Implementing Cisco Edge Network Security Solutions

Duration: 
5 days
Codes: 
SENSS
Versions: 
NULL

Overview

The Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 training course is a newly created five-day instructor-led training (ILT) course, which is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification.

Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls.

The goal of the course is to provide you with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches. You will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones.

At the end of the course, you will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.

Audience

This course is aimed at network professionals involved in the support and deployment of Cisco Edge Security solutions utilizing Cisco Switches, Cisco Routers and Cisco ASA Firewalls, as well as Individuals looking to obtain the Cisco Certified Network Professional Certification.

Skills Gained

After attending this course you should be able to :

  • Understand current security threat landscape
  • Understand and implement Cisco modular Network Security Architectures such as SecureX and TrustSec
  • Deploy Cisco Infrastructure management and control plane security controls
  • Configure Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Design and deploy Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
  • Implement Botnet Traffic Filters
  • Deploy Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Prerequisites

This section lists the skills and knowledge you must possess to benefit fully from the course. This section includes recommended Cisco learning offerings that you may complete to benefit fully from this course, including the following:

  • Cisco Certified Network Associate (CCNA ) certification
  • Cisco Certified Network Associate (CCNA ) Security certification
  • Knowledge of Microsoft Windows operating system

Course Outline

Further course objectives:

  • Configuring Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
  • Implementing Botnet Traffic Filters
  • Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Module 1: Secure Design Principles

  • Course Overview
  • Network Security Zoning
  • Cisco Module Network Security Architecture
  • Cisco SecureX Architecture and Cisco TrustSec Solution

Module 2: Deploying Network Infrastructure Protection

  • Intro Cisco Network Infrastructure Architecture and Deploying Cisco IOS Control Plane Security Controls, Cisco IOS Management Plane Security Controls
  • Deploying Cisco ASA Management Plane Security Controls
  • Lab 2-1: Configuring Control and Management Plane Security
  • Configuring Cisco Traffic Telemetry Methods
  • Lab 2-2: Configuring Cisco Traffic Telemetry Methods
  • Deploying Cisco IOS Layer 2 and Layer 3 Data Plane Security Controls
  • Lab 2-3 and 2-4: Configuring Cisco Layer 2 and Layer 3 Data Plane Security

Module 3: Deploying NAT on Cisco IOS and Cisco ASA

  • Introducing Network Address Translation
  • Deploying Cisco ASA Network Address Translation
  • Lab 3-1: Configuring Cisco ASA NAT
  • Deploying Cisco IOS Software Network Address Translation

Module 4: Deploying Threat Controls on Cisco ASA

  • Introducing Cisco Threat Controls
  • Deploying Cisco ASA Basic Access Policies
  • Lab 4-1: Configur3 Cisco ASA Access Policy
  • Deploying Cisco ASA Application Inspection Policies
  • Lab 4-2: Configuring Authentication Using WebAuth
  • Deploying Cisco ASA Botnet Traffic Filtering
  • Lab 4-3: Configuring Cisco ASA Botnet Traffic Filter
  • Deploying Cisco ASA Identity Based Firewall
  • Lab 4-4: Configuring Cisco ASA Identity Based Firewall

Module 5: Deploying Threat Controls on Cisco IOS Software

  • Deploying Cisco IOS Software with Basic Zone-Based Firewall Policy
  • Lab 5-1: Configure Cisco IOS Software with Basic ZBFW
  • Deploying Cisco IOS Software ZBFW with Application Inspection Policies
  • Lab 5-2: Configure Cisco IOS Software ZBFW with Application Inspection Policy

Exam

Recommended preparation for exam(s):

300-206 - Implementing Cisco Edge Network Security Solutions

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. It's a cost effective option.

Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.

Upcoming Dates

  • GREEN This class is Guaranteed To Run.
  • SPVC - Self-Paced Virtual Class.
  • Click a Date to Enroll.
Course Location Days Cost Date
Bucharest
Bucharest5 2500 £2500 2019-07-15
London
London5 2500 £2500 2019-07-15
London
London5 2500 £2500 2019-07-15
London
London5 2732 £2732 2019-07-15
Onsite
Onsite5 3500 3500 2019-07-18
London
London5 2732 £2732 2019-08-05
Yorkshire
Leeds5 2445 £2445 2019-08-05
London
London5 2732 £2732 2019-08-05
London
London5 2445 £2445 2019-08-05
Yorkshire
Leeds5 2445 £2445 2019-09-09
Berkshire
Wokingham5 2445 £2445 2019-09-09
Lombardia
Milan3 1500 £1500 2019-10-07
Lazio
Rome3 1500 £1500 2019-10-07
Online
Online3 1500 £1500 2019-10-07
Berkshire
Wokingham5 2445 £2445 2019-10-14
Yorkshire
Leeds5 2445 £2445 2019-10-14
London
London5 2445 £2445 2019-10-14
Nordrhein-Westfalen
Dusseldorf5 2890 2890 2019-10-14
Eschborn
Eschborn5 2890 2890 2019-10-28
Prague
Prague5 2500 £2500 2019-10-28
Yorkshire
Leeds5 2445 £2445 2019-11-04
London
London5 2445 £2445 2019-11-04
Ile de France
Paris5 3870 3870 2019-11-11
Yorkshire
Leeds5 2500 £2500 2019-11-11
Bavaria
Garching5 2890 2890 2019-11-11
London
London5 2732 £2732 2019-11-11
London
London5 2500 £2500 2019-11-11
Wallisellen
Wallisellen5 2500 £2500 2019-11-11
London
London5 2732 £2732 2019-11-11
London
London5 2732 £2732 2019-11-25
London
London5 2732 £2732 2019-11-25