Implementing Secure Converged Wide Area Networks (ISCW) Training for Exam 642-825 - Course Outline
Estimated Time to Complete - 50 hours
Lecture Videos: 32 Lessons
Demonstration Videos: 26 Lessons
Hands-on Labs: 29 Scenarios (Student lab activities)
Fact Sheets: 69 (each with 1 or more printable pages)
Exam Questions: 207 (each with answers and explanations)
Exams: 31 Practice Tests (each with detailed reporting)
0.0 Introduction
0.1 Introduction
0.1.1 Course Introduction
0.1.2 Using the Router Simulator
0.1.3 Cisco Device Icons
1.0 Attacks, Mitigation, and Device Hardening
1.1 Common Network Attacks
1.1.1 Common Network Attacks
1.1.2 Reconnaissance Attack Facts
1.1.3 Access Attack Facts
1.1.4 Denial of Service Attack Facts
1.1.5 Malware Attack Facts
1.1.6 Application Layer and Management Protocol Attack Facts
1.1.7 Exam Questions - Section 1.1
1.2 Attack Mitigation
1.2.1 Attack Mitigation Part 1
1.2.2 Attack Mitigation Part 2
1.2.3 Network Attack Mitigation Facts
1.2.4 Exam Questions - Section 1.2
1.3 Vulnerable Router Services and Interfaces
1.3.1 Vulnerable Router Services and Interfaces
1.3.2 Using AutoSecure
1.3.3 AutoSecure Facts
1.3.4 Configure AutoSecure 1
1.3.5 Configure AutoSecure 2
1.3.6 Preparing for the Security Device Manager (SDM)
1.3.7 SDM Introduction and Security Audit Wizard
1.3.8 SDM and Security Audit Facts
1.3.9 Conduct a Security Audit
1.3.10 Implement a One-step Lockdown
1.3.11 Exam Questions - Section 1.3
1.4 Secure Router Management and Reporting
1.4.1 Secure Router Management and Reporting
1.4.2 Secure Router Management and Reporting Facts
1.4.3 Configuring Login Enhancements
1.4.4 Login Enhancement Configuration Facts
1.4.5 Configure Login Enhancement
1.4.6 Configuring Role-based CLI Views
1.4.7 Role-based CLI View Configuration Facts
1.4.8 Configuring IOS Resiliency
1.4.9 IOS Resiliency Configuration Facts
1.4.10 Configure IOS Resiliency
1.4.11 Configuring SSH and SYSLOG Management
1.4.12 SSH and Syslog Configuration Facts
1.4.13 Configuring SNMP
1.4.14 SNMP Configuration Facts
1.4.15 Configuring Network Time Protocol (NTP)
1.4.16 NTP Configuration Facts
1.4.17 Exam Questions - Section 1.4
1.5 AAA
1.5.1 AAA Overview
1.5.2 AAA Facts
1.5.3 Configuring AAA with CLI
1.5.4 Configuring AAA with SDM
1.5.5 AAA Configuration Facts
1.5.6 Configure AAA Services with CLI 1
1.5.7 Configure AAA Services with CLI 2
1.5.8 Configure AAA Services with SDM
1.5.9 AAA Verification Facts
1.5.10 Exam Questions - Section 1.5
2.0 Firewalls and Intrusion Prevention
2.1 Firewall and ACL Overview
2.1.1 Firewall Features Overview
2.1.2 Threat and Attack Mitigation using ACLs
2.1.3 Firewall Zones and Technology Facts
2.1.4 Cisco Firewall Feature Set Facts
2.1.5 ACL Facts
2.1.6 Exam Questions - Section 2.1
2.2 Firewall Configuration
2.2.1 CLI Firewall Configuration Guidelines
2.2.2 Configuring a Firewall with CLI
2.2.3 CLI Firewall Configuration Facts
2.2.4 Configure a Firewall with CLI 1
2.2.5 Configure a Firewall with CLI 2
2.2.6 Configuring a Firewall with SDM
2.2.7 SDM Firewall Configuration Facts
2.2.8 Configure a Firewall with SDM 1
2.2.9 Configure a Firewall with SDM 2
2.2.10 Exam Questions - Section 2.2
2.3 Firewall Verification
2.3.1 SDM Firewall Verification Facts
2.3.2 Verify a Firewall Configuration with SDM 1
2.3.3 Verify a Firewall Configuration with SDM 2
2.3.4 CLI Firewall Verification Facts
2.3.5 Verify a Firewall Configuration with CLI
2.3.6 Exam Questions - Section 2.3
2.4 Intrusion Detection and Prevention Systems
2.4.1 IDS and IPS Overview
2.4.2 IDS and IPS Facts
2.4.3 Signatures
2.4.4 Signature Facts
2.4.5 Exam Questions - Section 2.4
2.5 IPS Configuration
2.5.1 Configuring IPS
2.5.2 Tuning Signatures and SDEE
2.5.3 IPS Configuration Facts
2.5.4 Configure IPS 1
2.5.5 Configure IPS 2
2.5.6 Verify an IPS Configuration
2.5.7 Exam Questions - Section 2.5
3.0 Remote Connectivity
3.1 Remote Connectivity Overview
3.1.1 Remote Connectivity Overview
3.1.2 Remote Connectivity Facts
3.2 Cable
3.2.1 Cable Terms, Standards, and Components
3.2.2 Cable Network Processes
3.2.3 Cable Technology Facts
3.2.4 HFC Connection Facts
3.2.5 Exam Questions - Section 3.2
3.3 Digital Subscriber Line (DSL)
3.3.1 DSL Types and Data Rates
3.3.2 DSL Facts
3.3.3 xDSL Facts
3.3.4 ADSL Overview
3.3.5 ADSL Facts
3.3.6 Exam Questions - Section 3.3
3.4 DSL Configuration
3.4.1 Configuring a PPPoE Client
3.4.2 PPPoE Client Configuration Facts
3.4.3 Configure PPPoE 1
3.4.4 Configure PPPoE 2
3.4.5 Configuring a PPPoA Client
3.4.6 PPPoA Client Configuration Facts
3.4.7 Exam Questions - Section 3.4
3.5 DSL Verification and Troubleshooting
3.5.1 Verifying and Troubleshooting DSL
3.5.2 DSL Verification and Troubleshooting Facts
3.5.3 Verify DSL Client Configurations
3.5.4 Exam Questions - Section 3.5
4.0 IPsec
4.1 IPsec Components and Features
4.1.1 IPsec Overview
4.1.2 IPsec Facts
4.1.3 Internet Key Exchange (IKE)
4.1.4 IKE Facts
4.1.5 IKE Security Association (SA)
4.1.6 Encapsulating Security Payload (ESP)
4.1.7 Security Association Facts
4.1.8 ESP Facts
4.1.9 Symmetric and Asymmetric Encryption
4.1.10 IPSec Encryption Facts
4.1.11 PKI Environment
4.1.12 PKI Environment Facts
4.1.13 Exam Questions - Section 4.1
4.2 Site-to-Site IPsec VPN
4.2.1 Site-to-Site IPsec VPN
4.2.2 Configuring a Site-to-Site IPsec VPN
4.2.3 Site-to-Site IPsec VPN Facts
4.2.4 Site-to-Site IPsec VPN Configuration Facts
4.2.5 Configure a Site-to-Site IPsec VPN 1
4.2.6 Configure a Site-to-Site IPsec VPN 2
4.2.7 Exam Questions - Section 4.2
4.3 Generic Routing Encapsulation (GRE) over IPsec
4.3.1 GRE over IPsec
4.3.2 GRE over IPsec Facts
4.3.3 Configuring GRE over IPsec
4.3.4 GRE over IPsec Configuration Facts
4.3.5 Configure GRE over IPsec
4.3.6 Exam Questions - Section 4.3
4.4 Site-to-Site VPN and GRE Tunnel Verification
4.4.1 Verifying Site-to-Site VPN Configurations
4.4.2 Site-to-Site VPN and GRE Tunnel Verification Facts
4.4.3 Verify Site-to-Site IPsec VPN Information
4.4.4 Verify GRE over IPsec Information
4.4.5 Exam Questions - Section 4.4
4.5 Cisco Easy VPN
4.5.1 Easy VPN Server and Easy VPN Remote
4.5.2 Easy VPN Facts
4.5.3 Configuring Easy VPN Server
4.5.4 Easy VPN Configuration Facts
4.5.5 Easy VPN Client Facts
4.5.6 Exam Questions - Section 4.5
4.6 IPsec High Availability
4.6.1 IPsec Stateless Failover
4.6.2 IPsec Stateless Failover Facts
4.6.3 Configuring IPsec Stateless Failover
4.6.4 IPsec Backup Peer Configuration Facts
4.6.5 IPsec Stateful Failover and IPsec VPN WAN Backup
4.6.6 IPsec Stateful Failover Facts
4.6.7 Configuring IPSec Stateful Failover
4.6.8 IPsec Stateful Failover Configuration Facts
4.6.9 IPsec VPN WAN Backup Facts
4.6.10 Backing up WAN Connections with IPSec VPN
4.6.11 Exam Questions - Section 4.6
5.0 Multiprotocol Label Switching (MPLS)
5.1 MPLS
5.1.1 MPLS Concepts
5.1.2 Frame-Mode MPLS Operation
5.1.3 MPLS Introduction
5.1.4 MPLS Label Facts
5.1.5 MPLS Operation Facts
5.1.6 Exam Questions - Section 5.1
5.2 MPLS Configuration
5.2.1 Configuring MPLS
5.2.2 MPLS Configuration Facts
5.2.3 Configure MPLS 1
5.2.4 Configure MPLS 2
5.2.5 Exam Questions - Section 5.2
5.3 MPLS VPN Technology
5.3.1 MPLS VPN
5.3.2 MPLS VPN Architecture
5.3.3 MPLS VPN Facts
5.3.4 MPLS VPN Configuration and Information Flows
5.3.5 MPLS VPN Configuration Facts
5.3.6 Exam Questions - Section 5.3
Practice Exams
Preparing for Certification
Exam Objectives
Exam FAQs
How to Register for an Exam
Exam-taking Hints and Tips
100. Implement basic teleworker services, All Questions (20 questions)
200. Implement Frame-Mode MPLS, All Questions (19 questions)
300. Implement a site-to-site IPsec VPN, All Questions (54 questions)
400. Describe network security strategies, All Questions (25 questions)
500. Implement Cisco Device Hardening, All Questions (46 questions)
600. Implement Cisco IOS firewall, All Questions (20 questions)
700. Describe and configure Cisco IOS IPS, All Questions (23 questions)
Certification Practice Exam
