Starts from:Fri, May 27, 2022

11 Al Razi Street,Cairo,Nasr City,Egypt

Map it
Course Feature
  • Category IT Security
  • Vendor Cisco
  • Duration 40 Hours
  • Exam 300-206
Class Description

This is the Second Certification course of CCNP Security Certification which includes the following courses :

Implementing Cisco Secure Access Solutions (SISAS)
Implementing Cisco Edge Network Security Solutions (SENSS)
Implementing Cisco Secure Mobility Solutions (SIMOS)
Implementing Cisco Threat Control Solutions (SITCS)

Implementing Cisco Edge Network Security Solutions (SENSS)

  1. This is a comprehensive course that is part of the recommended curriculum for the Cisco Certified Network Professional Security (CCNP Security) certification.
  2. Additionally, it will prepare you with the knowledge and hands-on experience to configure Cisco perimeter edge security solutions utilizing Cisco switches, Cisco routers and Cisco Adaptive Security Appliance (ASA) firewalls.
  3. You will gain the foundational knowledge and the capabilities to implement and manage securityon Cisco ASA firewalls, Cisco routers with the firewall feature set, and Cisco switches.
  4. You will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones.
  5. At the end of the course, you will be able to reduce the risk to your IT infrastructure and applications.

Secure Design Principles

Network Security Zoning implementation
Zone interface Points
Placement of Services
Cisco Module Network Security Architecture and Principles
Cisco SecureX Architecture and Components
Cisco TrustSec Solution Architecture and Components

Deploying Network Infrastructure Protection

Cisco Network Infrastructure Architecture
IOS Control Plane Security Controls
IOS Management Plane Security Controls
Configuring Cisco Traffic Telemetry Methods
ASA Management Plane Security Controls
Cisco Traffic Telemetry Methods Configuration
Deploying Cisco IOS Layer 2 and Layer 3 Data Plane Security Controls

Deploying NAT on Cisco IOS and Cisco ASA

Network Address Translation (NAT)
ASA NAT configuration
IOS Software NAT deployment

Deploying Threat Controls on Cisco ASA

Cisco Firewall Threat Controls
ASA Basic Access Policies
ASA Application Inspection Policies
ASA Botnet Traffic Filtering
ASA Identity Based Firewall

Deploying Threat Controls on Cisco IOS Software

IOS Zone-Based Policy Firewall (ZBFW) Access Policies
Zones and Zone Pairs configuration and verification
ZBFW troubleshooting
IOS Software ZBFW with Application Inspection Policies
Advanced Access Policies
Application-Layer Access Policies
Peer-to-Peer Protocols Inspection
ZBFW URL Filtering Methods

By the end of this course, you will be able to:

  1. Understand current security threat landscape.
  2. Understand and implement Cisco modular Network Security Architectures such as SecureX and TrustSec.
  3. Deploy Cisco Infrastructure management and control plane security controls.
  4. Configure Cisco layer 2 and layer 3 data plane security controls.
  5. Implement and maintain Cisco ASA Network Address Translations (NAT).
  6. Design and deploy Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection.
  7. Implement Botnet Traffic Filters.
  8. Deploy Cisco IOS Zone-Based Policy Firewalls (ZBFW).
  9. Configure and verify Cisco IOS ZBFW Application Inspection Policy.

The primary audience for this course is as follows:

Network Security Engineers