Associated Certifications
CCNP Security
Required Exam(s)
300-209
Instructorctclc admin
TypeOnsite Course
Duration
5 Days
Methods of Delivery
ILT, WEBEX, VIRTUAL
Price$3495.00
Buy NowBook Now

This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive
security appliances and Cisco IOS routers.

Course Objectives

Who Should Attend

Perquisites

Course Outline

Download Outline

Upon completing this course, the student will be able to meet these objectives:

  •  Introduce VPNs
  •  Implement advanced threat controls
  •  Deploy secure site-to-site connectivity solutions
  •  Deploy Cisco IOS site-to-site FlexVPN solutions
  •  Deploy clientless SSL VPN
  •  Deploy AnyConnect VPN for remote access
  •  Introduce endpoint security and dynamic access policies

 

The primary audience for this course is as follows:

  •  Network Security Engineers
  • CCNP Security candidates

  •  CCNA Security or valid CCSP or any CCIE certification can act as a prerequisite.

Course Introduction
Module 1: Fundamentals of VPN Technologies and Cryptography

  • The Role of VPNs in Network Security
  •  VPNs and Cryptography

Module 2: Deploying Secure Site-to-Site Connectivity Solutions

  •  Introducing Cisco Secure Site-to-Site Connectivity Solutions
  •  Deploying Point-to-Point IPsec VPNs on the Cisco ASA
  •  Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
  •  Deploying Cisco IOS DMVPNs

Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions

  •  Introducing Cisco FlexVPN Solution
  •  Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
  •  Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
  • Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN

Module 4: Deploying Clientless SSL VPN

  •  Clientless SSL VPN Overview
  •  Deploying Basic Cisco Clientless SSL VPN on Cisco ASA
  •  Deploying Application Access in Cisco ASA Clientless SSL VPN
  •  Deploying Advanced Authentication and Authorization in Clientless SSL VPN

Module 5: Deploying AnyConnect VPN for Remote Access

  •  Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
  •  Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
  •  Deploying Advanced Authentication and Authorization in Cisco AnyConnect VPNs
  • Deploying Cisco AnyConnect IPSec/IKEv2 VPNs

Module 6: Endpoint Security and Dynamic Access Policies

  •  Implementing Host Scan
  •  Implementing DAP for SSL VPNs

Lab

  •  Implement Site-to-Site Secure Connectivity on the Cisco ASA
  •  Implement Cisco IOS Static VTI Point-to-Point Tunnel
  •  Implement DMVPN
  •  Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
  •  Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  •  Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  •  Implement ASA Basic Clientless SSL VPN
  •  Configure Application Access for Cisco ASA Clientless SSL VPN
  •  Implement Local and External AAA for Clientless SSL VPNs
  •  Implement ASA Basic AnyConnect SSL VPN
  • Configure Advanced Authentication for Cisco AnyConnect SSL VPN
  •  Implement AnyConnect IPSec/IKEv2
  •  Implement Host Scan and DAP