Overview
Overview
Thank you for reading this post, don't forget to subscribe!Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 is a course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions.
Audience Profile
Network Security Engineers
Prerequisite(s) Recommended
CCNA Security or valid CCSP, or any CCIE certification can act as a prerequisite
Learning Objectives
Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security. Implement and maintain Cisco site-to-site VPN solutions. Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs. Implement and maintain Cisco clientless SSL VPNs. Implement and maintain Cisco AnyConnect SSL and IPsec VPNs. Implement and maintain endpoint security and dynamic access policies (DAP).
Course Outline
Course Outline
Module 1: Fundamentals of VPN Technologies and Cryptography
Lessons
• The Role of VPNs in Network Security
• VPNs and Cryptography
Lab 1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
Lab 2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
Module 2: Deploying Secure Site-to Site Connectivity Solutions
Lessons
• Introducing Cisco Secure Site-to-Site Connectivity Solutions
• Deploying Point-to-Point IPsec VPNs on the Cisco ASA
• Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
• Deploying Cisco IOS DMVPNs
Lab 3: Implement DMVPN
Lab 4: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions
Lessons
• Introducing Cisco IOS Site-to-Site FlexVPN Solutions
• Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
• Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
• Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
• Deploying Basic Cisco Clientless SSL VPN
• Clientless SSL VPN Overview
• Deploying Basic Cisco Clientless SSL VPN on Cisco ASA
• Deploying Application Access in Cisco ASA Clientless SSL VPN
• Deploying Advanced Authentication and Authorization in Clientless SSL VPN
Lab 5: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Lab 6: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Module 4: Deploying Cisco AnyConnect VPNs
Lessons
• Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
• Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
• Deploying Advanced Authentication and Authorization in Cisco AnyConnect VPNs
• Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
Lab 7: Implement ASA Basic Clientless SSL VPN
Lab 8: Application Access for ASA Clientless SSL VPN
Lab 9: Advanced AAA for ASA Clientless SSL VPN
Module 5: Deploying Endpoint Security and Dynamic Access Policies
Lessons
• Implementing Host Scan
• Implementing DAP for SSL VPNs
Lab 10: Implement ASA Basic AnyConnect SSL VPN
Lab 11: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
Lab 12: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
Lab 13: Configure Host Scan and DAP for AnyConnect SSL VPNs