Description

The Course Name: CCIESLB – CCIE Security Lab Exam Bootcamp

The Duration: 6 Days

The Overview: The purpose of this course is to prepare participants for the CCIE Security lab Exam.

What You Will Learn:

In order the attend this course the participants should pass CCIE written exam. We prepared this course for the participants who are in the final stages of their CCIE preparations before attending their CCIE Security Lab Exam.

The Course Index:

Module 1:

  • Class Introduction
  • LAB Topology
  • Class Agenda
  • Basic Student Assessment
  • Security Certification
  • Cisco Security Architecture
  • Network Security-ASA
  • Basic ASA Configuration
  • ASA Management
  • ASA Deployment Scenarios
  • ASA Traffic Flow
  • Network Security-ASA
  • Dynamic Routing (RIP, OSPF, EIGRP, BGP)
  • NAT
  • Modular Policy Framework
  • Virtual Firewall
  • Active/Active Failover
  • Transparent Firewall
  • Threat Detection & Botnet Traffic Filtering
  • QoS
  • ID Firewall
  • Firewall Clustering
  • PBR on ASA

Module 2:

  • Network Security – Next Generation Firewall (NGFW)
  • Introduction to FirePOWER
  • FirePOWER on ASA
  • FirePOWER Traffic Flow
  • Device Management
  • Object Management
  • Access Control Policy
  • AD Integration
  • Network Security
  • FireSIGHT Technology
  • File Detection and FireAMP
  • IPS Policy and Preprocessors
  • SSL Decryption
  • Correlation Policies
  • Event Analysis and Reporting

Module 3:

  • Network Security-VPN
  • IPSec theory
  • PKI
  • VPN types and modes
  • Configuring Site-to-Site VPNs
  • Network Security – VPN
  • EasyVPN for S2S VPN
  • DMVPN

Module 4:

  • Network Security – VPN
  • GET VPN
  • VRF Aware GET VPN
  • IKEv2 theory
  • FlexVPN
  • Network Security – Remote Access VPN
  • EasyVPN (DVTI)
  • SSL VPN theory
  • Clientless VPN
  • Network Security – Remote Access VPN
  • Introduction to AnyConnect
  • Mobile User Security
  • VPN Load Balancing and HA
  • Content Security – Web Security
  • Web proxy deployment modes
  • L4TM
  • User Identity & Authentication
  • Web Security Policies
  • URL Filtering
  • Bandwidth Control
  • Application Visibility & Control (AVC)
  • Content Security – Web Security
  • SSL Decryption
  • Outbound Data Security

Module 5:

  • Network Security-VPN
  • Content Security – Email Security
  • How SMTP works
  • SMTP Relay deployment
  • ESA Packet Flow
  • Reputation Filters
  • Message Filters
  • Anti-Spam & Anti-Virus
  • Content Filters
  • Outbreak Filters
  • Data Loss Prevention (DLP)
  • Email Encryption (CRES)

Module 6:

  • Secure Access-AAA
  • Introducing to AAA
  • Setup AAA Clients
  • Using TACACS+ for Administrators
  • Using RADIUS for Network Access (802.1x)
  • Introducing to Cisco ISE
  • AD Integration
  • Configuring MAB
  • Secure Access-AAA
  • Configuring Wired 802.1x
  • Configuring Wireless 802.1x
  • Guest Access
  • Device Access
  • Device Profiling
  • BYOD & MDM
  • L2 Security
  • ISE integration via pxGrid         

Module 7:

  • IOS Security
  • CoPP
  • CPU and memory thresholding
  • uRPF
  • QoS
  • RTBH
  • iACL
  • management protocols
  • L2 Security
  • DHCP Snooping
  • DAI
  • Port Security
  • VACL
  • Troubleshooting and Lab Strategy