This training course is no longer available.

Please return to Virtual Classroom category or contact our customer service for more details.

EL609

SENSS 1.0 - Virtual Classroom

Implementing Cisco Edge Network Security Solutions

  • Duration 32 HOURS
  • Regular fee 2 250
SUMMARY
DETAILS

Objectives

Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 is a newly created instructor-led training (vILT) course is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches. The student will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.

Targeted audience

This course is designed to prepare security engineers with the knowledge to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. It is also perfect for students interested in pursuing their Cisco Certified Network Professional Security (CCNP Security) certification.

Prerequisite

The knowledge and skills that a learner must have before attending this course are as follows:

  • Valid CCNA Security Certification
  • Any CCIE Certification

Special Note

Live Learning is similar to traditional instructor-led technical training, but rather than gathering students in one physical location, instructor presentations are webcast to participants anywhere via the internet. These presentations are also available as recordings for on-demand viewing and re-viewing.
Live Learning courses contain:

  • Multiple instances of real-time virtual class sessions (course-dependent) led by a team of expert instructors (Live sessions)
  • Recorded sessions (Encore Modules) for on-demand viewing or review of Live sessions content
  • A rich set of supporting materials that stays available to the student for 1 year and can include Student Guides, Hands-On Labs, Class Notes, and a variety of assessments

Dates of sessions

  • Session 1 of 6: February 2 2016 - 15:00 PM
  • Session 2 of 6: February 4 2016 - 15:00 PM
  • Session 3 of 6: February 9 2016 - 15:00 PM
  • Session 4 of 6: February 11 2016 - 15:00 PM
  • Session 5 of 6: February 16 2016 - 15:00 PM
  • Session 6 of 6: February 18 2016 - 15:00 PM

Content

Module 1: Secure Design Principals

  • Describe the concepts of Network Security Zones
  • Provide an overview of the Cisco modular network architecture blueprint
  • Describe the Cisco SecureX architecture as a context-aware security solution
  • Describe the Cisco TrustSec solution as a part of the Cisco SecureX architecture

Module 2: Network Infrastructure Protection Deployment

  • Provide an overview of network infrastructure protection controls
  • Examine various defenses in Cisco IOS Software that protect the control plane
  • Describe some strategies to protect the Cisco IOS management plane
  • Describe some strategies to protect the Cisco ASA management plane
  • Describe the baseline forms of telemetry recommended for network infrastructure devices
  • Configure and verify Cisco IOS Software Layer 2 Data Plane Controls
  • Configure and verify Cisco IOS Software and Cisco ASA Layer 3 Data Plane Controls

Module 3: NAT Deployment on Cisco IOS Software and Cisco ASA

  • Describe network address translation
  • Configure, verify, and troubleshoot network address translation on Cisco ASA
  • Configure, verify, and troubleshoot network address translation on Cisco IOS Software routers

Module 4: Threat Controls Deployment on Cisco ASA

  • Overview of Cisco firewall threat controls
  • Describe and configure basic Cisco ASA access polices
  • Describe and configure advanced Cisco ASA access policies
  • Describe and configure reputation-based Cisco ASA access policies

Module 5: Threat Controls Deployment on Cisco IOS Software

  • Describe and configure Cisco IOS Zone-Based Policy Firewall
  • Describe and configure application inspection policies on Cisco IOS Zone-Based Policy Firewall

INCLUDED LABS:

  • Configure URL FilteringConfiguring DHCP Snooping
  • Configure URL FilteringConfigure Control Plane Protection
  • Configure URL FilteringConfigure Management Plane Protection
  • Configure URL FilteringConfigure Unicast Reverse Path Forwarding
  • Configure URL FilteringConfigure Zones
  • Configure URL FilteringConfigure Access Control Between the INSIDE and OUTSIDE Zones
  • Configure URL FilteringConfigure Access Control Between the OUTSIDE and DMZ Zones
  • Configure URL FilteringConfigure Inspection of Local Traffic
  • Configure URL FilteringConfigure Application-Layer Filtering
  • Configure URL Filtering

General Note

SUPPORTED OPERATING SYSTEM VERSIONS
Microsoft® Windows Vista, Microsoft® Windows XP, Microsoft® Windows 7, Microsoft® Windows 8, Microsoft® Windows RT, Mac OS® X™: 10.5.8, 10.6.8, 10.7.5, 10.8.5, 10.9.2, 10.10, 10.10.1 and above (Version 10.6 32-bit kernel is supported.)

SUPPORTED BROWSERS (MINIMUM VERSIONS)
Internet Explorer® (Internet Explorer 8 on Windows 7 only, Internet Explorer 9 or later is recommended, Internet Explorer 8 may hinder performance and result in minor visual problems.), Firefox 31 or later, Chrome 29 or later, Safari: 5.1.8 or later (Safari on Windows platforms is not supported.)

HARDWARE REQUIREMENTS
Skillsoft supports the minimum hardware specifications for all supported operating systems. Additionally, we recommend the following: speakers or headphones to listen to audio content, a microphone to speak in Dialogue streaming audio sessions (Live learning only).

Exam Note

Exam not included. Refer to vendor website for more information.

Legal Note

Exams requirements are subject to change without notification.