TOIT Training

Facebook X-twitter Linkedin Instagram
Menu
Advanced
Cisco – Security

Cisco CCNP Security: SIMOS

Overview
Curriculum
  • 6 Sections
  • 159 Lessons
  • 16h Duration
Collapse All
Fundamentals of VPN Technologies and Cryptography
16 Lessons
  1. VPN Definition
  2. Key Threats to WANs and Remote Access
  3. Cisco Modular Network Architecture and VPNs
  4. VPN Types
  5. VPN Components
  6. Secure Communication and Cryptographic Services
  7. Cryptographic Algorithms
  8. Cryptography and Confidentiality
  9. Cryptography and Integrity
  10. Cryptography and Authentication
  11. Cryptography and Nonrepudiation
  12. Keys in Cryptography
  13. Public Key Infrastructure
  14. Next-Generation Encryption
  15. Dependencies in Cryptographic Services
  16. Cryptographic Controls Guidelines
Deploying Secure Site-to-Site Connectivity Solutions
32 Lessons
  1. Site-to-Site VPN Topologies
  2. Site-to-Site VPN Technologies
  3. IPsec VPN Overview
  4. Internet Key Exchange v1 and v2
  5. Encapsulating Security Payload
  6. IPsec Virtual Tunnel Interface
  7. Dynamic Multipoint VPN
  8. Cisco IOS FlexVPN
  9. Overview of Point-to-Point IPsec VPNs on the Cisco ASA
  10. Configuration Tasks for Basic Point-to-Point Tunnels on the Cisco ASA
  11. Enable IKE on an Interface
  12. Configure IKE Policy
  13. Configure PSKs
  14. Choose Transform Set and VPN Peer
  15. Choose Traffic for VPN
  16. Configuring Site-to-Site VPN with Connection Profiles Menu
  17. Verify and Troubleshoot Basic Point-to-Point Tunnels on the Cisco ASA
  18. Overview of Cisco IOS VTIs
  19. Configure Static VTI Point-to-Point Tunnels
  20. Verify Static VTI Point-to-Point Tunnels
  21. Configure Dynamic VTI Point-to-Point Tunnels
  22. Verify Dynamic VTI Point-to-Point Tunnels
  23. Overview of Cisco IOS DMVPN
  24. DMVPN Solution Components
  25. GRE
  26. NHRP
  27. DMVPN Operations
  28. Types of Authentication
  29. Configure DMVPN on Hub
  30. Configure DMVPN on Spoke
  31. Configure Routing in DMVPN
  32. Verify DMVPN
Deploying Cisco IOS Site-to-Site FlexVPN Solutions
42 Lessons
  1. FlexVPN Overview
  2. Public Key Infrastructure (PKI)
  3. Site-to-Site VPN Topologies
  4. FlexVPN Architecture
  5. FlexVPN Configuration Overview
  6. FlexVPN Capabilities
  7. IKEv2 vs. IKEv1 Overview
  8. IKEv2 Message Exchange
  9. IKEv2 DoS Prevention
  10. IKEv1 and IKEv2 Comparison
  11. FlexVPN Use Cases
  12. Point-to-Point FlexVPN
  13. FlexVPN Configuration Blocks
  14. IKEv2 Profile
  15. Smart Defaults
  16. Manipulating Default Values
  17. Negotiating IKEv2 Proposals
  18. Point-to-Point VPN Scenario with IPv4 Static Routes
  19. Configure and Verify Point-to-Point VPN with IPv4 Static Routes
  20. Point-to-Point VPN Scenario with OSPFv3
  21. Configure and Verify Point-to-Point VPN with OSPFv3
  22. Enroll Devices to ECDSA PKI
  23. Configure Router for ECDSA
  24. Configure ASA for ECDSA
  25. Verify EC Key Pairs and Certificates
  26. Verify IKEv2 SA
  27. Verify IPsec SA
  28. Verify Point-to-Point FlexVPN
  29. Cisco IOS FlexVPN
  30. IKEv2 Configuration Payload
  31. Locally Managed Hub-and-Spoke Scenario
  32. Configure a Spoke in a Hub-and-Spoke Scenario
  33. Configure a Hub in a Hub-and-Spoke Scenario
  34. Configuration Exchange
  35. Verify and Troubleshoot Hub-and-Spoke FlexVPN
  36. Spoke-to-Spoke Shortcut Scenario
  37. NHRP in FlexVPN
  38. Configure and Verify a Spoke in a Spoke-to-Spoke Shortcut Scenario
  39. Configure and Verify a Hub in a Spoke-to-Spoke Shortcut Scenario
  40. RADIUS-Managed FlexVPN Scenario
  41. Verify Spoke-to-Spoke Shortcut Switching
  42. Troubleshoot Spoke-to-Spoke Shortcut Switching
Deploying Client-less SSL VPN -Deploying AnyConnect VPN for Remote Access
18 Lessons
  1. SSL VPN Components
  2. SSL/TLS
  3. Overview of group policies and connection profiles
  4. Basic Cisco Clientless SSL VPN
  5. Solution Components
  6. Configure ASA gateway
  7. Configure basic authentication
  8. Configure access control
  9. Verify basic clientless SSL VPN
  10. Troubleshoot basic clientless SSL VPN
  11. Deploying Application Access options (plug-ins, smart tunnels)
  12. Configure and verify plugins
  13. Configure and verify smart tunnels
  14. Troubleshoot plugins and smart tunnel
  15. Advanced Authentication in Cisco Clientless SSL VPN Solution Components
  16. Configure and verify Certificate based Authentication
  17. Configure and Verify External Authentication
  18. Troubleshoot Advanced Authentication in Clientless SSL VPN
Deploying Endpoint Security and Dynamic Access Policies
41 Lessons
  1. IP Address assignment
  2. Split Tunneling
  3. Basic Cisco AnyConnect SSL VPN
  4. Solution Components
  5. SSL VPN Server Authentication
  6. SSL VPN Clients Authentication
  7. SSL VPN Clients IP Address Assignment
  8. SSL VPN Split Tunneling
  9. Configure ASA for Basic AnyConnect SSL VPN
  10. Configure Basic Cisco Authentication
  11. Configure Access Control
  12. Verify and Troubleshoot Basic Cisco AnyConnect SSL VPN
  13. DTLS Overview
  14. Parallel DTLS and TLS Tunnels
  15. Configure DTLS
  16. Verify DTLS
  17. Cisco AnyConnect Client Configuration Management
  18. Cisco AnyConnect Client Operating System Integration Options
  19. Cisco AnyConnect Start Before Logon
  20. Cisco AnyConnect Trusted Network Detection
  21. Configure, Verify, and Troubleshoot Cisco AnyConnect Start Before Logon and Cisco AnyConnect Trusted Network Detection
  22. AnyConnect Support for IPSec/IKEv2
  23. Configure a Cisco AnyConnect IPsec/IKEv2 VPNs on a Cisco ASA Adaptive Security Appliance
  24. Verify and Troubleshoot Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
  25. Cisco AnyConnect Advanced Authentication Scenarios
  26. External Authentication
  27. Certificate-Based Server Authentication
  28. Configure and Verify Certificate-Based Client Authentication
  29. SCEP Proxy Overview
  30. SCEP Proxy Connection Flow
  31. SCEP Proxy Configuration Procedure
  32. Configure SCEP Proxy
  33. Verify SCEP Proxy
  34. Local Authorization Overview
  35. Local Authorization Scenario
  36. Local Authorization Configuration Procedure
  37. Configure Local Authorization
  38. External Authentication and Authorization Scenario
  39. Configure External Authentication and Authorization
  40. Troubleshoot Advanced Authentication and Authorization in Cisco AnyConnect VPNs
  41. Accounting
Endpoint Security and Dynamic Access Policies
10 Lessons
  1. Cisco HostScan Overview
  2. Cisco HostScan Prelogin Assessment
  3. Install Cisco HostScan
  4. Configure Prelogin Criteria and Prelogin Policy
  5. Configure Host Scan Endpoint Assessment
  6. Configure Host Scan Advanced Endpoint Assessment
  7. DAP Overview
  8. Integrating DAP with Host Scan
  9. Configuring DAP
  10. Verifying and Troubleshooting DAP

 

Cisco CCNP Security: SIMOS is an online training course designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.

Deleting Course Review

Are you sure? You can't restore this back

Course Access

This course is password protected. To access it please enter your password below: