Privée

Ce cours est disponible en session privée ou personnalisée. Il peut être offert à l’un de nos centres de formation ou directement à vos bureaux. Appelez l’un de nos conseillers ou faites une demande de soumission en ligne.

Appelez maintenant au 1 877 624.2344

  • Durée: 5 jours
  • Prix régulier: Sur demande

CISCO - Implementing Cisco Edge Network Security Solutions (SENSS) v1.0

Reference : SENSS v1.0

Duration : 5 days

Learning credits : 39

Our scheduled trainings are offered in French. The educational material is in English.

© CISCO

Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 is a newly created five-day instructor-led training (vILT) course is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. The goal of the course is to provide you with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches. You will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the course, you will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.

CertificationThis course prepares to the 300-206 SENSS exam and the CCNP Security certification

Audience

The primary audience for this course is as follows:
  • Network Security Engineers

Prerequistes

Objectives

Upon completing this course, you will be able to meet these overall objectives:
  • Understand current security threat landscape
  • Understanding and implementing Cisco modular Network Security Architectures such as SecureX and TrustSec
  • Deploy Cisco Infrastructure management and control plane security controls
  • Configuring Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
  • Implementing Botnet Traffic Filters
  • Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Contents

Module 1 - Secure Design Principles
  • Course Overview
  • Network Security Zoning
  • Cisco Module Network Security Architecture
  • Cisco SecureX Architecture
  • Cisco TrustSec Solution
Module 2- Deploying Network Infrastructure Protection
  • Introducing Cisco Network Infrastructure Protection
  • Deploying Cisco IOS Control Plane Security Controls
  • Deploying Cisco IOS Management Plane Security Controls
  • Deploying Cisco ASA Management Plane Security Controls
  • Deploying Cisco Traffic Telemetry Methods
  • Deploying Cisco IOS Layer 2 and Layer 3 Data Plane Security Controls
Module 3- Deploying NAT on Cisco IOS and Cisco ASA
  • Introducing Network Address Translation
  • Deploying Cisco ASA Network Address Translation
  • Deploying Cisco IOS Software Network Address Translation
Module 4 - Deploying Threat Controls on Cisco ASA
  • Introducing Cisco Firewall Threat Controls
  • Deploying Basic Cisco ASA Access Policies
  • Deploying Advanced Cisco ASA Application Inspection Policies
  • Deploying Cisco ASA Botnet Traffic Filtering
  • Deploying Cisco ASA Identity Based Firewall
Module 5 - Deploying Threat Controls on Cisco IOS Software
  • Deploying Basic Cisco IOS Software with Basic Zone-Based Firewall Access Policies
  • Deploying Advanced Cisco IOS Software ZBFW with Application Inspection Policies
Labs :
  • Lab 1: Configuring Configure Cisco Policy Protection (CPP) and Management Plane Protection (MPP)
  • Lab 2: Configure Traffic Telemetry Methods
  • Lab 3: Configure Layer 2 Data Plan Security
  • Lab 4: Configure Layer 2 Data Plan Security
  • Lab 5: Configure NAT on Cisco Adaptive Security Appliance (ASA) Firewal
  • Lab 6: Configure NAT on Cisco IOS Software
  • Lab 7: Configure Cisco ASA Access Policy
  • Lab 8: Configure Cisco ASA Application Inspection Policy
  • Lab 9: Configure Cisco ASA Botnet Traffic Filter
  • Lab 10: Configure Cisco ASA Identity Based Firewall
  • Lab 11: Configure Cisco IOS Software Zone-Based Firewall (ZBFW)
  • Lab 12: Configure Cisco IOS Software ZBFW Application Inspection Policy Lab Activity Solutions

Les participants doivent posséder :

Savoir s’entourer des meilleurs

Steve Waterhouse
Instructeur certifié avec les technologies du sans-fil (CWNP), les technologies de réseautique (Cisco et CompTIA) et conférencier en sécurité des technologies de l’information.
Simon Bourassa
Simon Bourassa
Formateur et conseiller en TI
Simon est passionné par le développement logiciel et le développement de produits, mais avant tout par l’ensemble des gens cachés derrière ces codes, qui travaillent main dans la main pour développer des solutions innovantes.
Pierre-Edouard Brondel
Pierre-Edouard Brondel
Formateur et conseiller en bureautique
Expert en pédagogie dans le domaine des technologies et de la bureautique cumulant plus de 25 ans d’expérience, Pierre-Édouard est d’abord et avant tout un passionné de capital humain.
Valère Drainville
Valère Drainville
Formateur et conseiller en efficacité professionnelle
Expert en collaboration et en efficacité professionnelle, Valère Drainville saura vous accompagner dans l’adoption et la gestion de vos outils de travail collaboratifs.