Description

The Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.

Objectives

  • Introduce VPNs
  • Implement advanced threat controls
  • Deploy secure site-to-site connectivity solutions
  • Deploy Cisco IOS site-to-site FlexVPN solutions
  • Deploy clientless SSL VPN
  • Deploy AnyConnect VPN for remote access
  • Introduce endpoint security and dynamic access policies

Outline


Fundamentals of VPN Technologies and Cryptography
  • The Role of VPNs in Network Security
  • VPNs and Cryptography

Deploying Secure Site-to-Site Connectivity Solutions
  • Introducing Cisco Secure Site-to-Site Connectivity Solutions
  • Deploying Point-to-Point IPsec VPNs on the Cisco ASA
  • Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
  • Deploying Cisco IOS DMVPNs

Deploying Cisco IOS Site-to-Site FlexVPN Solutions
  • Introducing Cisco FlexVPN Solution
  • Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
  • Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
  • Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN

Deploying Clientless SSL VPNs
  • Clientless SSL VPN Overview
  • Deploying Basic Cisco Clientless SSL VPN on Cisco ASA
  • Deploying Application Access in Cisco ASA Clientless SSL VPN
  • Deploying Advanced Authentication and Authorization in Clientless SSL VPN

Deploying Cisco AnyConnect VPNs
  • Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
  • Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
  • Deploying Advanced Authentication and Authorization in Cisco AnyConnect VPNs
  • Deploying Cisco AnyConnect IPSec/IKEv2 VPNs

Endpoint Security and Dynamic Access Policies
  • Implementing Host Scan
  • Implementing DAP for SSL VPNs

Prerequisite Knowledge

  • Cisco Certified Network Associate (CCNA) certification
  • Cisco Certified Network Associate (CCNA) Security certification
  • Knowledge of Microsoft Windows operating system

Associated certifications