Course Overview

Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 is a newly created five-day instructor-led training course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls. The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches. The student will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.

The goal of the course is to: provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA 5500-X Series Next-Generation Firewalls, Cisco IOS Software routers with the firewall feature set, and Cisco switches.

Implementing Cisco Edge Network Security Solutions (SENSS) is also available in Digital Learning.  365-day subscription for $995.00.  See Digital Learning for purchase or call 703.467.8606.

CLASS INFORMATION
Price: 
$3,795
Duration: 
5 days
Version: 
1.0
Certification: 
CCNP Security
Exam: 
300-206 SENSS
Learning Credits: 
38
  • Upon completing this course you will be able to meet these objectives:

    • Understand Cisco modular Network Security Architectures such as SecureX and TrustSec
    • Implement data, control and management plane security controls
    • Configure, verify, and troubleshoot NAT features on Cisco ASA and on Cisco IOS Software routers
    • Configure, verify, and troubleshoot threat controls on Cisco ASA
    • Configure, verify, and troubleshoot threat controls on Cisco IOS Software routers
  • Module 1: Secure Design Principles

    • Lesson 1: Network Security Zoning
    • Lesson 2: Cisco Module Network Architecture
    • Lesson 3: Cisco SecureX Architecture
    • Lesson 4: Cisco TrustSec Solution
    • Lesson 5: Module Summary
    • Lesson 6: Module Self-Check

    Module 2: Network Infrastructure Protection Deployment

    • Lesson 1: Introducing Cisco Network Infrastructure Protection
    • Lesson 2: Deploying Cisco IOS Control Plane Security Controls
    • Lesson 3: Deploying Cisco IOS Management Plane Security Controls
    • Lesson 4: Deploying Cisco ASA Management Plane Security Controls
    • Lesson 5: Deploying Cisco Traffic Telemetry Methods
    • Lesson 6: Deploying Cisco IOS Layer 2 Data Plane Security Controls
    • Lesson 7: Deploying Cisco IOS Layer 3 Data Plane Security Controls
    • Lesson 8: Module Summary
    • Lesson 9: Module Self-Check

    Module 3: NAT Deployment on Cisco IOS Software and Cisco ASA

    • Lesson 1: Introducing Network Address Translation
    • Lesson 2: Deploying Cisco ASA Network Address Translation
    • Lesson 3: Deploying Cisco IOS Software Network Address Translation
    • Lesson 4: Module Summary
    • Lesson 5: Module Self-Check

    Module 4: Threat Controls Deployment on Cisco ASA

    • Lesson 1: Introducing Cisco Firewall threat Controls
    • Lesson 2: Deploying Basic Cisco ASA Access Policies
    • Lesson 3: Deploying Advanced Cisco ASA Access Policies
    • Lesson 4: Deploying Reputation-Based Cisco ASA Access Policies
    • Lesson 5: Deploying Identity-Based Cisco ASA Access Policies
    • Lesson 6: Module Summary
    • Lesson 7: Module Self-Check

    Module 5: Threat Controls Deployment on Cisco IOS Software

    • Lesson 1: Deploying Basic Cisco IOS Zone-Based Policy Firewall Access Policies
    • Lesson 2: Deploying Advanced Cisco IOS Zone-Based Policy Firewall Access Policies
    • Lesson 3: Module Summary
    • Lesson 4: Module Self-Check
    • Lab 2-1: Configure Control and Management Plane Security Controls
    • Lab 2-2: Configure Traffic Telemetry Methods
    • Lab 2-3: Configure Layer 2 Data Plane Security Controls
    • Lab 2-4: Configure Layer 3 Data Plane Security Controls
    • Lab 3-1: Configure Cisco ASA NAT
    • Lab 3-2: Configure Cisco IOS Software NAT
    • Lab 4-1: Configure Basic Cisco ASA Access Policies
    • Lab 4-2: Configure Advanced Cisco ASA Access Policies
    • Lab 4-3: Configure Cisco ASA Botnet Traffic Filter
    • Lab 4-4: Configure Cisco ASA Identity Firewall
    • Lab 5-1: Configure Basic Cisco IOS Zone-Based Policy Firewall Access Policies
    • Lab 5-2: Configure Advanced Cisco IOS Zone-Based Policy Firewall Access Policies
    • CCNA Security or valid CCSP or any CCIE certification can act as a prerequisite.
  • The primary audiences for this course are:

    • Network Security Engineers