Cisco Router Threat Mitigation

Overview/Description
To identify the risks associated with connecting to the Internet and the methods used to reduce those risks

Target Audience
Network engineers responsible for configuring, implementing, troubleshooting, and managing Cisco network access servers (NAS), perimeter routers, and virtual private network (VPN) remote access networks; network architects responsible for designing Cisco network access servers (NAS), perimeter routers, and virtual private network (VPN) remote access networks; CCNP candidates; CCIE candidates

Prerequisites
A knowledge of general networking terms and concepts; experience in general Cisco router operation and configuration; a knowledge of data networking equivalent to that of a Cisco Certified Network Associate (CCNA); a basic knowledge of Windows operating system; familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications); experience working in a network environment is recommended

Expected Duration
220 Minutes

Objectives:

Cisco Router Threat Mitigation

  • identify the components and topologies used to secure typical networks, and list the router services that may cause vulnerabilities.
  • associate the Cisco routing services with their corresponding features and configuration commands
  • identify the features and configuration commands associated with HTTP and IP services.
  • briefly define NTP, Proxy ARP, SNMP, small servers, and unused router interfaces, and identify the possible vulnerabilities associated with them.
  • associate the different access lists used to filter network traffic with their corresponding configuration commands.
  • select the appropriate commands to configure extended numbered access lists and extended named access lists.
  • configure both standard and extended access lists.
  • recommend the best approach to take when applying access lists.
  • recall suitable access-list implementation methods to protect a network against specific security threats.
  • recall the correct Syslog implementation for a Cisco router.
  • configure and apply access lists to mitigate threats to your network and router.


    • Course Number: 130679_eng