MCCCD Official Course Competencies:

CNT182  2005 Fall – 2009 Fall

Cisco Secure PIX Firewall Configuration

1.

Explain Network Security and the Cisco PIX Firewall (I)

2.

Configure, verify and troubleshoot basic firewall operations (II)

3.

Explain firewall concepts and technologies, and describe how transport protocols function though a firewall. (III)

4.

Configure NAT (Network Address Translation) and PAT (Port Address Translation) on the firewall. (III)

5.

Configure, verify, and troubleshoot multiple interfaces and access through a firewall. (III)

6.

Configure firewall conduits, filtering, and ACLs (Access Control Lists) in a variety of scenarios. (IV)

7.

Configure object groups and nested object groups. (IV)

8.

Configure and troubleshoot authentication, authorization, and accounting on the firewall. (V)

9.

Configure a firewall to support advanced protocols and multimedia applications. (VI)

10.

Configure attack guards, intrusion detection and syslog on a firewall. (VI)

11.

Configure serial and LAN-based based failover. (VII)

12.

Configure, test and verify IKE (Internet Key Exchange) and IPSec ( Internet Protocol Security) parameters to create a site-to-site and remote access VPN (Virtual Private Network). (VIII)

13.

Configure remote access VPN (Virtual Private Network) client. (VIII)

14.

Configure SNMP (Simple Network Management Protocol).(IX)

15.

Perform password recovery, image upgrades, remote maintenance, management, and activation keys upgrades on a firewall. (IX)

16.

Use PDM (PIX Device Manager) and firewall MC (Management Center) to configure the PIX. (IX)

MCCCD Official Course Outline:

CNT182  2005 Fall – 2009 Fall

Cisco Secure PIX Firewall Configuration

I. Overview of Network Security

A. Weakness, threats, and improper use of the network

B. Security framework , products, and policy

II. PIX Security Appliance Basics ( Private Internet Exchange)

A. The Cisco PIX firewall

B. Routing configuration

C. Multicast Configuration

D. PIX Dynamic Host Control Protocol (DHCP)

III. PIX Translations and Connections

A. Transport protocols

B. NAT (Network Address Translation)

C. Configuring DNS (Domain Name Service) Support

D. Connections

E. PAT (Port Address Translation)

F. Multiple Interfaces on a PIX

IV. Access Control Lists for the PIX Firewall

A. Access Control Lists and the PIX firewall

B. Using ACLs (Access Control List)

C. Filtering

D. Object grouping

V. PIX Firewall AAA (Authentication, Authorization, Accounting)

A. AAA (Authentication, Authorization, Accounting)

B. Authentication configuration

C. Authorization and accounting configuration

D. PPPoE (Point to Point Protocol over Ethernet) and the PIX Firewall

VI. PIX IDS (Intrusion Detection Systems)

A. ACS Advanced protocols

B. Multimedia support

C. Attack guards

D. Intrusion detection E. Shunning

F. Syslog configuration on the PIX

VII. PIX Failover and System Maintenance

A. Understand failover

B. System maintenance via remote access

VIII. PIX VPN

A. The PIX firewall enabling a secure VPN (Virtual Private Network)

B. Tasks to configure VPN (Virtual Private Network)

C. The Cisco VPN (Virtual Private Network) client

D. Scale PIX firewall VPNs (Virtual Private Network)

IX. PIX Security Appliance Management and System Maintainance

A. The Cisco PIX Device Manager (PDM)

B. SNMP (Simple Network Management Protocol)

C. Firewall MC (Management Center)

D. Password Recovery and Upgrade