About this Course

Tech Type Specialist
Course Code CIINS
Duration 5 Days
Special Notices

Notable differences between CIINS v2.0 and v3.0 (current version)

There are several notable changes in this newly updated course. Cisco Configuration Professional is not covered in IINS 3.0. All IOS examples are hands-on and done using IOS CLI. IPv6 is not covered in IINS 3.0. IPv6 is now covered in ICND1. The implementation of IPS on IOS is not covered in IINS 3.0, instead IPS is covered on the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA in IINS 3.0. Also, modern malware examples are included in this course and cryptographic techniques use stronger hashing and encryption algorithms, and current version of IOS, Cisco ASA and Cisco AnyConnect are featured.

Implementing Cisco Network Security (IINS) v3.0 is a 5-day instructor-led course presented by Cisco Learning Partners to end users and channel partner customers. The course focuses on security principles and technologies, using Cisco security products to provide hands-on examples. Using instructor-led discussions, extensive hands-on lab exercises, and supplemental materials, this course allows learners to understand common security concepts, and deploy basic security techniques utilizing a variety of popular security appliances within a “real-life” network infrastructure.

Who should attend

  • Network engineers
  • Network designers and administrators
  • Network managers
  • System engineers

Certifications

This course is part of the following Certifications:

Cisco Certified Network Associate Security (CCNA Security) which includes exam 210-260 IINS: Implementing Cisco IOS Network Security.

Delegates will learn how to

  • Describe common network security concepts
  • Secure routing and switching infrastructure
  • Deploy basic authentication, authorization and accounting services
  • Deploy basic firewalling services
  • Deploy basic site-to-site and remote access VPN services
  • Describe the use of more advanced security services such as intrusion protection, content security and identity management

Outline

Module 1 Security Concepts

  • Threatscape
  • Threat defense technologies
  • Security policy and basic security architectures
  • Cryptographic technologies

Module 2 Secure Network Devices

  • Implementing AAA
  • Management protocols and systems
  • Securing the control plane

Module 3 Layer 2 Security

  • Securing layer 2 infrastructures
  • Securing layer 2 protocols

Module 4 Firewall

  • Firewall technologies
  • Introducing the Cisco ASA v9.2
  • Cisco ASA access control and service policies
  • Cisco IOS zone based firewall

Module 5 VPN

  • IPsec technologies
  • Site-to-Site VPN
  • Client based remote access VPN
  • Clientless remote access VPN

Module 6 Advanced Topics

  • Intrusion detection and protection
  • Endpoint protection
  • Content Security
  • Advanced network security architectures

Labs

  • Discovery 1: Exploring Cryptographic Technologies
  • Discovery 2: Configure and Verify AAA
  • Discovery 3: Configuration Management Protocols
  • Discovery 4: Securing Routing Protocols
  • Discovery 5: VLAN Security and ACLs on Switches
  • Discovery 6: Port Security and Private VLAN Edge
  • Discovery 7: Securing DHCP, ARP, and STP
  • Discovery 8: Explore Firewall Technologies
  • Discovery 9: Cisco ASA Interfaces and NAT
  • Discovery 10: Access Control Using the Cisco ASA
  • Discovery 11: Exploring Cisco IOS Zone-Based Firewall
  • Discovery 12: Explore IPsec Technologies
  • Discovery 13: IOS-Based Site-to-Site VPN
  • Discovery 14: ASA-Based Site-to-Site VPN
  • Discovery 15: Remote Access VPN: ASA and AnyConnect
  • Discovery 16: Clientless Remote Access VPN
  • Challenge 1: Configure AAA and Secure Remote Administration
  • Challenge 2: Configure Secure Network Management Protocols
  • Challenge 3: Configure Secure EIGRP Routing
  • Challenge 4: Configure Secure Layer 2 Infrastructure
  • Challenge 5: Configure DHCP Snooping and STP Protection
  • Challenge 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge 7: Configure Network Access Control with the Cisco ASA
  • Challenge 8: Configure Site-to-Site VPN on IOS
  • Challenge 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge 10: Configure Clientless SSL VPN on the ASA

Cisco Learning Credits

This course is available for you to purchase using Cisco Learning Credits. To book courses using CLC's, please call your QA Account Manager, or our sales team on 0345 757 3888.

Specialist Course

5 Days

Duration
Cisco
Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.

Trusted, awarded and accredited

Fully accredited to ensure we provide the highest possible standards in learning

All third party trademark rights acknowledged.