Imate žicu za učenje?

Cisco SECURE 1.0: Advanced Switched Data Plane Security Controls

Overview/Description Cisco IOS Software on Cisco Catalyst switches provides a host of data plane security controls that can mitigate the risks associated with Open Systems Interconnection (OSI) Layer 2 attacks inside a VLAN. This course shows you how to configure, verify, and troubleshoot several of the Cisco Catalyst IOS Software advanced security features that you can use to reduce these risks in your switched network environment. Target Audience Network professionals responsible for securing and managing their network infrastructures, who have CCNA certification, CCNA Security...

Cisco SECURE 1.0: Deploying Advanced Management Plane Security Controls

Overview/Description The management plane performs all the management functions for a device and coordinates functions between the control and the data planes. These functions make the management plane a prime target for attacks. This course introduces you to some strategies for protecting the management plane by limiting access to it, limiting access to its individual features, and using role-based access control (RBAC). You can also configure security features of Simple Network Management Protocol version 3 (SNMPv3), use digitally signed software images, and configure the detection of...

Cisco SECURE 1.0: Deploying Advanced Zone-Based Policy Firewalls

Overview/Description Deploying access control based on Open Systems Interconnection (OSI) Layer 3 and 4 parameters establishes a minimal connectivity policy for network applications. However, such filtering alone cannot provide protection to exposed applications, user awareness in dynamic environments, and control over access to specific types of content on the Internet. The Cisco IOS Zone-Based Policy Firewall provides advanced application layer (OSI Layer 5 to 7) filtering, user-based controls, and content filtering controls to address these scenarios when risk assessment demands them. This...

Cisco SECURE 1.0: Deploying Basic 802.1X Features

Overview/Description One of the tools Cisco provides that allows you to centrally manage access to network resources is Cisco Secure Access Control Server (ACS). This course describes how to implement basic identity management services within a Cisco wired LAN by using Cisco Secure ACS and a Cisco Catalyst switch. It also discusses how to troubleshoot basic 802.1X features in a Cisco IBNS environment. Target Audience Network professionals responsible for securing and managing their network infrastructures, who have CCNA certification, CCNA Security certification (IINS), and a working...

Cisco SECURE 1.0: Deploying Basic Zone-Based Policy Firewalls

Overview/Description The Cisco IOS Zone-Based Policy Firewall represents the latest generation of Cisco IOS Software firewall functions. Designed as a replacement technology for Cisco IOS Classic firewalls, also known as Context-Based Access Control (CBAC) firewalls, Zone-Based Policy Firewalls change the firewall from the older interface-based model to a more easily understood zone-based model. In this course, you will learn to configure, verify, and troubleshoot Open Systems Interconnection (OSI) Layer 3 and 4 access control features of the Zone-Based Policy Firewall. Target Audience...

Cisco SECURE 1.0: Deploying Cisco IOS Software IPS

Overview/Description In modern IT infrastructures, it is becoming increasingly more important to protect company resources. Not only must company resources be defended passively, but also the protection must be constantly monitored and enhanced with systems that actively inspect the data that is passed over allowed and open connections. Intrusion prevention and intrusion detection systems are two technologies that can provide such risk reduction. This course covers the Cisco IOS Intrusion Prevention System (IPS). You will learn how to configure a Cisco router for intrusion prevention,...

Cisco SECURE 1.0: Deploying DMVPNs

Overview/Description Dynamic Multipoint Virtual Private Networks (DMVPNs) are a Cisco IOS Software feature that simplifies the deployment of large hub-and-spoke, partially meshed, and fully meshed virtual private networks (VPNs). In this lesson, you will learn to integrate multipoint Generic Routing Encapsulation (mGRE) with Next Hop Resolution Protocol (NHRP) and IP Security (IPSec) to deploy DMVPN on hub-and-spoke devices. After configuring all required parameters, you will verify proper DMVPN operation and learn how to troubleshoot common DMVPN issues. Target Audience Network professionals...

Cisco SECURE 1.0: Deploying Network Address Translation

Overview/Description Cisco IOS Network Address Translation (NAT) and Port Address Translation (PAT) are mechanisms that you can use to conserve registered IP version 4 (IPv4) addresses in large networks, resolve overlapping addressing scenarios, and simplify IPv4 address management tasks. NAT and PAT translate IPv4 addresses within private internal networks to legal IPv4 addresses for transport over public external networks, such as the Internet, without requiring a registered subnet address. Incoming traffic is translated back for delivery within the inside network. This translation of IPv4...

Cisco SECURE 1.0: Deploying Remote Access Solutions Using SSL VPN

Overview/Description A basic Cisco IOS Software Secure Sockets Layer (SSL) virtual private network (VPN) solution allows users flexible client-based or clientless access to sensitive resources over a remote access VPN gateway that is implemented on a Cisco Integrated Services Router (ISR) device running Cisco IOS Software. A basic SSL VPN employs user authentication with usernames and static passwords and a single access control policy that applies to all users. This course enables you to configure, verify, and troubleshoot a basic client-based and clientless SSL VPN solution on a Cisco ISR....

Cisco SECURE 1.0: Deploying Scalable Authentication in Site-to-Site IPSec VPNs

Overview/Description You can configure IP Security (IPSec) virtual private networks (VPNs) with various types of authentication, which often limit its scalability with regard to performance and configuration manageability. A simple method, such as using pre-shared keys (PSKs), requires you to share a secret between each pair of VPN peers. A more scalable authentication method incorporates the public key infrastructure (PKI) for authentication purposes. This course discusses the process of configuring an IPSec site-to-site VPN using PKI-facilitated peer authentication. Target Audience Network...

Koraci do učenja

1Prijavi se

Prijavite se, a ako nemate korisničko ime, registrirajte se.

2Pronađi i upiši program

Pronađite edukacijske programe u Katalogu i Certifikaciji, ili koristite polje za pretragu.

3Uči

Upisani programi dostupni su u meniju Korisnik, Moji tečajevi.

»Detaljne upute

Trebate pomoć?