CISCO Security

This course provides you with the fundamentals of security implementation on Cisco devices. You will learn how to implement network security, recognize threats and discover vulnerabilities in networks. Practical exposure will be given on security implementation for Cisco routers and Cisco switches. The training will be provided by Senior Network / WAN / Security Engineers with several years of field experience.

Implementing Security on Cisco Routers

  • Securing the Router for Administrative Access
    • Basic Router configuration
    • Control Administrative Access to Routers
    • Configuring Cisco Router using Cisco Configuration Professional (CCP)
    • SSH configuration
    • Configure Administrative Roles
      • Privilege
      • Role based CLI (VIEWS)
    • Configure IOS Resilience and Management Reporting
    • Configure Automated Security Features
  • Understanding, implementing, and verifying AAA (authentication, authorization, and accounting), including the details of TACACS+ and RADIUS
  • Securing Administrative Access Using AAA and RADIUS
    • Configure Local Authentication
    • Configure Local Authentication Using AAA
    • Configure Centralized Authentication Using AAA and RADIUS
    • Password Recovery on Cisco Routers

Implementing Security on Cisco Switches

  • Understanding and implementing protection against Layer 2 attacks, including CAM table overflow attacks, and VLAN hopping
    • Providing Layer 2 Security by implementing VLANs
    • Secure Trunks and Access Ports
    • BPDU Guard, Port Security
    • Configure SPAN and Monitor Traffic

Cisco IOS firewall

  • Default Routing
  • Implement Network Address Translation (NAT) and Port Address Translation (PAT)
  • Implementing Access Control List in IPv4 & IPv6
  • Standard, extended, and named access control lists used for packet filtering and for the classification of traffic

Cisco IOS VPN

  • Understanding VPN
  • Types of VPN -Site to Site, Remote Access, SSL
  • Configure a Site-to-Site VPN IPsec VPN using CCP