|
Official Course
Description: MCCCD Approval:
12-8-2009 |
||
|
CNT182 2010 Spring – 2011 Summer II |
L+L 4.0 Credit(s) 5.0 Period(s) 4.7 Load Occ |
|
|
Cisco
Secure Firewall Appliance Configuration |
||
|
Applications
of Cisco Networking technologies in designing and implementing security
solutions to reduce risk of revenue loss and vulnerability. Hands-on
experience and skills in security policy design and management, security
technologies, products and solutions, secure firewall design, installation,
configuration and maintenance, Authentication, Authorization, and Accounting
(AAA), Failover, and Virtual Private Network (VPN) implementation using
firewalls. Prerequisites: CNT170 or permission of
Instructor. |
||
Go to Competencies Go to Outline
|
MCCCD
Official Course Competencies: |
|
|
|
|
|
CNT182 2010
Spring – 2011 Summer II |
Cisco Secure Firewall Appliance Configuration |
1. Explain
Network Security and the Cisco Firewall Appliance (I)
2. Configure,
verify and troubleshoot basic firewall operations (II)
3. Explain
firewall concepts and technologies, and describe how transport protocols
function though a firewall. (III)
4. Configure
Network Address Translation (NAT) and Port Address Translation (PAT) on the
firewall. (III)
5. Configure,
verify, and troubleshoot multiple interfaces and access through a firewall.
(III)
6. Configure
Content Filtering, Application Inspection, and Access Control Lists (ACLs) in a
variety of scenarios. (IV)
7. Configure
object groups and nested object groups. (IV)
8. Configure
and troubleshoot authentication, authorization, and accounting on the firewall.
(V)
9. Configure
a firewall to support advanced protocols and multimedia applications. (VI)
10. Configure
attack guards, intrusion detection and syslog on a
firewall. (VI)
11. Explain how
failover works and the different Firewall Failover Roles. (VII)
12. Configure
LAN-based failover. (VII)
13. Configure,
test and verify Internet Key Exchange (IKE) and Internet Protocol Security
(IPSec) parameters to create a site-to-site and remote access Virtual Private
Network (VPN). (VIII)
14. Perform
password recovery, image upgrades, remote maintenance, management, and
activation keys upgrades on a firewall. (IX)
Go to Description Go to top of
Competencies
|
MCCCD
Official Course Outline: |
|
|
|
|
|
CNT182 2010
Spring – 2011 Summer II |
Cisco Secure Firewall Appliance Configuration |
I. Overview
of Network Security
A. Weakness,
threats, and improper use of the network
B. Security
framework , products, and policy
II. Firewall
Security Appliance Basics
A. The Cisco
Firewall Appliance
B. Routing
configuration
C. Multicast
Configuration
D. Dynamic
Host Control Protocol (DHCP)
III. Firewall
Appliance Translations and Connections
A. Transport
protocols
B. Network
Address Translation (NAT)
C. Configuring
Domain Name Service (DNS) Support
D. Connections
E. Port
Address Translation (PAT)
F. Multiple
Interfaces on a Firewall Appliance
G. Firewall
Transparent Mode
H. Security
Content
IV. Access
Control Lists for the Firewall Appliance
A. Access
Control Lists and the Firewall Appliance
B. Using
Access Control List (ACLs)
C. Filtering
Content
D. Object
grouping
E. Application
Inspection
V. Firewall
Appliance Authentication, Authorization, Accounting (AAA)
A. Authentication,
Authorization, Accounting (AAA)
B. Authentication
configuration
C. Authorization
and accounting configuration
VI. Firewall
Appliance Intrusion Detection Systems (IDS)
A. ACS
Advanced protocols
B. Multimedia
support
C. Attack
guards
D. Intrusion
Detection
E. Syslog configuration
VII. Firewall Appliance
Failover
A. Understand
failover
B. Firewall
Failover Roles
C. LAN-based
Failover
VIII. Firewall Appliance Virtual
Private Network (VPN)
A. Enabling
a secure Virtual Private Network (VPN)
B. Tasks
to configure Virtual Private Network (VPN)
IX. Firewall
Security Appliance Management and System Maintenance
A. Simple
Network Management Protocol (SNMP)
B. Password
Recovery and Upgrade
C. System
maintenance via remote access