Implementing Cisco IOS Network Security 1.0 (IINS)

This course for the following target audience: • Network Designers • Network Administrators • Network Engineers • Network Managers • Systems Engineers

After completing this course, students will be able to:

• Develop a comprehensive network security policy to counter threats against information security
• Configure routers on the network perimeter with Cisco IOS Software security features
• Configure a Cisco IOS zone-based firewall to perform basic security operations on a network
• Configure site-to-site VPNs using Cisco IOS features
• Configure IPS on Cisco network routers
• Configure LAN devices to control access, resist attacks, shield other network devices and systems, and protect the integrity and confidentiality of network traffic

1. Introduction to Network Security Principles

• Network Security Fundamentals
• Network Attack Methodologies
• Operations Security
• Security Policy
• Building Cisco Self-Defending Networks

2. Perimeter Security

• Securing Administrative Access to Cisco Routers
• Configuring AAA on a Cisco Router Using the Local Database
• Cisco SDM
• Configuring AAA on a Cisco Router to Use Cisco Secure ACS
• Implementing Secure Management and Reporting
• Locking Down the Router

3. Network Security Using Cisco IOS Firewalls

• Firewall Technologies
• Creating Static Packet Filters Using ACLs
• Configuring Cisco IOS Zone-Based Policy Firewall

4. Site-to-Site VPNs

• Cryptographic Services
• Symmetric Encryption
• Cryptographic Hashes and Digital Signatures
• Asymmetric Encryption and PKI
• IPsec Fundamentals
• Building a Site-to-Site IPsec VPN
• Configuring IPsec on a Site-to-Site VPN Using Cisco SDM