Hands-on:

Firewall, IPSec,VPNs with

CISCO PIX

A four day hands-on course

Language: English

Hands-on Firewall, IPsec,VPNs with CISCO PIX

Cisco's PIX line offers rock-solid firewalls for every network, but they are especially suited to the enterprise. They offer a dependable, highly customizable solution for segmenting and protecting any portion of your network, as well as providing the standard firewall function of securely connecting your network to the public Internet.


WHAT YOU WILL LEARN:
Configure VPNs (Virtual Private Networking)
Troubleshoot Firewalls
The ability to deal with firewall failures
Configure system management
Configuring intrusion detection
Develope and enforce policies on a per user basis with the use of user-level security
Work with IPsec

WHO SHOULD ATTEND:
The objective of this class is to provide you with a thorough understanding of the CISCO PIX firewalls.

You need to be at least familiar with Cisco devices and command line interface (CLI).The ideal course to follow before this course is: Introduction to CISCO Routers (Part1)

 

OUTLINES:

1. Intro To Security and Firewalls

2. Introduction to PIX Firewalls

  • The Adaptive Security Algorithm
  • VPN support
  • URL Filtering
  • NAT and PAT

3. Passing traffic

  • Access Lists
  • Conduits
  • TurboACLs
  • Object Grouping

4 Advanced PIX Configurations

  • Handling Advanced Protocols
  • Filtering WEB traffic
  • Configuring Intrusion detection
  • Reverse-Path Forwarding
  • Unicast Routing
  • Stub and Multicast Routing
5. Configuring Authentication,Authorization,and Accounting
  • AAA Concepts
  • Cisco Secure ACS for Windows
  • Configuring Console Authentication
  • Configuring Command Authorization
  • Configuring Authentication/Authorization for traffic through the firewall

6 Enabling Stub Multicast Routing

  • Overview Stub and Multicast Routing
  • Allowing hosts to receive multicast transmissions
  • Forwarding multicasts from a transmission source
  • Configuring IGMP Timers
  • Clearing IGMP configuration
  • Viewing and debugging SMR

7 Configuring System Management

  • Configuring Logging
  • Configuring Remote access
  • Configuring SNMP

8. Configuring Virtual Private Networking

· Identify the Cisco Secure VPN product family developed by Cisco Systems
· Identify how IPSec works
· Hardware overview
· Identify Cisco Secure VPN client features and requirements
· Install and upgrade Cisco Secure VPN client
· Configure Cisco Secure VPN client for remote dialup access, remote ISP access, internal enterprise network access
· Identify how to configure Cisco Secure VPN client for remote dialup access and ISP access
· Configure Cisco Secure VPN client to work with IKE pre-shared keys
· Identify how to configure Cisco Secure VPN client to work with a certificate authority (CA) server
· Cisco IOS IPSec for Pre-Shared Keys Site-to-Site
· Cisco IOS IPSec Certificate Authority Support Site-to-Site
· PIX Firewall for IPSec Pre-Shared Keys Site-to Site
· PIX Firewall Certificate Authority Support Site-to-Site
· PIX-IOS , PIX-PIX, IOS-IOS VPN Case studies
· Trouble shooting and debugging VPNs

9. PIX failover

  • Standard failover using failover Cable
  • LAN-Based failover

10. PIX Device Manager

  • Installing,Configuring PDM
  • Configuring the PIX firewall using PDM
  • Configuring system properties
  • Monitoring the PIX firewall using PDM

11. Troubleshooting and Performance Monitoring

  • Troubleshooting hardware and cabling
  • Troubleshooting Connectivity
  • Troubleshooting IPsec

 

 

FDDI Institute
 De Regenboog 11 - 2800 Belgium
Tel +32 15 24 50 58 - Fax +32 15 25 10 50