Implementing Cisco Secure Mobility Solutions (SIMOS)
Request a Quote for this class
About this Course
Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 is a newly created five-day instructor-led training (vILT) course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP© Security) certification. This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.
Audience Profile
The primary audience for this course is as follows:
- Network Security Engineers
At Course Completion
After completing this course the students should be able to:
- Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.
- Implement and maintain Cisco site-to-site VPN solutions.
- Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs.
- Implement and maintain Cisco clientless SSL VPNs.
- Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
- Implement and maintain endpoint security and dynamic access policies (DAP)
Prerequisites
To fully benefit from this course, students should have the following prerequisite skills and knowledge:
- Cisco Certified Network Associate (CCNA©_) certification
- Cisco Certified Network Associate (CCNA©_) Security certification
- Knowledge of Microsoft Windows operating system -
Course Outline
Module 1: Fundamentals of VPN Technologies and Cryptography
- Lesson 1: The Role of VPNs in Network Security
- Lesson 2: VPNs and Cryptography
Module 2: Deploying Secure Site-to-Site Connectivity Solutions
- Lesson 1: Introducing Cisco Secure Site-to-Site Connectivity Solutions
- Lesson 2: Deploying Point-to-Point IPsec VPNs on the Cisco ASA
- Lesson 3: Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
- Lesson 4: Deploying Cisco IOS DMVPNs
Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions
- Lesson 1: Introducing Cisco FlexVPN Solution
- Lesson 2: Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 3: Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 4: Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
Module 4: Deploying Clientless SSL VPN
- Lesson 1: Clientless SSL VPN Overview
- Lesson 2: Deploying Basic Cisco Clientless SSL VPN
- Lesson 3: Deploying Application Access in Clientless SSL VPN
- Lesson 4: Deploying Advanced Authentication in Clientless SSL VPN
Module 5: Deploying Cisco AnyConnect VPNs
- Lesson 1 Overview of Cisco AnyConnect VPNs
- Lesson 2 Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 3 Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 4: Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
- Lesson 5: Deploying Advanced Authentication, Authorization, and Accounting in Cisco
Module 6: Deploying Endpoint Security and Dynamic Access Policies
- Lesson 1: Implementing Host Scan
- Lesson 2: Implementing DAP for SSL VPNs
Labs
- Lab 2-1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
- Lab 2-2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
- Lab 2-3: Implement DMVPN
- Lab 3-1: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
- Lab 3-2: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
- Lab 3-3: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
- Lab 4-1: Implement ASA Basic Clientless SSL VPN
- Lab 4-2: Application Access clientless SSL
- Lab 4-3: Advanced AAA clientless SSL
- Lab 5-1: Implement ASA Basic AnyConnect SSL VPN
- Lab 5-2: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
- Lab 5-3: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
- Lab 5-4: Configure Advanced Authentication for Cisco AnyConnect SSL VPN on Cisco ASA
- Lab 6-1: Configure Hostscan and DAP for AnyConect SSL VPNs