Standard

 

CIS 2726 – Securing Cisco IOS Router Networks

 

Course Description

Details the skills to secure Cisco IOS router networks.  Skills learned from this course can be used to successfully pass the Securing Cisco IOS Networks exam (SECUR 642-501).

 

Competency Areas

Hours

Basic Cisco Router Security

Class

4

Advanced AAA Security for Cisco Router Networks

D. Lab

4

Cisco Router Threat Mitigation

P. Lab/O.B.I.

0

Cisco IOS Firewall CBAC Configuration

Credit

6

Cisco IOS Firewall Authentication Proxy Configuration

 

 

Cisco IOS Firewall IDS Configuration

 

 

Building Basic IPSec Using Cisco Routers

 

 

Building Advanced IPSec VPNs Using Cisco Routers and Certificate Authorities

 

 

Configuring Cisco Remote Access IPSec VPNs

 

 

Managing Enterprise VPN Routers

 

 

 

Prerequisite:

CCNA Certification or Successfully Completed the CCNA Program – CIS2321 and CIS2322 and CIS276and CIS277

Corequisite:

 

 

 

 

Course Guide

 

Competency

After completing this section, the student will:

Hours

Class

D.Lab

P.Lab/

O.B.I.

Basic Cisco Router Security      

4

3

0

 

 Secure administrative access for Cisco routers

 

 

 

 

 Describe the components of a basic AAA implementation

 

 

 

 

 Test the perimeter router AAA implementation using applicable debug commands

 

 

 

 

 

 

 

Advanced AAA Security for Cisco Router Networks

4

5

0

 

 Describe the features and architecture of CSACS 3.0 for Windows

 

 

 

 

 Configure the perimeter router to enable AAA processes to use a TACACS remote service

 

 

 

 

 

 

 

Cisco Router Threat Mitigation

4

3

0

 

 Disable unused router services and interfaces

 

 

 

 

 Use access lists to mitigate common router security threats

 

 

 

 

 

 

 

Cisco IOS Firewall CBAC Configuration

4

5

0

 

 Define the Cisco IOS Firewall and CBAC

 

 

 

 

 Configure CBAC

 

 

 

 

 

 

 

Cisco IOS Firewall Authentication Proxy Configuration

 

 

 

 

 Describe how authentication proxy technology works

 

 

 

 

 Configure AAA on a Cisco IOS Firewall

 

 

 

Cisco IOS Firewall IDS Configuration

4

3

0

 

 Name the two types of signature implementations used by the Cisco IOS Firewall IDS

 

 

 

 

 Initialize a Cisco IOS Firewall IDS router

 

 

 

 

 

 

 

Building Basic IPSec Using Cisco Routers

4

4

0

 

 Configure a Cisco router for IPSec using pre-shared keys

 

 

 

 

 Verify the IKE and IPSec configuration

 

 

 

 

 Explain the issues regarding configuring IPSec manually and using RSA encrypted nonces

 

 

 

 

 

 

 

Building Advanced IPSec VPNs Using Cisco Routers and Certificate Authorities

4

5

0

 

 Advanced IPSec VPNs using Cisco Routers and CAs

 

 

 

 

 

 

 

Configuring Cisco Remote Access IPSec VPNs

4

3

0

 

 Describe the Easy VPN Server

 

 

 

 

 

 

 

Managing Enterprise VPN Routers

4

5

0

 

 Managing Enterprise VPN Routers

 

 

 

 

Suggested Resources

 

Cisco Systems, Inc.  (2001) Managing Cisco Network Security Cisco Press.  ISBN: 1578701031

Cisco Online Curriculum http://cisco.netacad.net

For additional resources visit the following Cisco Press website:

http://www.mcp.com/publishers/cisco_press/

 

 

Posted: 03/08/10