK Networking Ltd.
  • Module 3: Troubleshooting at TINC Garbage Disposal Ltd.
    1. Debrief of the First Troubleshooting at TINC Garbage Disposal Ltd.
    2. Debrief of the Second Troubleshooting at TINC Garbage Disposal Ltd.
    3. Debrief of the Third Troubleshooting at TINC Garbage Disposal Ltd.
    4. Debrief of the Fourth Troubleshooting at TINC Garbage Disposal Ltd.
  • Module 4: Troubleshooting at PILE Forensic Accounting Ltd.
    1. Debrief of the First Troubleshooting at PILE Forensic Accounting Ltd.
    2. Debrief of the Second Troubleshooting at PILE Forensic Accounting Ltd.
    3. Debrief of the Third Troubleshooting at PILE Forensic Accounting Ltd.
    4. Debrief of the Fourth Troubleshooting at PILE Forensic Accounting Ltd.
    5. Debrief of the Fifth Troubleshooting at PILE Forensic Accounting Ltd.
  • Module 5: Troubleshooting at Bank of POLONA Ltd.
    1. Debrief of the First Troubleshooting at Bank of POLONA Ltd.
    2. Debrief of the Second Troubleshooting at Bank of POLONA Ltd.
    3. Debrief of the Third Troubleshooting at Bank of POLONA Ltd.
    4. Debrief of the Fourth Troubleshooting at Bank of POLONA Ltd.
  • Module 6: Troubleshooting at RADULKO Transport Ltd.
    1. Debrief of the First Troubleshooting at RADULKO Transport Ltd.
    2. Debrief of the Second Troubleshooting at RADULKO Transport Ltd.
    3. Debrief of the Third Troubleshooting at RADULKO Transport Ltd.
    4. Debrief of the Fourth Troubleshooting at RADULKO Transport Ltd.
  • Lab Outline
    1. Discovery 1: Maintaining and Documenting a Network
    2. Discovery 2: Troubleshooting Connectivity
    3. Challenge 1: First Troubleshooting at SECHNIK Networking Ltd.
    4. Challenge 2: Second Troubleshooting at SECHNIK Networking Ltd.
    5. Challenge 3: Third Troubleshooting at SECHNIK Networking Ltd.
    6. Challenge 4: First Troubleshooting at TINC Garbage Disposal Ltd.
    7. Challenge 5: Second Troubleshooting at TINC Garbage Disposal Ltd.
    8. Challenge 6: Third Troubleshooting at TINC Garbage Disposal Ltd.
    9. Challenge 7: Fourth Troubleshooting at TINC Garbage Disposal Ltd.
    10. Challenge 8: First Troubleshooting at PILE Forensic Accounting Ltd.
    11. Challenge 9: Second Troubleshooting at PILE Forensic Accounting Ltd.
    12. Challenge 10: Third Troubleshooting at PILE Forensic Accounting Ltd.
    13. Challenge 11: Fourth Troubleshooting at PILE Forensic Accounting Ltd.
    14. Challenge 12: Fifth Troubleshooting at PILE Forensic Accounting Ltd.
    15. Challenge 13: First Troubleshooting at Bank of POLONA Ltd.
    16. Challenge 14: Second Troubleshooting at Bank of POLONA Ltd.
    17. Challenge 15: Third Troubleshooting at Bank of POLONA Ltd.
    18. Challenge 16: Fourth Troubleshooting at Bank of POLONA Ltd.
    19. Challenge 17: First Troubleshooting at RADULKO Transport Ltd.
    20. Challenge 18: Second Troubleshooting at RADULKO Transport Ltd.
    21. Challenge 19: Third Troubleshooting at RADULKO Transport Ltd.
    22. Challenge 20: Fourth Troubleshooting at RADULKO Transport Ltd.

6. Implementing Cisco Wireless Network Fundamentals (WIFUND) v1.0 Training

Overview

This course looks at the fundamentals required in the planning, implementation and operation of a Cisco Wireless Lan network. This course is designed to help provide students with the knowledge and hands on practice required to enable them to design, install, configure, monitor and conduct the basic troubleshooting tasks of a Cisco WLAN in an SMB or Enterprise installations.  As this is associate level course  the advanced features of the Cisco WLAN networks solutions will not be covered in depth.

The Implementing Cisco Wireless Network Fundamentals (WIFUND) v1.0 e-learning builds knowledge and skills to prepare wireless network engineers to help design, configure, and conduct troubleshooting tasks for a Cisco WLAN in SMB and Enterprise networks.

Prerequisites

It is recommended, but not required, that students have the following knowledge and skills before attending this course:

  • Interconnecting Cisco Networking Devices Parts 1 & 2 (ICND1 & ICND2) or
  • Cisco CCENT certification

Objectives

This course is designed for individuals who are involved in the technical management of Cisco wireless platforms and solutions, which involves installing, configuring, operating and troubleshooting. Upon completing this course, you will be able to:

  • Understand the basic RF principles and characteristics
  • Understand WLAN security methods and access with differing client devices
  • Define the Cisco WLAN architecture and the underling infrastructure used to support it
  • Implement a Centralized wireless access network using AireOS or IOS-XE wireless LAN controllers
  • Implement a Converged wireless access network using IOS-XE converged access switches and wireless LAN controllers
  • Implement small and remote access wireless networks using FlexConnect, Autonomous or Cloud architectures
  • Perform basic WLAN maintenance and troubleshooting -describe the requirements for a WLAN design

Key Features

  • Instructional content is broken into learning nuggets and strategically organized for optimal learning and retention
  • Demonstration videos illustrate key fundamentals through practical application
  • Strategically placed assessments have been designed to provide learners with feedback on their level of understanding, and links back to sections of the training facilitate further review where it may be needed

Certification – CCNA Wireless Certification

Associated Exam – 200-355 WIFUND

Course Content

Wireless Fundamentals

  • Explain Wireless Fundamentals
  • Describe RF Principles
  • Understand RF Mathematics
  • Describe Antenna Characteristics
  • Describe the Basics of Spread Spectrum
  • Describe Wireless Media Access
  • Describe Wireless Governance
  • Discovery Lab 1: Practice RF Math
  • Discovery Lab 2: Calculate EIRP and Choose the Correct Antenna
  • Discovery Lab 3: Explore the RF Spectrum
  • Discovery Lab 4: Analyze Wireless Frames

Security and Client Access

  • Describe Wireless Security Components
  • Explain 802.11 Security
  • Explain 802.1X/EAP Framework
  • Describe EAP Authentication
  • Describe WPA and WPA2 Security
  • Provide Guest Access
  • Native Operating Systems for WLAN Connectivity
  • Configure Smart Handheld Clients
  • Discovery Lab 5: Review Centralized Authentication

Define the Cisco Wireless Network Architecture

  • Define Cisco Wireless Network Deployment Options
  • Define One Management
  • Define One Policy
  • Define the Cisco One Network
  • Mobility Architecture Concepts
  • Optimize RF Conditions and Performance for Clients
  • Describe Layer 2 Infrastructure Support
  • Describe Protocols Used in Wired Infrastructure to Support Wireless

Implement Centralized Wireless Access

  • Initialize a Centralized WLC

Describe AP Initialization Explore Additional WLC Features Implement IPv6 in a Cisco Wireless Environment Configure Client Access Implement Roaming in the Centralized Architecture Discovery Lab 6: Initialize a Centralized WLAN Deployment

Implement Converged Wireless Access

  • Initialize a Converged WCM
  • Describe AP Connectivity
  • Explore Additional Wireless Features
  • Configure Client Access
  • Implement Roaming in the Converged Architecture

Implement Small and Remote Wireless Access

    • Overview of the FlexConnect Architecture
    • Overview of the Autonomous Architecture
    • Overview of the Cloud Architecture

WLAN Maintenance and Troubleshooting

  • Describe Wireless Maintenance
  • Explain Troubleshooting Tools
  • Describe Troubleshooting Methodology

WLAN Design

  • Predictive WLAN Design Process
  • WLAN Site Survey Process

Labs:

  • Lab 1: Configure Windows 7 Client Access
  • Lab 2: Configuring the Wired Infrastructure
  • Lab 3: Configuring the Centralized WLAN Deployment
  • Lab 4: Configuring IPv6 Operation in a Centralized WLAN Deployment
  • Lab 5: Configuring Security in a Centralized WLAN Deployment
  • Lab 6: Configuring Guest Access Using the Anchor WLC
  • Lab 7: Deploying a Converged Access WLAN
  • Lab 8: Configuring Security on a Converged WLAN Deployment
  • Lab 9: Implement a FlexConnect WLAN Deployment
  • Lab 10: Initialize an Autonomous WLAN Deployment
  • Lab 11: Configure Security on an Autonomous AP WLAN Deployment
  • Lab 12: Configure Security on a Cloud WLAN Deployment
  • Lab 13: Perform Centralized Controller Maintenance
  • Lab 14: Perform WiFi Scanning
  • Lab 15: Challenge—Various Trouble Tickets
  • Lab 16: Perform a Predictive WLAN Design
  • Lab 17: Perform Passive Site Survey Analysis

7. Implementing Cisco Network Security (IINS) (CCNA Security) (CCNA Security (IINS V3) Training & Certification)

Overview

This is a five-day instructor-led course that focuses on the design, implementation and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies. All IOS examples and hands on experience is done using the IOS CLI.  IPS is covered at the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA . Modern malware examples are provided, cryptographic techniques use stronger hashing and encryption algorithms, and current versions of IOS, Cisco ASA and Cisco AnyConnect are highlighted.

More labs have been incorporated  to ensure the maximum amount of hands on experience possible. There are two types of labs: Discovery and Challenge. A discovery is a guided lab exercise. Explicit directions are provided to the student to guide them through the activity. Along with the directions are scenarios and explanations specifying why the student is implementing the subject technology and the results after configuration are demonstrated.

Challenges, on the other hand, are evaluation labs. The set of tasks is provided to the student, but directions are not provided. There are job aids which the student may utilize, providing information such as IP addresses and command syntax, but no specific description of procedures. An answer key is available for students who wish to verify their techniques. The instructors will of course be on hand to revisit any areas that may need further clarification.

Prerequisites

  • Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
  • Working knowledge of the Windows operating system.
  • Working knowledge of Cisco IOS networking and concepts.
  • Describe the use of more advanced security services such as intrusion protection, content security and identity management

.Course Objectives

  • Understand the Security Concepts
  • Learn about Secure Access to the network
  • Explore VPN
  • Explain Secure Routing and Switching
  • Lean about Cisco Firewall Technologies
  • Explore IPS
  • Explain and learn about Content and Endpoint Security

Course Content

Security Concepts

  • Threatscape
  • Threat Defense Technologies
  • Security Policy and Basic Security Architectures
  • Cryptographic Technologies

Secure Network Devices

  • Implementing AAA
  • Management Protocols and Systems
  • Securing the Control Plane

Layer 2 Security

  • Securing Layer 2 Infrastructure
  • Securing Layer 2 Protocols

Firewall

  • Firewall Technologies
  • Introducing the Cisco ASA v9.2
  • Cisco ASA Access Control and Service Policies
  • Cisco IOS Zone Based Firewall

VPN

  • IPsec Technologies
  • Site-to-Site VPN
  • Client Based Remote Access VPN
  • Clientless Remote Access VPN

Advanced Topics

  • Intrusion Detection and Protection
  • Endpoint Protection
  • Content Security
  • Advanced Network Security Architectures

Labs

  • Challenge Lab 1: Configure AAA and Secure Remote Administration
  • Challenge Lab 2: Configure Secure Network Management Protocols
  • Challenge Lab 3: Configure Secure EIGRP Routing
  • Challenge Lab 4: Configure Secure Layer 2 Infrastructure
  • Challenge Lab 5: Configure DHCP Snooping and STP Protection
  • Challenge Lab 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge Lab 7: Configure Network Access Control with the Cisco ASA
  • Challenge Lab 8: Configure Site-to-Site VPN on IOS
  • Challenge Lab 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge Lab 10: Configure Clientless SSL VPN on the ASA

8. Implementing Cisco Collaboration Devices (CICD) (CCNA VOICE)

Overview

This course introduces the architecture, components, functionalities, and features of Cisco Unified Communications solutions and describes how daily job tasks, such as system monitoring, moves, adds, and changes are performed on Cisco Unified Communications Manager, Cisco Unified Communications Manager Express, Cisco Unity Connection, and Cisco Unified Communications Manager IM and Presence.

Pre-Requisites

Attendees should meet the following prerequisites:

  • Working knowledge of converged voice and data networks
  • Basic knowledge of Cisco IOS gateways
  • Basic knowledge of Cisco Unified Communications Manager and Cisco Unity Connection

Course Content

Cisco Unified Communications Solutions

  • Understanding the Components of Cisco Unified Communications Solutions
  • Understanding the Characteristics of Cisco Unified Communications Solutions

Administrator and End-User Interfaces

  • Understanding Administrator Interfaces
  • Understanding End-User Interfaces

Call Flows in Cisco Call Control Platforms

  • Understanding Call Flows and Call Legs
  • Understanding Configuration Components That Impact Call Flows in Cisco Unified Communications Manager
  • Understanding Configuration Components That Impact Call Flows in Cisco Unified Communications Manager Express

Endpoint and End-User Administration

  • Understanding End-User Characteristics and Configuration Requirements
  • Understanding End-User Implementation Options
  • Understanding Endpoint Characteristics and Configuration Requirements
  • Understanding Endpoint Implementation Options

End User Telephony and Mobility Features

  • Understanding Telephony Features
  • Enabling Telephony Features
  • Understanding Mobility Features
  • Enabling Mobility Features

Cisco Unity Connection and Cisco Unified Communications Manager IM and Presence Service

  • Understanding Cisco Unity Connection
  • Understanding End User and Voice Mailbox Characteristics and Configuration Requirements
  • Understanding End User and Voice Mailbox Implementation Options
  • Understanding Cisco Unified Communications Manager IM and Presence Service
  • Enablin
    g Cisco Unified Communications Manager IM and Presence Service

Cisco Unified Communications Solutions Maintenance

  • Providing End-User Support
  • Understanding Cisco Unified Communications Manager Reports
  • Understanding Cisco Unified Communications Manager CDR Analysis and Reporting Tool Reports
  • Monitoring the System with Cisco Unified Real-Time Monitoring Tool
  • Monitoring Voicemail in Cisco Unity Connection
  • Understanding the Disaster Recovery System

Labs

  • Lab 1: Explore Administrator Interfaces
  • Lab 2: Explore End-User Interfaces
  • Lab 3: Explore Call Flows in Cisco Unified Communications Manager
  • Lab 4: Explore Call Flows in Cisco Unified Communications Manager Express
  • Lab 5: Implement End Users
  • Lab 6: Implement Endpoints
  • Lab 7: Enable Telephony Features
  • Lab 8: Enable Mobility Features
  • Lab 9: Implement End Users and Voice Mailboxes
  • Lab 10: Enable Cisco Unified Communications Manager IM and Presence Service
  • Lab 11: Provide End-User Support
  • Lab 12: Generate Cisco Unified Communications Manager CAR Tool Reports
  • Lab 13: Monitor the System with Cisco Unified RTMT
  • Lab 14: (Optional) Back Up Cisco Unified Communications Manager

9. CCIE 360 Routing and Switching Advanced Workshop 1

Overview

This 5 day course provides knowledge and hands-on experience related to both configuring and troubleshoting the following Cisco Routing and Switching topics:Cisco Catalyst Switch core configuration tasks, Interior gateway protocols (IGPs): Open Shortest Path First (OSPF), Enhanced Interior Gateway Routing Protocol (EIGRP), and Routing Information Protocol version 2 (RIPv2), Route redistribution, Border Gateway Protocol (BGP), MPLS Layer 3 VPN’s, IP multicast, Router and Cisco Catalyst quality of service (QoS). After completing the lectures on these technologies that include best practice you will complete labs based on that specific technology.

If you have purchased the CCIE 360 E-learning Packages, please do not attempt the 360RSW05-LAB-GA01 or 360RSW05-LAb-GA02 before attending this class.

Students booking this workshop as a standalone product, not bundled with e-learning will also receive access to preassessment lab, Workbook (20 labs) Reference Library 200 hours virtual rack rental

Pre-Requisites

The knowledge and skills that a learner must have before attending this course are as follows:

  • A valid CCNP or CCIP certification or equivalent understanding of configuring and troubleshooting data link layer technologies, IGP routing protocols, basic redistribution and BGP.
  • Attained a passing score on the CCIE written exam 350-001

Course Content

Cisco 360 Learning Program for CCIE R&S

  • Introducing the Cisco 360 Learning Program for CCIE R&S
  • Preparing for the Cisco CCIE Lab Exam

Core Task Assessment

  • Applying the Cisco 360 CCIE R&S Opening-Moves Strategy to Cisco CCIE Labs
  • Lab 2-1: CIERSASSESS-1 – 9 hour Lab
  • Analyzing the Cisco 360 CCIE R&S Assessment Results Report

Core Task Analysis and Configuration

  • Resolving DMVPN Tasks
  • Resolving Layer 2 Tasks
  • Resolving IGP Tasks
  • Resolving Redistribution Tasks

BGP Task Analysis and Configuration

  • Reviewing Basic BGP Operations
  • Resolving Advanced BGP Tasks
  • Lab 4-1: Establishing Basic Connectivity for BGP
  • Lab 4-2: Configuring BGP
  • Lab 4-3: Filtering BGP Updates and Path Determination

MPLS Layer 3 VPNs

  • Reviewing Basic MPLS VPN Operations
  • Lab 5-1: Establishing Basic Connectivity for MPLS Layer 3 VPNs
  • Lab 5-2: Configuring the MPLS Core
  • Lab 5-3: Creating VPNs and Enabling VPN Routing
  • Lab 5-4: Adding a Backup Link in VPNA

Multicast Task Analysis and Configuration

  • Reviewing Basic Multicast Operations
  • Lab 6-1: Establishing Basic Connectivity for Multicast
  • Lab 6-2: Configuring Dense Mode IP Multicast Routing
  • Resolving PIM Sparse Mode Multicast Tasks
  • Lab 6-3: Configuring PIM Sparse Mode

Router MQC QoS Task Analysis and Configuration

  • Reviewing MQC QoS and DiffServ
  • Using DiffServ Tools
  • Using Congestion Management and Avoidance Tools
  • Identifying Strategies for Router MQC QoS Tasks
  • Lab 7-1: Classification and Marking
  • Lab 7-2: Class Based Shaper
  • Lab 7-3: Class Based Policer
  • Lab 7-4: Congestion Avoidance and Management

Cisco Network Services Task Analysis and Configuration

  • Cisco Network Services per the CCIE R&S v5.0 Blue Print
  • Cisco Network Troubleshooting
  • Lab 8-1: Implementing FHRP for IPv4 and IPv6
  • Lab 8-2: Implementing DHCP and DHCPv6
  • Lab 8-3: Implementing NTP
  • Lab 8-4: Implementing NAT

Cisco Network Troubleshooting

  • Core and Advanced Tasks Analysis
  • Lab 9-1: CIERSASSESS-2 – 9 hour Lab

10. CCIE 360 Routing and Switching Advanced Workshop 2

Course Content

Day One:

Formulating a Final-Phase CCIE Preparation Strategy

  • Subdividing an Expert-Level Lab
  • Using Mental Simulations and Options Analysis
  • Verifying Your Implementation
  • Formulating and Applying Internetworking Techniques

Troubleshooting Cisco Networks

  • Cisco Troubleshooting
  • Troubleshooting a Problem
  • Troubleshooting Template

Graded Assessment Labs

  • Graded Assessment Lab 360RSW-LAB-TA03 – Troubleshooting Section
  • Graded Assessment Lab 360RSW-LAB- CA03 – Configuration Section
  • Review of Lab 360RSW-LAB-TA03and Score Report
  • Review of lab 360RSW-LAB- CA03 and Score report

Day Two:

  • Perform Graded assessment lab 360RSW-LAB-TA04 Troubleshooting Section
  • Perform Graded assessment lab 360RSW-LAB-CA04 Configuration Section
  • Review of Lab 360RSW-LAB-TA04 and Score Report
  • Review of lab 360RSW-LAB- CA04 and Score report

Day Three:

  • Perform Graded assessment lab 360RSW-LAB-TA05 Troubleshooting Section
  • Perform Graded assessment lab 360RSW-LAB-CA05 Configuration Section
  • Review of Lab 360RSW-LAB-TA05 and Score Report
  • Review of Lab 360RSW-LAB-CA05 and Score report

Day Four

  • Perform Graded assessment lab 360RSW-LAB-TA06 Troubleshooting Section
  • Perform Graded assessment lab 360RSW-LAB-CA06 Configuration Section
  • Review of Lab 360RSW-LAB-TA06 and Score Report
  • Review of Lab 360RSW-LAB-CA06 and Score report

Day Five

  • Perform Graded assessment lab 360RSW-LAB-TA07 Troubleshooting Section
  • Perform Graded assessment lab 360RSW-LAB-CA07 Configuration Section
  • Review of Lab 360RSW-LAB-TA07 and Score Report
  • Review of Lab 360RSW-LAB-CA07 and Score report

Lab Outline

  • Day1: 360-RSW-LAB-TC03 and CA03 (8 hours and 15 topics; level of difficulty: moderate)
  • Day2:360-RSW-LAB-TC04 and CAO4 (8 hours and 16 topics; level of difficulty: difficult)
  • Day3:360-RSW-LAB-TC05 and CA05 (8 hours and 14 topics; level of difficulty: difficult)
  • Day4: 360-RSW-LAB-TC06 and CA06 (8 hours and 14 topics; level of difficulty: moderate)
  • Day5: 360-RSW-LAB-TC07 and CA07 (4 hours and 7 topics; level of difficulty: easy)
  • When performing each of these labs, learners are allowed to ask the instructor any question. Learners should frame each question as
  • A Cisco CCIE proctor-style question to emulate the actual CCIE lab experienc
    e,
  • A standard instructor style question to maximize the learning and knowledge-transfer experience.

11 Designing for Cisco Internetwork Solutions (DESGN) v3.0 (CCDA)

Overview

This is an instructor-led course designed to provide students with the knowledge and skills required to achieve associate level competency in network design. This is a structured and modular approach to designing networks that are scalable and resilient with well-defined failure domains. The course discusses routing and switching, the  design of Campus and Enterprise networks in detail. Data center, wireless networking, and real-time traffic infrastructure are introduced and their effects on the core network are discussed from the design perspective.

Pre-Requisites

Delegates should meet the following prerequisites:

  • ICND1 is now required to achieve the CCDA certification.
  • It is recommended that delegates have attended their CCNP in Routing and Switching before starting the design curriculum.

Course Content

Design Methodologies

  • Design Life Cycle
  • Characterizing the Existing Network
  • Top-Down Approach

Network Design Objectives

  • Building a Modular Network
  • Applying Modularity: Hierarchy in a Network
  • Applying Modularity: Virtualization Overview
  • Challenge 1: Ask the Right Questions

Campus Network Design

  • Layer 2/Layer 3 Demarcation
  • Layer 2 Design Considerations
  • High Availability Considerations
  • Layer 3 Design Considerations
  • Traffic and Interconnections
  • Challenge 2: Design Branch’s LAN

Enterprise Network Design

  • Designing a Secure Network
  • Edge Connectivity Design
  • Wan Design
  • Branch Design
  • Connecting to the Data Center
  • Challenge 3: Design Branch’s Connections to the HQ

Design of Internal Routing and Connecting to the Internet

  • Routing Protocol Considerations
  • Expanding EIGRP Design
  • Expanding OSPF Design
  • Introducing IS-IS
  • Expanding IS-IS Design
  • Using BGP to Connect to the Internet
  • Challenge 4: Design Branch’s Routing

Expanding the Existing Network

  • Understanding Quality of Service
  • Supporting Wireless Access
  • Integrating Collaboration
  • Challenge 5: Design Support for Wireless and Collaboration

IP Addressing Design

  • Concepts of Good IP Addressing
  • Creating an Addressing Plan for IPv4
  • IPv6 Addressing
  • Supporting IP Addressing
  • Challenge 6: Design IPv4 Addressing Plan
  • Challenge 7: Design IPv6 Addressing Plan

Introduction to Software Defined Networks

  • SDN Overview

12. Introducing Cisco Data Center Networking (DCICN) (CCNA Datacenter)

Overview

This new assoicate level course has been designed to introduce delegates to the three primary technologies that are used in the Cisco Data Center. The introductory level of knowledge that is taught in these courses is aimed at individuals that will be performing only the more basic configuration tasks. The labs will focus on viewing configurations, as opposed to making configuration changes or creating new topologies.

Pre-Requisites

The knowledge and skills that a learner must have before attending this course are as follows:

  • Basic Computer Literacy
  • Basic Knowledge of Microsoft Windows Operating System
  • Basic Internet Usage Skills

Course Content

Simple Network Design

  • Understanding the Functions of Networking
  • Understanding the Host-to-Host Communications Model
  • Describing Ethernet Connections
  • Describing Ethernet Communications Standards
  • Describing OSI Network Layer Addressing
  • Describing the TCP/IP Transport Layer
  • Describing the Packet Delivery Process

Switched Network Implementation

  • Describing Switching
  • Describing the Packet Delivery Process
  • Describing Cisco NX-OS Software
  • Operating Cisco NX-OS Software
  • Implementing VLANs and Trunks
  • Building a Redundant Switched Topology

IP Addressing

  • Describing an IP Addressing Scheme
  • Transitioning to IPv6

Routing on the Cisco Nexus Switch

  • Exploring the Packet Delivery Process
  • Exploring the Routing Process on Cisco Nexus Switches
  • Exploring Routing Protocols on Cisco Nexus Switches
  • Exploring ACLs on Cisco Nexus Switches

13. Introducing Cisco Data Center Technologies (DCICT) (CCNA Datacenter)

Overview

DCICT is the 2nd of the introductory courses required for students looking to achieve the Cisco Certified Network Associate certification. This course will introduce students to the Cisco technologies that are deployed in the Data Center : unified computing, unified fabric, and network services. Students will only learn how to perform the more basic configuration tasks. Labs will focus on verifying configurations, with selected exercises involving making configuration changes or designing new topologies.

Pre-Requisites

To gain the prerequisite skills and knowledge, Cisco strongly recommends the knowledge of the following courses:

  • DCICN – Introducing Cisco Data Center Networking

Course Content

Cisco Data Center Network Services

  • Examining Functional Layers of the Data Center
  • Reviewing the Cisco Nexus Product Family
  • Reviewing the Cisco MDS Product Family
  • Monitoring the Cisco Nexus 7000 and 5000 Series Switches
  • Describing vPCs and Cisco FabricPath in the Data Center
  • Using OTV on Cisco Nexus 7000 Series Switches

Cisco Data Center Virtualization

  • Virtualizing Network Devices
  • Virtualizing Storage
  • Virtualizing Server Solutions
  • Using the Cisco Nexus 1000V Series Switch
  • Verifying Setup and Operation of the Cisco Nexus 1000V Series Switch

Cisco Data Center Storage Networking

  • Comparing Storage-Connectivity Options in the Data Center
  • Describing Fibre Channel Storage Networking
  • Verifying Fibre Channel Communications on Cisco MDS 9000 Series Multilayer Switches

Cisco Data Center Unified Fabric

  • Describing DCB
  • Identifying Connectivity Options for FCoE on the Cisco Nexus 5000 Series Switch
  • Describing Enhanced FCoE Scalability with Cisco Nexus 2232 10GE Fabric Extenders

Cisco UCS

  • Describing the Cisco UCS B-Series Product Family
  • Describing the Cisco UCS C-Series Product Family
  • Connecting Cisco UCS B-Series Blade Servers
  • Setting up an Initial Cisco UCS B-Series Cluster
  • Describing Cisco UCS Manager Operations
  • Describing Cisco UCS Manager Pools, Policies, Templates, and Service Profiles

14. Building Cisco Service Provider Next-Generation Networks, Part 1 (SPNGN1) (CCNA Service provider)

The Building Cisco Service Provider Next-Generation Networks, Part 1 course is associated with the CCNA Service Provider certification. The course is a 5-day Instructor Lead Training course that provides network engineers and technicians with the basi
c knowledge and skills necessary to support a service provider network. The course provides knowledge of the major components of a network and helps learners to understand how service provider networks function. The course introduces IP Next-Generation Network (IP NGN) architecture that helps service providers to build modern, scalable and reliable networks. The course also includes classroom activities with remote labs that are useful to gain practical skills for deploying basic Cisco IOS / IOS XE and Cisco IOS XR software features to operate and support service provider networks.

Who Should Attend

Who Should Attend: (Learner Market in LCMS)

  • Channel Partner / Reseller
  • Customer
  • Employee

Prerequisites

None

Course Objectives

Upon completing the SPNGN1 course, the learner will be able to meet these overall objectives:

  • Describe the purpose and function of IP and data network devices

Upon completing the SPNGN1 course, the learner will be able to meet these overall objectives:

  • Describe the purpose and function of IP and data network devices
  • Describe QoS, MPLS, multicast, high availability, and VPN technologies
  • Describe and differentiate IPv4 and IPv6 addressing schemes
  • Describe and configure switched and routed network technologies
  • Configure IP services like NAT and DHCP
  • Configure Cisco IOS, IOS XE, and IOS XR software on Cisco platforms
  • Configure transport, access, and edge technologies, as well as security in the network
  • Configure network management protocols like Netflow, SNMP, and CDP on Cisco platforms

Course Outline

Module 1, IP Fundamentals, contains 6 lessons, a lab, and case study:

  • Lesson 1: Defining Functions of Networking
  • Lesson 2: Introducing TCP / IP Layers and the OSI Reference Model
  • Lesson 3: Describing TCP / IP Network Layer
  • Lesson 4: Describing TCP / IP Transport Layer
  • Lesson 5: Explaining Network Security
  • Lesson 6: IP Addressing and Subnets
  • Lab 1-1: Verify Host IP Configuration

Case Study 1-2: Configure Subnetting

Module 2, Basic LAN Switching, contains 7 lessons and a lab:

  • Lesson 1: Understanding Ethernet
  • Lesson 2: Connecting to an Ethernet LAN
  • Lesson 3: Switched LAN Technology
  • Lesson 4: Operating a Cisco Switch
  • Lesson 5: Switch Security
  • Lesson 6: Performing Switched Network Optimizations
  • Lesson 7: Troubleshooting Switch Issues
  • Lab 2-1: Configuring Cisco Switches

Module 3, Basic IP Routing, contains 5 lessons and a lab:

  • Lesson 1: Exploring the Functions of Routing
  • Lesson 2: Introduction to the Cisco IOS XR
  • Lesson 3: Configuring Basic Routing
  • Lesson 4: Configuring EIGRP
  • Lab 3-1: Configure Basic Router Configuration
  • Lesson 5: Understanding Cisco Router Security

Module 4, Connectivity Technologies, contains 5 lessons and 2 labs:

  • Lesson 1: Access Technologies
  • Lesson 2: Introducing Service Provider Access, Edge, and Transport Technologies
  • Lesson 3: Enabling the WAN Internet Connection
  • Lab 4-1: Implement Internet Connectivity
  • Lesson 4: Introducing Encapsulation
  • Lab 4-2: Configure Data Link Layer Encapsulation

Lesson 5: Introducing VPN

Module 5: Network Management and Security

15. Understanding Cisco Cloud Fundamentals (CLDFND) (CCNA Cloud)

Many companies are embracing the Cloud to help them to be more agile, flexible, and effective at delivering better business outcomes. Today, the majority of companies are already using XaaS offerings, and by 2018, it’s estimated that 78% of workloads will be processed through the cloud.

The CCNA Cloud certification is a job role focused certification and training program that helps Cloud engineers, Cloud Administrators, and Network Engineers to develop, advance, and validate their cloud skill set, and enables them to help their IT organization meet changing business demands from technology transitions.

With a CCNA Cloud certification, you will obtain the skills to perform entry-level provisioning and support of Cisco cloud solutions. Learn from the only company that has an end-to-end Cloud and Intercloud story.

Who Should Attend

  • Channel Partners
  • Customers
  • Employees

Prerequisites

  • Understand Network Fundamentals
  • Understand Compute Fundamentals
  • Understand Storage Fundamentals

Course Content

The Understanding Cisco Cloud Fundamentals course is designed to provide students with the necessary knowledge, skills and abilities (KSA) to perform foundational tasks related to Cloud computing. It teaches the characteristics and deployment models of a Cloud network. Upon course completion, students will be able to:

  • Describe common cloud characteristics
  • Describe and Identify the cloud service models
  • Describe and Compare cloud deployment models
  • Identify cloud deployment decision factors
  • Identify and Illustrate key features of UCS
  • Define server virtualization
  • Describe network architectures for the data center
  • Identify infrastructure virtualization
  • Analyze and Identify storage provisioning concepts
  • Describe and Compare the difference between all the storage access technologies
  • Describe and Compare various reference architectures for converged infrastructure

Course Outline

  • Module 1: Cloud Characteristics and Models
  • Module 2: Cloud Deployment
  • Module 3: Basic Knowledge of Cloud Compute
  • Module 4: Basic Knowledge of Cloud Networking
  • Module 5: Basic Knowledge of Cloud Storage

16. CCNP Security

Overview
CCNP Security training is a composite of four modules that a professional must qualify in order to obtain this prestigious credential. This training will cover in detail each of the following four modules to ensure that participants gain core understanding of implementing security for Cisco devices:

  • SISAS (Cisco Secure Access Solutions) 1.0
  • SENSS (Cisco Edge Network Security Solutions) 1.0
  • SIMOS (Cisco Secure Mobility Solutions) 1.0
  • SITCS (Cisco Threat Control Solutions) 1.0

Prerequisites

  • CCNA Security

Course Objectives

  • Understanding and Deploying Cisco ISE and 802.1X secure access techniques. Implementing and managing network access security using Cisco Identity Services Engine.
  • Configuring advanced security solutions to reduce external threats and secure network devices.
  • Implementing Cisco’s Next Generation Firewall (NGFW) and Web Security, Cloud Security and Email Security Implementing Cisco ASA firewalls to manage identity policies.
  • Mitigating risks to IT infrastructure and applications with the help of Cisco’s Next Generation Firewall Providing operational support for Email
  • Security, Intrusion Prevention Systems, and Web based security appliances.
  • Configuring Cisco perimeter edge security solutions that utilize Cisco routers and switches, and Cisco ASA Firewalls.
  • Protecting data going through a shared or public network infrastructure by utilizing and managing VPN solutions from Cisco.

Recommended Courses and Certification

  • CANAC – Implementing NAC Appliance
  • CCIE Security LAB Version 4.0
  • CCIE Security V4 (written)
  • CS-ACS 5.2 – Cisco Secure Access Control Server
  • ISE – Implementing Cisco Identity Services Engine Secure Solutions v1.3

Implementing Cisco Secure Access Solutions v1.0
This course has been designed to provide engineers with the foundational knowledge and skills required to implement and manage network access security through the deployment of the Cisco Identity Services Engine and 802.1x Solution.
Students will gain hands-on experience with configuring advanced Cisco security solutions to enable secure device connection to the network and for mitigating outside threats. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco’s ISE appliance features and provide operational support to identity and network access control.

Pre-Requisites
Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate Certification ICND1 and ICND2 or CCNABC
  • Cisco Certified Network AssociateSecurity Certification ICND1 and IINS
  • Knowledge of Microsoft Windows Operating System

Objectives
After completing this course you should be able to:

  • Understand Cisco Identity Services Engine architecture and access control capabilities
  • Understand 802.1X architecture, implementation and operation
  • Understand commonly implemented Extensible Authentication Protocols (EAP)
  • Implement Public-Key Infrastructure with ISE
  • Understand the implement Internal and External authentication databases
  • Implement MAC Authentication Bypass
  • Implement identity based authorization policies
  • Understand Cisco TrustSec features
  • Implement Web Authentication and Guest Access
  • Implement ISE Posture service
  • Implement ISE Profiling
  • Understand Bring Your Own Device (BYOD) with ISE
  • Troubleshoot ISE

Course Contents

  • Threat Mitigation Through Identity Services
    -Identity Services
    -802.1X and EAP
    -Identity System Quick Start
  • Cisco Identity Services Engine (ISE) Fundamentals
    -Cisco ISE Overview
    -Cisco ISE with PKI
    -Cisco ISE Authentication
    -Configuring Cisco ISE for External Authentication
  • Advanced Access Control
    -Certificate-based User Authentication
    -Authorization
    -Security Group Access (SGA) and MACsec Implementation
  • Web Authentication and Guest Access
    -Describe the Cisco Email Security Solutions
    -Guest Access Services
  • Endpoint Access Control Enhancements
    -Posture
    -Profiler
    -BYOD
  • Troubleshooting Network Access Control

Labs

  • Lab 1-1: Bootstrap Identity System
  • Lab 2-1: Enroll Cisco ISE in PKI
  • Lab 2-2: Implement MAB and Internal Authentication
  • Lab 2-3: Implement External Authentication
  • Lab 3-1: Implement EAP-TLS
  • Lab 3-2: Implement Authorization
  • Lab 4-1: Implement Central WebAuth and Guest Services
  • Lab 5-1: Implement Posture Service
  • Lab 5-2: Implement the Profile Service
  • Lab 6-1: Troubleshooting Network Access Control

Target Audience
This course is aimed at engineers looking to deploy or support a Cisco’s Identity Services Engine solution and individuals looking to achieve the Cisco Certified Network Professional Certification for Security.

Certification
Recommended Preparation for Exam(s):

  • 300-208 – Implementing Cisco Secure AccessSolutions Exam

Follow on Courses
Delegates looking to achieve the Cisco Certified Network Professional Certification for Security should also attend the following courses.

  • SENSS – Implementing Cisco Edge Network Security Solutions
  • SITCS – Implementing Cisco Threat Control Solutions
  • SIMOS – Implementing Cisco Secure Mobility Solutions

Implementing Cisco Edge Network Security Solutions v1.0

Overview
This course has been designed to provide students with the knowledge and skills required to implement and manage security on Cisco ASA firewalls, Cisco Routers with the firewall feature set and Cisco Switches. Students will gain hands-on experience with configuring various perimeter security solutions to mitigate outside threats and secure network zones. At the end of the course, students should be able to reduce the risk to their IT infrastructures and applications and provide detailed operations support for Cisco Switches, Cisco ASA, and Router security appliance features.

Pre-Requisites
Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate (CCNA®) certification
  • Cisco Certified Network Associate (CCNA®) Security certification
  • Knowledge of Microsoft Windows Operating System

Objectives
After attending this course you should be able to :

  • Understand current security threat landscape
  • Understand and implement Cisco modular Network Security Architectures such as SecureX and TrustSec
  • Deploy Cisco Infrastructure management and control plane security controls
  • Configure Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Design and deploy Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
  • Implement Botnet Traffic Filters
  • Deploy Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Target Audience
This course is aimed at network professionals involved in the support and deployment of Cisco Edge Security solutions utilizing Cisco Switches, Cisco Routers and Cisco ASA Firewalls, as well as Individuals looking to obtain the Cisco Certified Network Professional Certification.
Certification

Recommended preparation for exam(s)
300-206 – Implementing Cisco Edge Network Security Solutions

Follow on Courses
Delegates looking to achieve the Cisco Certified Network Professional Certification for Security should also attend the following courses.

  • SITCS – Implementing Cisco Threat Control Solutions
  • SISAS – Implementing Cisco Secure Access Solutions
  • SIMOS – Implementing Cisco Secure Mobility Solutions

Course Content
Cisco Secure Design Principles

  • Network Security Zoning
    -Cisco Module Network Architecture
    -Cisco SecureX Architecture
    -Cisco TrustSec Solutions
  • Implement Network Infrastructure Protection
    -Introducing Cisco Network Infrastructure Architecture
    -Deploying Cisco IOS Control Plane Security Controls
    -Deploying Cisco IOS Management Plane Security Controls
    -Deploying Cisco ASA Management Plane Security Controls
    -Deploying Cisco Traffic Telemetry Methods
    -Deploying Cisco IOS Layer 2 Data Plane Security Controls
    -Deploying Cisco IOS Layer 3 Data Plane Security Controls
  • Deploying NAT on Cisco IOS and Cisco Adaptive Security Appliance
    -Introducing Network Address Translation
    -Deploying Cisco ASA Network Address Translation
    -Deploying Cisco IOS Software Network Address Translation
  • Deploying Threat Controls on Cisco ASA
    -Introducing Cisco Threat Controls
    -Deploying Cisco ASA Basic Access Controls
    -Deploying Cisco ASA Application Inspection Policies
    -Deploying Cisco ASA Botnet Traffic Filtering
    -Deploying Cisco ASA Identity Based Firewall
  • Deploying Threat Controls on Cisco IOS Software
    -Deploying Cisco IOS Software with Basic Zone-Based Firewall Policies
    -Deploying Cisco IOS Software Zone-Based Firewall with Application Inspection Policies

Labs

  • Lab 2-1: Configuring Configure Cisco Policy Protection (CPP) and Management Plane Protection (MPP)
  • Lab 2-2: Configure Traffic Telemetry Methods
  • Lab 2-3: Configure Layer 2 Data Plan Security
  • Lab 2-4: Configure Layer 2 Data Plan Security
  • Lab 3-1: Configure NAT on Cisco Adaptive Security Appliance (ASA) Firewall
  • Lab 3-2: Configure NAT on Cisco IOS Software
  • Lab 4-1: Configure Cisco ASA Access Policy
  • Lab 4-2: Configure Cisco ASA Application Inspection Policy
  • Lab 4-3: Configure Cisco ASA Botnet Traffic Filter
  • Lab 4-4: Configure Cisco ASA Identity Based Firewall
  • Lab 5-1: Configure Cisco IOS Software Zone-Based Firewall (ZBFW)
  • Lab 5-2: Configure Cisco IOS Software ZBFW Application Inspection Policy

Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 Expert Encore
Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 is a course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.

Lesson Objectives

  • Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security
  • Implement and maintain Cisco site-to-site VPN solutions
  • Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs
  • Implement and maintain Cisco clientless SSL VPNs
  • Implement and maintain Cisco AnyConnect SSL and IPsec VPNs
  • Implement and maintain endpoint security and dynamic access policies (DAP)

Target Audience
This course covers a variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms. In addition, the proper implementation of highly secure remote communications through VPN technology, such as remote access SSL VPN and site-to-site VPN (DMVPN, FlexVPN) is covered. It is also perfect for students interested in pursuing their Cisco Certified Network Professional Security (CCNP Security) certification.

Expected Duration (hours)
32.0

Prerequisites
The knowledge and skills that a learner must have before attending this course are as follows:

  • Valid CCNA Security or CCSP Certification
  • Or any CCIE Certification
  • Certification
  • CCNP Security

Exams Associated with this Course
300-209 SIMOS

Overview
This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive Security Appliances and Cisco IOS routers.

Pre-Requisites
Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate (CCNA®) certification
  • Cisco Certified Network Associate (CCNA®) Security certification
  • Knowledge of Microsoft Windows Operating System

Content

  • Fundamentals of VPN Technologies and Cryptography
    -The Role of VPNs in Network Security
    -VPNs and Cryptography
  • Deploying Secure Site-to-Site Connectivity Solutions
    -Introducing Cisco Secure Site-to-Site Connectivity Solutions
    -Deploying Point-to-Point IPsec VPNs on the Cisco ASA
    -Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
    -Deploying Cisco IOS DMVPNs
  • Deploying Cisco IOS Site-to-Site FlexVPN Solutions
    -Introducing Cisco FlexVPN Solution
    -Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
    -Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
    -Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
  • Deploying Clientless SSL VPN
    -Clientless SSL VPN Overview
    -Deploying Basic Cisco Clientless SSL VPN
    -Deploying Application Access in Clientless SSL VPN
    -Deploying Advanced Authentication in Clientless SSL VPN
  • Deploying Cisco AnyConnect VPNs
    -Overview of Cisco AnyConnect VPNs
    -Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
    -Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
    -Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
    -Deploying Advanced Authentication, Authorization, and Accounting in Cisco AnyConnect VPNs
  • Deploying Endpoint Security and Dynamic Access Policies
    -Implementing Host Scan
    -Implementing DAP for SSL VPNs

Labs

  • Lab 1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
  • Lab 2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
  • Lab 3: Implement DMVPN
  • Lab 4: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
  • Lab 5: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  • Lab 6: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  • Lab 7: Implement ASA Basic Clientless SSL VPN
  • Lab 8: Application Access clientless SSL
  • Lab 9: Advanced AAA clientless SSL
  • Lab 10: Lab: Implement ASA Basic AnyConnect SSL VPN
  • Lab 11: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
  • Lab12: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
  • Lab13: Configure Advanced Authentication for Cisco AnyConnect VPN on Cisco ASA
  • Lab 14: Configure Hostscan and DAP for AnyConnect SSL VPNs

Objectives
After attending this course you should be able to :

  • Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.
  • Implement and maintain Cisco site-to-site VPN solutions.
  • Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs.
  • Implement and maintain Cisco clientless SSL VPNs.
  • Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
  • Implement and maintain endpoint security and dynamic access policies (DAP).

Target Audience
This course will be of benefit to security engineers involved in the support and deployment of Cisco VPN Solutions and individuals looking to obtain the Cisco Certified Network Professional for Security Certification.

Certification
Recommended preparation for exam(s):
300-209 – Implementing Cisco Edge Network Security Solutions

Follow on Courses
Delegates looking to achieve the Cisco Certified Network Professional Certification for Security should also attend the following courses.

  • SITCS – Implementing Cisco Threat Control Solutions
  • SISAS – Implementing Cisco Secure Access Solutions
  • SENSS – Implementing Cisco Edge Network SecuritySolutions

Implementing Cisco Threat Control Systems v1.0

Overview
This course has been designed to prepare security engineers with the knowledge and skills required to deploy Cisco’s Next Generation Firewall (NGFW), Web Security, Email Security and Cloud Web Security solutions including Cisco Prime Security Manager for the management of identity policies.
Students will gain hands-on experience with configuring various advance Cisco security solutions for mitigating outside threats and securing traffic traversing the firewall. At the end of the course, students should be able to reduce the risk to their IT infrastructures and applications using Cisco’s Next Generation Firewall security appliance features and provide operational support for Intrusion Prevention Systems, Email Security, and Web based security appliances.

Pre-Requisites
Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate Certification ICND1 and ICND2 or CCNABC
  • Cisco Certified Network AssociateSecurity Certification ICND1 and IINS
  • Knowledge of Microsoft Windows operating system

Objectives
After completing this course you should be able to:

  • Understand Cisco ASA Next-Generation Firewall (NGFW)
  • Deploy Cisco Web Security appliance to mitigate malware
  • Configure Web Security appliance for acceptable use controls
  • Configure Cisco Cloud Web Security Connectors
  • Describe Cisco Email Security Solution
  • Configure Cisco Email Appliance Incoming and Outgoing Policies
  • Describe IPS Threat Controls
  • Configure and Implement Cisco IPS Sensor into a Network

Target Audience
This course is aimed at engineers invovled in the implementation and support of Cisco Security Solutions that include Cisco’s Next Generation Firewall, Web Security. Email Security and Cloud Web Security Applicances. This course is also required for engineers looking to achieve the Cisco Certified Network Professional Certification for Security.

Certification
Recommended Preparation for Exam(s):

  • 300-207 – Implementing Cisco Threat Control Solutions Exam

Follow on Courses
Delegates looking to achieve the Cisco Certified Network Professional Certification for Security should also attend the following courses.

  • SENSS – Implementing Cisco Edge Network Security Solutions
  • SISAS – Implementing Cisco Secure Access Solutions
  • SIMOS – Implementing Cisco Secure Mobility Solutions

Course Content

  • Cisco ASA Next-Generation Firewall (NGFW) Services
    -Describing the Cisco Modular Network Architecture
    -Describing the Cisco ASA (CX) NGFW Management Architecture
    -Configure Cisco ASA (CX) NGFW Policy Objects
    -Monitoring Cisco ASA (CX) NGFW Operations
    -Configuring Cisco ASA (CX) NGFW Access Policies
    -Configuring Cisco ASA (CX) NGFW Identity Policies
    -Configuring Cisco ASA (CX) NGFW Access Decryption Policies
  • Cisco Web Security Appliance
    -Describing The Cisco Web Security Appliance (WSA) Solutions
    -Integrating the Cisco Web Security Appliance
    -Configuring Cisco Web Security Appliance Identities and User Authentication Controls
    -Configuring Cisco Web Security Appliance Acceptable Use Control
    -Configuring Cisco Web Security Appliance Anti-Malware Controls
    -Configuring Cisco Web Security Appliance Decryption
    -Configuring Cisco Web Security Appliance Data Security Controls
  • Cisco Cloud Web Security
    -Describing the Cisco Cloud Web Security Solution
    -Configuring Cisco Cloud Web Security Connectors
    -Describing the Web Filtering Policy in Cisco ScanCenter
  • Cisco Email Security Appliance
    -Describe the Cisco Email Security Solutions
    -Describing the Cisco Email Security Appliance Basic Configuration
    -Deploying Cisco ASA Application Inspection Policies
  • Cisco Intrusion Prevention Systems
    -Describing IPS Threat Controls
    -Integrating Cisco IPS Sensor into a Network
    -Configuring Basic Cisco IPS Settings
    -Tuning Cisco IPS Signatures
    -Configuring Custom Cisco IPS Signatures
    -Configuring Cisco IPS Anomaly-Detection
    -Configuring Cisco IPS Reputation-Based Features

Labs

  • Lab 1-1 Exploring Cisco ASA (CX) NGFW and PRSM
  • Lab 1-2 Configuring Cisco ASA (CX) NGFW Access Policy
  • Lab 1-3 Configuring Cisco ASA (CX) NGFW Identity Policy
  • Lab 1-2 Configuring Cisco ASA (CX) NGFW Decryption Policy Lab
  • Lab 2-1: Configuring Cisco Web Security Appliance
  • Lab 3-1: Configuring Cisco Cloud Web Security Connector on AnyConnect and ISR G2
  • Lab 4-1: Configuring Basic Cisco Email Security Mail Policies
  • Lab 5-1: Configuring Cisco Basic Cisco IPS Settings
  • Lab 5-2: Tuning Cisco IPS Signatures and Anomaly -Detection