Login to Course Campus | Call Us: 1-877-797-2799  

 

Cisco® Course Listings

Cisco Secure Virtual Private Networks (CSVPN) 4.7

Overview
Skills Taught
Audience
 Prerequisites
Outline
Duration:30 hours
Skill Level:Intermediate
Certifications:N/A
Delivery Type:Expert Encore

Description
Companies today are looking for ways to leverage Internet connectivity for connecting remote users and offices to the central network. Using the techniques of an IPSec-based VPN, companies accomplish this goal in a safe and secure manner. In this cutting-edge Cisco official course, students learn the details of IPSec that are critical for implementing and maintaining VPNs. Using the features of the 3000 series concentrator in conjunction with the hardware and software clients, the student learns how to configure a security policy at the central site then dynamically push this security policy out to remote clients. This ability permits security configurations on remote clients without spending endless hours configuring each remote user PC.

Skills Taught
Upon completion of the Cisco Secure Virtual Private Networks (CSVPN) course, the student will be able to:
  • Describe the features, functions, and benefits of Cisco VPN products
  • Explain the IPSec and IKE component technologies that are implemented in Cisco VPN products
  • Install and configure the Cisco VPN Software Client
  • Configure the Cisco VPN 3000 Series Concentrators for remote access using digital certificates
  • Configure the Cisco VPN Client for auto-initiation
  • Configure the Cisco VPN 3000 Series Concentrator firewall feature
  • Configure the Cisco VPN 3002 Hardware Client for remote access using pre-shared keys
  • Configure the Cisco VPN Client for software auto-update
  • Configure the Cisco VPN 3002 Hardware Client for interactive unit and individual user authentication
  • Configure the Cisco VPN Client for a backup server and load balancing
  • Configure the Cisco VPN 3000 Series Concentrator for IPSec over TCP or IPSec over UDP
  • Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with pre-shared keys
  • Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with NAT
  • Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with digital certificate
Audience
This course is for anyone that implements or maintains Cisco Virtual Private Networks (VPNs) or for those that might support the sales of Cisco VPN products. This course is also appropriate for anyone interested in Cisco Security certifications.

Prerequisites
Students should have completed the ICND course, obtained a CCNA certification, or have equivalent experience. Students should also possess a basic knowledge of the Windows operating system. Finally, students should possess a basic knowledge of networking and security technologies used today. Successful completion of the following:
  • Introduction to Cisco Networking Technologies (INTRO)
  • Interconnecting Cisco Network Devices (ICND)
  • Securing Networks with Cisco Routers and Switches (SNRS)
Outline
Module1: Introduction & Module 2: Security Fundamentals
  • The Closed Network
  • What Is a Security Policy?
  • Network Security Is a Continuous Process
  • Variety of Attacks
  • Configuration Management
Module 3: Overview of VPN and IPSec Technologies
  • VPN Definition
  • What Is IPSec?
  • IPSec Security Protocols
  • Five Steps of IPSec
Module 4: Cisco VPN 3000 Concentrator Series Hardware Overview
  • Cisco VPN Concentrator Series
  • Cisco VPN 3005 Concentrator
  • SEP/SEP-E
  • Client Support
Module 5: Configure the VPN Concentrator for Remote Access Using Pre-Shared Keys
  • Client-to-LAN
  • IPSec Server – Physical Connections
  • IP Interfaces
  • Groups and Users
  • Authentication
  • Cisco VPN Software Client for Windows
  • Configure the VPN Client to Access the Concentrator
  • Configure the Concentrator Using CLI
  • Configure the Concentrator Using the Concentrator Series Manager
  • Connect to the Concentrator Using the VPN Client
Module 6: Configure the 3000 Concentrator for Remote Access Using Digital Certificates
  • CA Server Fulfilling Requests from IPSec Peers
  • Certificate Generation Process
  • Certificate Validation
  • Concentrator Enrollment Support
  • Generate the PKCS#10 Certificate Request
  • Activate Concentrator IKE Proposal and Modify SA
  • Create a Certificate Request on the Cisco VPN Client
Module 7: Configure the Cisco VPN Firewall Feature for IPSec Software Client
  • Software Client Firewall Application
  • How CPP Works
  • Software Client Statistics – Firewall Tab
  • Building Customized Policies
  • Configure the Concentrator for Split Tunneling and AYT
  • Configure VPN Concentrator for the CPP Feature
Module 8: Configure the Cisco Virtual Private Network Client for Auto-Initiation
  • Auto-Initiation Feature
  • Auto-Initiation Administrative Requirements
Module 9: Monitor and Administer the Cisco VPN 3000 Series Concentrator Remote Access Networks
  • Monitor Index
  • Administration Index
  • Bandwidth Management
  • Configure Admin Account Authentication using TACACS+
  • Update Software on the Concentrator
Module 10: Configure the Cisco VPN 3002 Hardware Client for Remote Access Using Pre-Shared Keys
  • Remote Access
  • Configure Cisco VPN HW Client using PAT
  • Configure HW Client in Network Extension Mode
Module 11: Configure the VPN 3002 Hardware Client for Unit and User Authentication
  • Hardware Client Default Unit Authentication
  • Interactive Unit Authentication – Concentrator Configuration
  • Hardware Client User Authentication Feature
  • Hardware Client User Status
  • Configure HW Client for IUA and Connect Now
  • Configure HW Client Individual User Authentication
Module 12: Configure the VPN Client Backup Server, and Load Balancing
  • Backup Server
  • Load Balancing Cluster
  • Advertising VPN Client Routes
  • Configure Concentrator for Network Extension RRI
Module 13: Configure the Cisco VPN 3002 Hardware Client for Software Auto-Update
  • Hardware Client Software Auto-Update Feature
  • 13-11 Hardware Client Filterable Event Log
  • Configure Cisco 3002 HW Client for Auto-Updates
Module 14: Configuring 3000 Concentrator for IPSec Over UDP and IPSec Over TCP
    NAT
  • Concentrator Configuration – IPSec Over UDP
  • Concentrator Configuration – NAT-T
  • Concentrator – IPSec Over TCP Configuration
  • Software Client Connection Status
Module 15: Configure the 3000 Concentrator for LAN-to-LAN with Pre-Shared Keys
  • LAN-to-LAN
  • IP Interfaces
  • Add IPSec LAN-to-LAN
  • Configure LAN-to-LAN Using Pre-Shared Keys
Module 16: Configure the Cisco VPN Concentrator for LAN-to-LAN with NAT
  • Addressing Issue
  • LAN-to-LAN NAT Rule Types
Module 17: Configure the VPN Concentrator LAN-to-LAN Using Digital Certificates
  • CA Server Fulfilling Requests from IPSec Peers
  • SCEP – Root Certificate
  • SCEP – Identity Certificate
  • Configure the VPN Client to Access the Concentrator
  • Create a Certificate Request on the Cisco VPN Client
Module 18: Using Cisco VPN 3000 Concentrator v4.7
  • Cisco SSL VPN Client: An Overview
  • Cisco Secure Desktop: An Overview
  • Installing Cisco SSL VPN Client
  • Installing and Configuring Cisco Secure Desktop
Included Labs
  • Configure the VPN Client to Access the Concentrator
  • Configure the Concentrator Using CLI
  • Configure the Concentrator Using the Concentrator Series Manager
  • Connect to the Concentrator Using the VPN Client
  • Generate the PKCS#10 Certificate Request
  • Activate Concentrator IKE Proposal and Modify SA
  • Create a Certificate Request on the Cisco VPN Client
  • Configure the Concentrator for Split Tunneling and AYT
  • Configure VPN Concentrator for the CPP Feature
  • Configure Admin Account Authentication using TACACS+
  • Update Software on the Concentrator
  • Configure Cisco VPN HW Client using PAT
  • Configure HW Client in Network Extension Mode
  • Configure HW Client for IUA and Connect Now
  • Configure HW Client Individual User Authentication
  • Configure Concentrator for Network Extension RRI
  • Configure Cisco 3002 HW Client for Auto-Updates
  • Configure LAN-to-LAN Using Pre-Shared Keys
  • Configure the VPN Client to Access the Concentrator
  • Create a Certificate Request on the Cisco VPN Client
  • Installing Cisco SSL VPN Client
  • Installing and Configuring Cisco Secure Desktop