Cisco Training

Introduction | Certification | Courses & Dates | Learning Credits | Lab Sims

Implementing Secure Converged Wide Area Networks (ISCW) v1.0

Course Overview
This is a 5-Day Instructor led course that introduces techniques and features enabling or enhancing WAN and remote access solutions. This course focuses on using one or more of the available WAN connection technologies for remote access between enterprise sites.

Key topics included are cable-modems and Digital Subscriber Line (DSL) with Network AddressTranslation (NAT), Multi Protocol Label Switching (MPLS) virtual private networks (VPNs),and network security using VPNs with IPsec encryption and Internet Key Exchange (IKE) keys. Delegates will be able to secure the network environment using existing Cisco IOS security features, and configure the three primary components of the Cisco IOS Firewall Feature set (Firewall, Intrusion Prevention System [IPS], and Authentication, Authorization,and Accounting [AAA]). This task-oriented course teaches the knowledge and skills needed to secure Cisco IOS router networks using features and commands in Cisco IOS software, and using a router configuration application.

Course Objectives
• Describe the remote connectivity requirements for secured access and explain the alignment of these requirements with Cisco network architectures 2 Implementing Secure Converged Wide Area Networks (ISCW) v1.0 © 2006, Cisco Systems, Inc.
• Describe and implement teleworker broadband connectivity
• Implement and verify frame mode MPLS
• Describe and configure a site-to-site IPsec VPN
• Describe and configure Cisco device hardening
• Describe and configure IOS firewall features

Course Pre-Requisites
• Valid CCNA

Target Audience
• Candidates for Cisco CCNP®, CCDP®, and CCIE® Routing and Switching and CCIE Communications and Services certifications
• Network administrators and technicians responsible for implementing and troubleshooting complex routed network environments
• Senior network support staff performing a help-desk role in a medium or enterprise-sized company that has internal network support escalation staff
• Network support staff who design, implement, and troubleshoot Layer 3 connectivity issues

Course Content

Course Introduction

• Describe Network Requirements
• Describing Network Requirements

Connect Teleworkers

• Topologies for Facilitating Remote Connections
• Describing Cable Technology
• Describing DSL Technology
• Configuring the CPE as the PPPoE Client
• Configuring DSL with PPPoA
• Verifying Broadband ADSL Configurations

Implement Frame Mode MPLS

• Introducing MPLS Networks
• Assigning MPLS Labels to Packets
• Implementing Frame Mode MPLS
• MPLS VPN Technology

IPsec VPNs

• IPsec Components and IPsec VPN Features
• Site-to-Site IPsec VPN Operations
• Configuring IPsec Site-to-Site VPN Using SDM
• Configuring GRE Tunnels over IPsec
• High Availability Options
• Configuring Cisco Easy VPN and Easy VPN Server Using SDM
• Implementing the Cisco VPN Client

Cisco Device Hardening

• Mitigating Network Attacks
• Disabling Unused Cisco Router Network Services and Interfaces
• Securing Cisco Router Installations and Administrative Access
• Mitigating Threats and Attacks with Access Lists
• Securing Management and Reporting Features
• Configuring AAA on Cisco Routers

Cisco IOS Threat Defense Features

• Introducing the Cisco IOS Firewall
• Implementing Cisco IOS Firewalls
• Introducing Cisco IOS IPSConfiguring Cisco IOS IPS

Course Certification

Recommended as preparation for exam(s):
• 642-825

Follow on Courses

The following courses are recommended for further study:

• ONT – Optimizing Converged Cisco Networks

External Links: Cisco System