CCSP - Securing Networks with Cisco Routers and Switches (SNRS)
SNRS
642-504 SNRS Securing Networks
with Cisco Routers & Switches
Securing Networks with Cisco Routers and Switches (SNRS), instructor-led,
lab-intensive course that is aimed at providing network specialists with the
knowledge and skills needed to secure Cisco IOS router and switch networks.
Successful graduates will be able to secure the network environment using
existing Cisco IOS security features. This includes the ability to configure
some of the primary components of the Cisco IOS Firewall feature set, which
include the following:
Cisco IOS classic firewall
(formerly known as Context-Based Access Control [CBAC])
Cisco IOS Intrusion
Prevention System (IPS)
Cisco IOS zone-based policy
firewall
Application inspection and
control
Learners will also have the ability to implement the following:
Secure tunnels using generic
routing encapsulation (GRE) and IP Security (IPsec) technology
Basic Layer 2 switch security
The Cisco Trust and Identity
Management model to control network access
Command-line Cisco Network
Foundation Protection (NFP)
Prerequisites
To fully benefit from this course, it is recommended that you have the
following prerequisite skills and knowledge:
Certification as a Cisco
CCNAŽ or the equivalent knowledge (optional)
Basic knowledge of the
Microsoft Windows Operating System
Familiarity with networking
and security terms and concepts (The concepts are learned in prerequisite
training or by reading industry publications)
Associated Certifications
Cisco Certified Security
Professional (CCSP)
Who Should Attend
This course is intended for the following audience:
The primary audience for this course is as follows:
Network designers
Network administrators
Network engineers
The secondary audience for this course is as follows:
Network managers
Program managers
Project managers
Course Objectives
After completing this course, the student will be able to:
Implement Layer 2 security
features on a network using Cisco IOS commands
Implement the Cisco Network
Foundation Protection on Cisco IOS routers
Design, install, configure
and troubleshoot site-to-site VPN's using Cisco routers
Describe the various options
for securing remote-access communications using Cisco IOS security
features
Install, configure, and
troubleshoot URL filtering, NAT and PAT, Cisco IOS Classic Firewall, Cisco
IOS Zone-Based Policy Firewall, and Cisco IOS IPS on a Cisco router
Course Outline
Course Outline
Network Platform Security
with Switches
Configuring Advanced
Layer 2 Security
Introducing Cisco IBNS
Implementing Basic
802.1x Authentication
Configuring Advanced
802.1x Authentication and Authorization
Network Platform Security
with Routers
Securing the Control,
Management and Data Plane
Configure the Cisco
Network Foundation Protection Strategy
Secure Site-to-Site
Communications
Examine VPN and IPsec
Fundamentals
Configure a
Site-to-Site VPN using Certificates
Implementing GRE over
IPsec Tunnel
Configuring High
Availability VPN's and VTI
Configure a DMVPN
Spoke using Cisco SDM
Implementing GET VPN
Secure Remote Access Communications
Implementing Cisco IOS
Remote Access using Cisco Easy VPN
Configure Cisco Easy
VPN Remote
Configure Cisco Easy
VPN Server
Examine and Configure
Cisco IOS SSL VPN
Threat Control and
Containment
Configuring NAT and
PAT
Configure Cisco IOS Classic
Firewall
Configure a Cisco IOS
Zone-Based Policy Firewall with URL Filtering
