|
|
Course Overview Cisco has responded to the challenge in the internetworking technology with the Cisco Certified Internetwork Expert (CCIE) Program. This is currently the most significant certification in the industry. This course has been classified as IT Technical Training. Audience - Candidates who want to become CCIE Security certified
- Existing CCIE's who need to re-certify their CCIE qualification
Examinations This Written Boot Camp does not include the actual exam, but provides delegates with the necessary theory to prepare for the two-hour, multiple choice test. It will include areas that will be covered in the exam, such as: - security protocols
- operating systems
- application protocols
- security technologies
- Cisco security applications
Delegates should be prepared to work beyond the usual classroom hours in order to prepare for the written exam. After passing the written exam, delegates can then proceed to the CCIE Security Lab Boot Camp which will prepare them for the practical lab exam. Prerequisites There are no formal prerequisites for CCIE certification; other professional certifications or training courses are not required. But candidates should: - have an in-depth understanding of the topics in the exam blueprints and
- have three to five years of job experience before attempting certification
- have a determined attitude, patience and strong will.
Course Outline The CCIE Security certifies expertise with specific security protocols and components, as well as IP and IP routing. This 4 day course will prepare delegates for the two hour written CCIE exam. The course outline is as follows: Security Protocols - Remote Authentication Dial In User Service (RADIUS)
- Terminal Access Controller Access Control System Plus (TACACS+)
- AES
- EAP peap tkip tls
- Data Encryption Standard (DES)
- Triple DES (3DES)
- IP Secure (IPSec)
- Internet Key Exchange (IKE)
- Certificate Enrollment Protocol (CEP)
- Point to Point Tunneling Protocol (PPTP)
- Layer 2 Tunneling Protocol (L2TP)
Application Protocols - Domain Name System (DNS)
- Trivial File Transfer Protocol (TFTP)
- File Transfer Protocol (FTP)
- Hypertext Transfer Protocol (HTTP)
- Secure Socket Layer (SSL)
- Simple Mail Transfer Protocol (SMTP)
- Network Time Protocol (NTP)
- IOS SSH
- Lightweight Directory Access Protocol (LDAP)
- Active Directory
- RDEP Remote Data Exchange Protocol
General Networking - Networking Basics
- TCP/IP
- Switching and Bridging (including: VLANs, Spanning Tree, etc.)
- Routed Protocols
- Routing Protocols (including: RIP, EIGRP, OSPF, BGP)
- Point to Point Protocol (PPP)
- IP Multicast
- Integrated Services Digital Network (ISDN)
- Async
- Access Devices (for example: Cisco AS 5300 series)
- Telephony best practices
- Wireless best practices
Security Technologies - Concepts - Security Policy Best Practices
- Packet Filtering
- PIX and IOS authentication proxies
- Port Address Translation (PAT)
- Network Address Translation (NAT)
- Firewalls
- Content Filters
- Public Key Infrastructure (PKI)
- Authentication Technologies
- Authorization technologies
- Virtual Private Networks (VPN)
- Network IDS anomaly, signature, passive, inline
- Host Intrusion Prevention
- Cisco Threat Response
Cisco Security Applications - Cisco Secure NT
- Cisco Secure PIX Firewall
- VMS
- Cisco Secure Intrusion Detection System (formerly NetRanger)
- IOS(R) Firewall Feature Set
- VPN 3000
- Client side VPN
- CAT Service Modules
- IOS IDS (in line)
- Cisco Secure ACS
- Security Information Monitoring System (event correlation, basic forensics)
Security General - Policies - Security Policy Best Practices
- Standards Bodies - IETF
- Vulnerability discussions
- Attacks and Common Exploits - recon, priv escalation, penetration, cleanup, backdoor
Cisco General - IOS Specifics
- Routing and switching security features: IE mac address controls, port security, dhcp snoop
- Security Policy best practices
How to make a booking for the CCIESW course
|
