Puan: 81/100 İnceleme : 2413

CCNP SECURITY:

CCNP programının Hedef CCNP Security sertifika programı (önceki CCSP ) sağlamaktadır. Router, Switches, Ağ cihazları ve aletleri  ve bunun yanı sıra  ozellikle  güvenlikten sorumlu olan Cisco Ağ Güvenliği Mühendiserin destek ve Güvenlik duvarları , VPNLER , ve ağ ortamı  IDS / IPS yol giderme , dağıtma  için gerekmektedir.

Cisco Certified Network Professional Security ( CCNP Security ) : Cisco’nun yeni Ağ Güvenliği sertifika programıdır. Bu yeni sertifika programı, Cisco Ağ Güvenliği Mühendisleri yapılandırma ve Cisco güvenli bir ağ oluşturan teknolojileri sorun giderme , dağıtma  ve yeni CCNP Güvenlik Boot Camp programı ağ kritik teknolojileri ve  Cisco yönlendiricileri ve switches , güvenlik duvarları , VPN ve saldırı önleme  tespit sistemleri Cisco IOS güvenlik özellikleri gibi ürünleri kullanarak bir mühendis yeteneğini değerlendirir.

CCNP SECURITY LAB IÇIN BU CIHAZLAR KULLANIYORUZ:

  1. Routers: 1841, 2611xm, 2801, 2811, 3640, 3825, 2911, 7204 series
  2. Switches: 3550, 3560, 3750 series
  3. Firewalls:55xx
  4. IPS: 4240
  5. Iron Port: S170
  6. ISE: 3315

KURS IÇEREK:

1. Implementing TACACS+ and RADIUS and wired/wireless 802.1X ISE authentication/authorization policies, ISE endpoint identity configuration and Verify MAB Operation).

2. Implement Firewall (ASA or IOS) including ACLS, static/dynamic NAT/PAT, and object groups. Threat detection features and implement botnet traffic filtering. Describe and implement ASA security contexts, Layer 2 Security, dynamic ARP inspection, storm control, common layer 2 attacks and mitigation, and MACSec and configuring DHCP snooping, port security and IP source verification.

3. Troubleshoot, monitor (firewalls using analysis of packet tracer, capture and syslog).

4. Understand Threat Defense Architectures (Design a Firewall Solution, High-availability, Basic concepts of security zoning, Transparent & Routed Modes, Security Contexts, and Layer 2 Security Solutions). Implement defenses against MAC, ARP, VLAN hopping, STP, and DHCP rogue attacks

5. Understand and implement secure communications using VPN on routers and firewalls. Implement and troubleshoot AnyConnect IKEv2 VPN and AnyConnect SSLVPN on ASA and routers. Implement and troubleshoot FlexVPN (hub-Spoke on both IPV4 & IPV6) using local AAA and on routers. Implement and troubleshoot IPsec (with IKEv1 and IKEv2 for both IPV4 & IPV6) and DMVPN (hub-Spoke and spoke-spoke on both IPV4 & IPV6). Implement and troubleshoot clientless SSLVPN on ASA and routers.

6. Design VPN solutions and identify VPN technology considerations based on functional requirements and configuration output, and Identify functional components of GETVPN, FlexVPN, DMVPN, and IPsec.

7. Understand Cisco WSA (features and functionality, implement data security, WSA identity and authentication with transparent User identification). Describe web usage control, decryption policies traffic redirection and capture methods.

8. Understand Cisco ESA (features and functionality) and describe traffic redirection and capture. Implement email encryption, anti-spam policies, virus outbreak filter, DLP policies, anti-malware, inbound and outbound mail policies and authentication.

9. Understand Network IPS and implement traffic redirection and capture methods, network IPS deployment modes, event actions & overrides/filters, anomaly detection, risk ratings, and device hardening per best practices. Describe signatures engines and configure device hardening best practices.

KURS SÜRE: 120 SAAT.

KURS ÜCRET: BIZI ARAYIN.