Building Advanced IPSec VPNs

Building Advanced IPSec VPNs

Overview/Description
To identify the tasks and commands required to configure a Cisco router for IKE and IPSec using a Certification Authority

Target Audience
Network engineers responsible for configuring, implementing, troubleshooting, and managing Cisco network access servers (NAS), perimeter routers, and virtual private network (VPN) remote access networks; network architects responsible for designing Cisco network access servers (NAS), perimeter routers, and virtual private network (VPN) remote access networks; CCNP candidates; CCIE candidates

Prerequisites
A knowledge of general networking terms and concepts; experience in general Cisco router operation and configuration; a knowledge of data networking equivalent to that of a Cisco Certified Network Associate (CCNA); a basic knowledge of Windows operating system; familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications); experience working in a network environment is recommended

Expected Duration
140 Minutes

Objectives:

Building Advanced IPSec VPNs

identify the tasks required to configure CA support, and the steps involved in preparing for IKE and IPSec.

identify the CA standards and servers that Cisco IOS supports and identify the steps for enrolling with a CA.

identify the commands required to configure a router's hostname and domain name, to generate an RSA key pair, and to declare a CA.

configure CA support on a Cisco router.

identify the commands used to authenticate a CA, request a certificate, monitor and maintain CA interoperability, and verify the configuration for CA support.

identify the commands and steps required to configure Internet Key Exchange (IKE).

authenticate and enroll a CA and configure IKE and IPSec on a Cisco router.

Course Number: 130683_eng