Course Details

Previous Page


Implementing Cisco Edge Network Security Solutions (SENSS) 1.0 Expert Live with Encore


Overview/Description
Target Audience
Expected Duration
Lesson Objectives
Course Number



Overview/Description
Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 is a newly created instructor-led training (vILT) course is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches. The student will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.
Prerequisites
The knowledge and skills that a learner must have before attending this course are as follows:
Valid CCNA Security Certification
Any CCIE Certification
Note: Candidates who have a valid CCNA Routing and Switching certification AND have passed either Securing Cisco Network Devices exams 642-551 or 642-552 can act as a prerequisite valid only through December 31, 2014.
Certification
CCNP Security
Exams
300-206 SENSS
Included Labs
Configure URL FilteringConfiguring DHCP Snooping
Configure URL FilteringConfigure Control Plane Protection
Configure URL FilteringConfigure Management Plane Protection
Configure URL FilteringConfigure Unicast Reverse Path Forwarding
Configure URL FilteringConfigure Zones
Configure URL FilteringConfigure Access Control Between the INSIDE and OUTSIDE Zones
Configure URL FilteringConfigure Access Control Between the OUTSIDE and DMZ Zones
Configure URL FilteringConfigure Inspection of Local Traffic
Configure URL FilteringConfigure Application-Layer Filtering
Configure URL Filtering
Outline
Implementing Cisco Edge Network Security Solutions
Module 1: Secure Design Principals
Describe the concepts of Network Security Zones
Provide an overview of the Cisco modular network architecture blueprint
Describe the Cisco SecureX architecture as a context-aware security solution
Describe the Cisco TrustSec solution as a part of the Cisco SecureX architecture
Module 2: Network Infrastructure Protection Deployment
Provide an overview of network infrastructure protection controls
Examine various defenses in Cisco IOS Software that protect the control plane
Describe some strategies to protect the Cisco IOS management plane
Describe some strategies to protect the Cisco ASA management plane
Describe the baseline forms of telemetry recommended for network infrastructure devices
Configure and verify Cisco IOS Software Layer 2 Data Plane Controls
Configure and verify Cisco IOS Software and Cisco ASA Layer 3 Data Plane Controls
Module 3: NAT Deployment on Cisco IOS Software and Cisco ASA
Describe network address translation
Configure, verify, and troubleshoot network address translation on Cisco ASA
Configure, verify, and troubleshoot network address translation on Cisco IOS Software routers
Module 4: Threat Controls Deployment on Cisco ASA
Overview of Cisco firewall threat controls
Describe and configure basic Cisco ASA access polices
Describe and configure advanced Cisco ASA access policies
Describe and configure reputation-based Cisco ASA access policies
Module 5: Threat Controls Deployment on Cisco IOS Software
Describe and configure Cisco IOS Zone-Based Policy Firewall
Describe and configure application inspection policies on Cisco IOS Zone-Based Policy Firewall


Target Audience
This course is designed to prepare security engineers with the knowledge to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. It is also perfect for students interested in pursuing their Cisco Certified Network Professional Security (CCNP Security) certification.

Expected Duration (hours)
32.0

Lesson Objectives

Implementing Cisco Edge Network Security Solutions (SENSS) 1.0 Expert Live with Encore

  • Understanding and implementing Cisco modular Network Security Architectures such as SecureX and TrustSec.
  • Deploy Cisco Infrastructure management and control plane security controls.
  • Configuring Cisco layer 2 and layer 3 data plane security controls.
  • Implement and maintain Cisco ASA Network Address Translations (NAT).
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT).
  • Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection.
  • Implementing Botnet Traffic Filters.
  • Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW).
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy
  • Course Number:
    LLCS0089