 |
| |
|
|
| |
|
|
| |
|
|
| |
Cisco Certified Security Professional - CCSP |
|
| |
The CCSP (Cisco Certified Security Professional) certification
provides network professionals with professional level
recognition in designing and implementing Cisco secure
networks. CCSP holders are actively involved in developing
business solutions and designing and delivering multiple
levels of security departments.
To obtain a Cisco Career Certification, you must read
and accept the terms of the Cisco Career Certifications
and Confidentiality Agreement. Failure to complete this
step will prohibit processing of any Cisco Career Certification
application. |
|
| |
|
|
| |
|
Cisco
Certified Network Associate (CCNA 640-607) |
|
| |
|
|
| |
Students
get real hands on experience with Cisco 2600 Series routers
equipped with ISDU BRI and T1 DSU/CSU WAN Interface Cards.
|
|
| |
|
|
|
| |
|
Overview
of LAN/WAN technologies
OSI Model
Physical infrastructure & LAN technologies
TCP/IP Protocol Suite
IP
Addressing and Subneting
LAN Switching
VLANs
Cisco IOS
Cisco Router Password Recovery
Managing Cisco IOS files
IP Routing and troubleshooting
RIP and IGRP
IPX Access lists
WAN technologies (ISDN, Frame Relay, PPP) |
|
| |
 |
|
| |
|
SECUR
642-501* - Securing Cisco IOS Networks (SECUR) (formerly
MCNS) |
|
| |
|
Exam
Description |
|
| |
|
The
Securing Cisco IOS Networks exam (SECUR 642-501) is one
of the exams associated with the Cisco Certified Security
Professional, Cisco Firewall Specialist, Cisco VPN Specialist,
and Cisco IDS Specialist certifications. Candidates can
prepare for this exam by taking the SECUR 1.0 course.
This exam includes simulations and tests a candidate's
knowledge and ability to secure Cisco IOS router networks.
CCNA or CCDA recertification candidates who pass the 642-501
exam will be considered recertified at the CCNA or CCDA
level.
|
|
| |
|
Exam
Topics |
|
| |
|
The
following information provides general guidelines for
the content likely to be included on this exam. However,
other related topics may also appear on any specific delivery
of the exam.
|
|
| |
|
| Basic
Cisco Router Security |
|
Secure
administrative access for Cisco routers |
|
Describe
the components of a basic AAA implementation |
| |
Test
the perimeter router AAA implementation using applicable
debug commands |
| |
|
| Advanced
AAA Security for Cisco Router Networks |
|
Describe
the features and architecture of CSACS 3.0 for Windows |
|
Configure
the perimeter router to enable AAA processes to
use a TACACS remote service |
| |
|
| Cisco
Router Threat Mitigation |
|
Disable
unused router services and interfaces |
|
Use
access lists to mitigate common router security
threats |
| |
|
| Cisco
IOS Firewall CBAC Configuration |
|
Define
the Cisco IOS Firewall and CBAC |
|
Configure
CBAC |
| |
|
| Cisco
IOS Firewall Authentication Proxy Configuration
|
|
Describe
how authentication proxy technology works |
|
Configure
AAA on a Cisco IOS Firewall |
| |
|
| Cisco
IOS Firewall IDS Configuration |
|
Name
the two types of signature implementations used
by the Cisco IOS Firewall IDS |
|
Initialize
a Cisco IOS Firewall IDS router |
| |
|
| Building
Basic IPSec Using Cisco Routers |
|
Configure
a Cisco router for IPSec using pre-shared keys |
|
Verify
the IKE and IPSec configuration |
| |
Explain
the issues regarding configuring IPSec manually
and using RSA encrypted nonces |
| |
|
| Building
Advanced IPSec VPNs Using Cisco Routers and Certificate
Authorities |
|
Advanced
IPSec VPNs using Cisco Routers and CAs |
| |
|
| Configuring
Cisco Remote Access IPSec VPNs |
|
Describe
the Easy VPN Server |
| |
|
| Managing
Enterprise VPN Routers |
|
Managing
Enterprise VPN Routers |
 |
|
|
| |
|
|
| |
|
CSPFA
642-521* - Cisco Secure PIX Firewall Advanced (CSPFA) |
| |
|
Exam
Description |
|
| |
|
The
Cisco Secure PIX Firewall Advanced exam (CSPFA 642-521)
is one of the exams associated with the Cisco Certified
Security Professional and the Cisco Firewall Specialist
certifications. Candidates can prepare for this exam by
taking the CSPFA 3.1 course. This exam includes simulations
and tests a candidate's knowledge and ability to describe,
configure, verify and manage the PIX Firewall product
family. CCNA or CCDA recertification candidates who pass
the 642-521 CSPFA exam will be considered recertified
at the CCNA or CCDA level. |
|
| |
|
Exam
Topics |
|
| |
|
The
following information provides general guidelines for
the content likely to be included on this exam. However,
other related topics may also appear on any specific delivery
of the exam.
|
|
| |
|
| Cisco
PIX Firewall Technology and Features |
|
Firewalls |
|
PIX
Firewall models |
| |
|
| Cisco
PIX Firewall Family |
|
PIX
Firewall models |
|
PIX
services module |
| |
PIX
Firewall licensing |
| |
|
| Getting
Started with the Cisco PIX Firewall |
|
User
interface |
|
Examining
the PIX Firewall status |
| |
ASA
security levels |
| |
Basic
PIX Firewall configuration |
| |
Syslog
configuration |
| |
DHCP
server configuration |
| |
PPPoE
and the PIX Firewall |
| |
|
| Translations
and Connections |
|
Transport
Protocols |
|
Network
Address Translation |
| |
Configuring
DNS Support |
| |
Port
Address Translations |
| |
|
| Access
Control Lists and Content Filtering |
|
ACLS |
|
Converting
Conduits to ACLS |
| |
Using
ACLS |
| |
|
| Object
Grouping |
|
Overview
of object grouping |
|
Getting
started with object groups |
| |
Configuring
object groups |
| |
Nested
object groups |
| |
|
| Advanced
Protocol Handling |
|
Advanced
protocols |
|
Multimedia
support |
| |
|
| Attack
Guards, Intrusion Detection, and Shunning |
|
Attack
guards |
|
Intrusion
detection |
| |
|
| Authentication,
Authorization, and Accounting |
|
Introduction |
|
Installation
of CSACS for Windows NT |
| |
Authentication
configuration |
| |
Downloadable
ACLS |
| |
|
| Failover
|
|
Understanding
failover |
|
Serial
failover configuration |
| |
LAN-based
failover configuration |
| |
|
| Virtual
Private Networks |
|
PIX
Firewall enables a secure VPN |
|
Prepare
to configure VPN support |
| |
Configure
IKE parameter |
| |
Configure
IPSec parameters |
| |
Test
and verify VPN configuration |
| |
Cisco
VPN Client |
| |
Scale
PIX Firewall VPNs |
| |
|
| System
Maintenance |
|
Remote
access |
|
Command
authorization |
| |
|
| Cisco
PIX Device Manager |
|
PDM
overview |
|
Prepare
for PDM |
| |
Using
PDM to configure the PIX Firewall |
| |
Using
PDM to create a site-to-site VPN |
| |
Using
PDM to create a remote access VPN |
| |
|
| Enterprise
PIX Firewall Management |
|
Configuring
access and translation rules |
|
Reporting,
tools, and administration |
| |
|
| Enterprise
PIX Firewall Maintenance |
|
Introduction
to the auto update server |
|
PIX
Firewall and AUS communication settings |
| |
Devices,
images, and assignments |
| |
Reports
and administration |
| |
|
| Firewall
Services Module |
|
FWSM
overview |
|
Using
PDM with the FWSM |
|
|
|
| |
|
|
| |
|
CSVPN
642-511* - Cisco Secure Virtual Private Networks (CSVPN)
|
|
| |
|
Exam
Description |
|
| |
|
The
Cisco Secure Virtual Private Networks exam (CSVPN 642-511)
is one of the exams associated with the Cisco Certified
Security Professional and the Cisco VPN Specialist certifications.
Candidates can prepare for this exam by taking the CSVPN
3.1 course. This exam includes simulations and tests a
candidate's knowledge and ability to describe, configure,
verify, and manage the Cisco VPN 3000 Concentrator, Cisco
VPN Software Client, and Cisco VPN 3002 Hardware Client
feature set. CCNA or CCDA recertification candidates who
pass the 642-511 CSVPN exam will be considered recertified
at the CCNA or CCDA level. |
|
| |
|
Exam
Topics |
|
| |
|
The
following information provides general guidelines for
the content likely to be included on this exam. However,
other related topics may also appear on any specific delivery
of the exam. |
|
| |
|
|
|
| |
|
| Overview
of Virtual Private Networks and IPSec Technologies
|
|
Cisco
products enable a secure VPN |
|
IPSec
overview |
| |
IPSec
protocol framework |
| |
How
IPSec works |
| |
|
| Cisco
Virtual Private Network 3000 Concentrator Series
Hardware |
|
Overview
of the Cisco VPN 3000 Concentrator Series |
|
Cisco
VPN 3000 Concentrator |
| |
Cisco
VPN 3000 Concentrator Series Client support |
| |
|
| Configuring
the Cisco VPN 3000 Series Concentrator for Remote
Access Using Pre-shared Keys |
|
Overview
of remote access using pre-shared keys |
|
Initial
configuration of the Cisco VPN 3000 Concentrator
Series for remote access |
| |
Browser
configuration of the Cisco VPN 3000 Series Concentrator |
| |
Configure
users and groups |
| |
More
in-depth configuration information |
| |
Configure
the Cisco Windows VPN Software Client |
| |
|
| Configure
Cisco Virtual Private Network 3000 Series Concentrator
for Remote Access Using Digital Certificates |
|
CA
support overview |
|
Certificate
generation |
| |
Validating
certificates |
| |
Configuring
the Cisco VPN 3000 Concentrator Series for CA support |
| |
|
| Configure
the Cisco Virtual Private Network Firewall Feature
for IPSec Software Client |
|
Overview
of software client's firewall feature |
|
Sof | |
