Title:

Implementing Secure Converged WANs (CCNP2)

Code:CP2
Ac.Year:ukončen 2011/2012 (Not opened)
Sem:Winter
Curriculums:
ProgrammeField/
Specialization
YearDuty
IT-MSC-2MBI-Elective
IT-MSC-2MBS-Elective
IT-MSC-2MMI-Compulsory-Elective - group M
IT-MSC-2MMM-Elective
IT-MSC-2MPV-Elective
Language of Instruction:Czech
Credits:4
Completion:classified credit
Type of
instruction:
Hour/semLecturesSeminar
Exercises
Laboratory
Exercises
Computer
Exercises
Other
Hours:005200
 ExamsTestsExercisesLaboratoriesOther
Points:0400600
Guarantor:Matoušek Petr, Ing., Ph.D., M.A. (DIFS)
Instructor:Čejka Rudolf, Ing. (CC)
Veselý Vladimír, Ing., Ph.D. (DIFS)
Faculty:Faculty of Information Technology BUT
Department:Department of Information Systems FIT BUT
Prerequisites: 
LAN Switching, Accessing the WAN (CCNA3+4) (I2C), DIFS
 
Learning objectives:
  Technologies for secure remote access - cable technology, DSL (PPPoE, PPPoA). MPLS architecture and configuration. Building VPN using MPLS. IPSec architecture, VPN using IPSec. GRE tunnelling. Securing network devices. AAA architecture. IOS protection. Packet inspection and filtering, IDS and IPS.
Description:
  The course covers modern technologies for secure remote access through Internet using cable modems and DSL. It also describes MPLS transmission in WAN, VPN building using MPLS, IPSec, and GRE. It includes network device security, AAA architecture, packet filtering and IDS/IPS devices.
Knowledge and skills required for the course:
  Students are expected to have knowledge of CCNA Exploration 4, or certification exam CCNA 804-802.
Subject specific learning outcomes and competencies:
  Students will learn technologies for remote access. They will learn how to configure cable modem and DSL. They will understand MPLS and its implementation in Cisco routers. They will learn how to configure VPN using MPLS, IPSec, and GRE. They will get acquainted how to secure network devices, and AAA architecture. They will learn how to configure packet filtering and IPS/IDS devices.
Generic learning outcomes and competencies:
  Students will understand technologies for remote access into Internet and secure data transmission over Internet using VPN technology. They will learn how to configure VPN and how to secure network devices. Course knowledge and experience cover  requirements of Cisco certification exam 642-825 ISCW.
Syllabus of laboratory exercises:
 
  1. Remote access - requirements, technologies.
  2. Cable access. DSL, PPPoE, PPPoA.
  3. MPLS Architecture.
  4. IPSec VPN networks.
  5. GRE tunnelling, high availability.
  6. Securing network devices.
  7. AAA architecture, implementation.
  8. Packet filtering, firewalls.
  9. Securing IOS. IDS and IPS devices.
  10. Case study presentation.
  11. Skills exam. Final test.
Fundamental literature:
 B. Morgan, N. Lovering: CCNP ICSW Official Exam Certification Guide, 4th Edition. Cisco Press, 2008.
Study literature:
 
  • Lecture notes in English.
  • Documents and examples available on the Web portal Academy Online.
Controlled instruction:
  
  • Příprava a aktivní účast na všech laboratorní cvičení.
  • Vypracování všech modulových testů.
Progress assessment:
  
  • Active laboratory work (max. 60 points).
  • Practical skills test (max. 20 points).
  • Final test (max. 20 points).
  • To get Academy Certificate of Completion all tests including Final exam and Skill test must be passed with score 80% or better.
Exam prerequisites:
  
  • Labs attendance.
  • Getting at least 50% points of every activity.
 

Your IPv4 address: 34.201.121.213