phone+ 91-9595234432 emailcontact@gatsindia.net

Implementing Cisco Network Security



Exam Code
210-260

Duration of Training
100 days

Click for video


Rs15,000

View Training Facility

Classroom Training

100 days unlimited access to our resource center

20 % discount on enrolling now!
study material included
( *15.00 % Service tax extra)
Home > Training > PMKVY > RASCI > Cashier
Syllabus
Learning Objectives

On Completion of this training the knowledge and skills that a learner will have are mentioned below

  1. .
    1. Common security principles
      1. Describe confidentiality, integrity, availability (CIA)
      2. Describe SIEM technology
      3. Identify common security terms
      4. Identify common network security zones
    2. Common security threats
      1. Identify common network attacks
      2. Describe social engineering
      3. Identify malware
      4. Classify the vectors of data loss/exfiltration
    3. Cryptography concepts
      1. Describe key exchange
      2. Describe hash algorithm
      3. Compare and contrast symmetric and asymmetric encryption
      4. Describe digital signatures, certificates, and PKI
    4. Describe network topologies
      1. Campus area network (CAN)
      2. Cloud, wide area network (WAN)
      3. Data center
      4. Small office/home office (SOHO)
      5. Network security for a virtual environment
  2. .
    1. Secure management
      1. Compare in-band and out-of band
      2. Configure secure network management
      3. Configure and verify secure access through SNMP v3 using an ACL
      4. Configure and verify security for NTP
      5. Use SCP for file transfer
    2. AAA concepts
      1. Describe RADIUS and TACACS+ technologies
      2. Configure administrative access on a Cisco router using TACACS+
      3. Verify connectivity on a Cisco router to a TACACS+ server
      4. Explain the integration of Active Directory with AAA
      5. Describe authentication and authorization using ACS and ISE
    3. 802.1X authentication
      1. Identify the functions 802.1X components
    4. BYOD
      1. Describe the BYOD architecture framework
      2. Describe the function of mobile device management (MDM)
  3. .
    1. VPN concepts
      1. Describe IPSec protocols and delivery modes (IKE, ESP, AH, tunnel mode, transport mode)
      2. Describe hair pinning, split tunneling, always-on, NAT traversal
    2. Remote access VPN
      1. Implement basic clientless SSL VPN using ASDM
      2. Verify clientless connection
      3. Implement basic Any Connect SSL VPN using ASDM
      4. Verify Any Connect connection
      5. Identify endpoint posture assessment
    3. Site-to-site VPN
      1. Implement an IPsec site-to-site VPN with pre-shared key Authentication on Cisco routers and ASA firewalls
      2. Verify an IPSec site-to-site VPN
  4. .
    1. Security on Cisco routers
      1. Configure multiple privilege levels
      2. Configure Cisco IOS role-based CLI access
      3. Implement Cisco IOS resilient configuration
    2. Securing routing protocols
      1. Implement routing update authentication on OSPF
    3. Securing the control plane
      1. Explain the function of control plane policing
    4. Common Layer 2 attacks
      1. Describe STP attacks
      2. Describe ARP spoofing
      3. Describe MAC spoofing
      4. Describe CAM table (MAC address table) overflows
      5. Describe CDP/LLDP reconnaissance
      6. Describe VLAN hopping
      7. Describe DHCP spoofing
    5. Mitigation procedures
      1. Implement DHCP snooping
      2. Implement Dynamic ARP Inspection
      3. Implement port security
      4. Describe BPDU guard, root guard, loop guard
      5. Verify mitigation procedures
    6. VLAN security
      1. Describe the security implications of a PVLAN
      2. Describe the security implications of a native VLAN
  5. .
    1. Describe operational strengths and weaknesses of the different firewall technologies
      1. Proxy firewalls
      2. Application firewall
      3. Personal firewall
    2. Compare stateful vs. stateless firewalls
      1. Operations
      2. Function of the state table
    3. Implement NAT on Cisco ASA 9.x
      1. Static
      2. Dynamic
      3. PAT
      4. Policy NAT
      5. Verify NAT operations
    4. Implement zone-based firewall
      1. Zone to zone
      2. Self zone
    5. Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x
      1. Configure ASA access management
      2. Configure security access policies
      3. Configure Cisco ASA interface security levels
      4. Configure default Cisco Modular Policy Framework (MPF)
      5. Describe modes of deployment (routed firewall, transparent firewall)
      6. Describe methods of implementing high availability
      7. Describe security contexts
      8. Describe firewall services
  6. .
    1. Describe IPS deployment considerations
      1. Network-based IPS vs. host-based IPS
      2. Modes of deployment (inline, promiscuous - SPAN, tap)
      3. Placement (positioning of the IPS within the network)
      4. False positives, false negatives, true positives, true negatives
    2. Describe IPS technologies
      1. Rules/signatures
      2. Detection/signature engines
      3. Trigger actions/responses (drop, reset, block, alert, monitor/log, Shun)
      4. Blacklist (static and dynamic)
  7. .
    1. Describe mitigation technology for email-based threats
      1. SPAM filtering, anti-malware filtering, DLP, blacklisting, email Encryption
    2. Describe mitigation technology for web-based threats
      1. Local and cloud-based web proxies
      2. Blacklisting, URL filtering, malware scanning, URL categorization,Web application filtering, TLS/SSL decryption
    3. Describe mitigation technology for endpoint threats
      1. Anti-virus/anti-malware
      2. Personal firewall/HIPS
      3. Hardware/software encryption of local data
Summary
  • Implementing Cisco Network Security (210-260)

Implementing Cisco Network Security Training at GATS primarily focuses on providing the skill set and knowledge necessary for a secured network infrastructure using Cisco products. On completing the course the candidate gets thorough understanding of core security concepts, knows how to manage secure access, VPN encryption, firewalls, intrusion prevention, web and email security, and endpoint security.

The course validates the candidate’s ability of installation, troubleshooting, and monitoring of a secure network to maintain integrity, confidentiality, and availability of data and devices.

Exam and Certification
  • arrow Exam Code : 210-260
  • arrow Exam Duration: 90 minutes
  • arrow No. of Questions: 60 to 70 questions
Candidates can prepare for this exam by taking the Implementing Cisco Network Security Course from GATS.

arrow
How to register for the exam ?

Visit a Pearson VUE Authorized exam center and get your exam registered.
You can also register online for the exam from www.pearsonvue.com

arrow
What documents do you require for the exam ?

2 photo ID’s which have your name correctly registered along with your signature are required from any of the following:
Passport, Driver’s License, Pan Card, UID issued by Govt., Voter’s IDetc

Pre-requisites
CCNA Routing & Switching
arrow
Who should attend the training ?

  • arrowChannel Partner / Reseller
  • arrowCustomer
  • arrowProfessionals
  • arrowCareer Seeker
  • arrowStudent

Why GATS ?
  • arrow GATS has trained, groomed and honed scores of students into lean technologists with competitive skills at par with global standards. The Institute has proved to be a gateway to lucrative careers and scores of students from various disciplines who seek the support of our extensive Data Bank.
  • arrow We believe in providing personalized guidance to each of our students. Our Cisco Certified stalwarts have designed a unique training system to educate, groom and empower students. A special set of internal practice tests are conducted to improve performance in exams during the training sessions.
  • arrow Our Intensive Training Model is designed in such that the participant gets hands-on practice facilitated on our top class physical Network rack equipped with a High end series of cisco routers and switches and terminal servers, for real-life oriented rich technical experience with a focus on Cisco recommended technologies
  • arrow We conduct special revision batch and exam preparation session immediately after completion of the main course, to ensure quality along with the highest success ratio. This revision batch and exam preparation session is conducted at FREE of cost and is a mandate for the students.
  • arrow Many of our faculty members hold advanced degrees and have a wealth of real-world experience to share. You'll learn all the essentials in your chosen field, and then how to apply this knowledge to make an immediate impact on your career.
  • arrow The participant gets free access to our resource center.
Offers
Latest Offers
Training
How we train
Register
Register For Training
© GATS-Ghatge Academy of Technology and Science.
All rights reserved.
eXTReMe Tracker
Top