- CCIE R&S
- CCIE Voice
- CCIE Security
- CCIE Wireless
- CCIE SP
- CCIE Storage
Unable to attend a live classroom training? This recorded Video on Demand lecture series provides in-depth discussions of the lab blueprint topics. Recorded by the renowned instructors at IPexpert.
IPexpert CCIE Security training products will change the way you study; they are offered in a variety of convenient study methods and are complete with the most current and relevant information. We update our materials continually to ensure you get the most up-to-date information possible. To protect your investment, all products are covered by our Risk-Free Guarantee.
At your convenience, you can view more than 15 hours of CCIE-level lab lecture delivered by IPexpert Senior Instructor, Mark Snow.
 |
NOTICE: This product is a part of the IPexpert Blended Learning Solution™. Before you buy, be sure to check out how much more content you can get for a little more money with the CCIE Security Blended Learning Solution. |
MODULE 1: INTRODUCTION
- Introduction
- Agenda and Resources
MODULE 2: STRATEGY AND TEST TAKING TIPS
- Planning your trip
- Reading the Exam
- Strategy
- Proctor Talk
- Troubleshooting
MODULE 3: SWITCHING
- Basics
- Trunking and VTP
- SPAN
- Storm Control
- VLAN Maps
- Dot1x
- DHCP Snooping
- ARP Inspection
- IP Source Guard
MODULE 4: ROUTING
- RIP Basics and Auth
- EIGRP Basics and Auth
- OSPF Basics and Auth
- BGP Auth
- RTBHF
MODULE 5: PIX / ASA
- Basic Setup
- Routed Mode vs. Transparent Mode
- ARP Inspection
- EtherType ACLs
- Contexts
- Failover
- Stateful Failover
- RIP and OSPF Configuration
- NAT Control
- Static NAT
- Dynamic NAT
- Identity NAT
- NAT order of Operations
- AAA and Cut-Through Proxy
- Modular Policy Framework (Application Inspection)
- QoS
- ICMP
- DHCP
- NTP
- Capture
MODULE 6: IPSEC VPNS
- IPSec Basics
- ISAKMP Phase 1 and 2
- IPSec Modes
- AH
- ESP
- Symmetric vs. Asymmetric Encryption Algorithms
- Diffie Helman
- IPSec Configuration of Basic Tunnel
- IPSec with GRE
- Tunnel Endpoint Discovery (TED)
- Dynamic Multipoint VPN (DMVPN)
- DMVPN RP issues
- Dynamic Crypto Maps
- NAT-Traversal (NAT-T)
- Split Tunneling
- XAuth
- EasyVPN Server
- EasyVPN Client
- WebVPN
- Reverse Route Injection (RRI) and HSRP
- Dead Peer Detection (DPD)
- MTU Considerations
- DF Bit
- Troubleshooting IPSec
MODULE 7: IDENTITY MANAGEMENT AND AAA
- Authentication
- Authorization
- Accounting
- Cut Through Proxy
- Virtual HTTP/Telnet
- Auth Proxy
- SSH
- Method Lists - Named vs. Default
- Privilege Levels
- Using TACACS/RADIUS
MODULE 8: ACS SERVER
- Interactive GUI Demo
MODULE 9: QOS
- MQC Basics
- NBAR
- CAR
- Netflow
MODULE 10: VPN 3000 CONCENTRATOR
- Interactive GUI Demo
MODULE 11: ACS
- Interactive GUI Demo
MODULE 12: IDS/IPS
- Signatures and Structures
- IDS Components
- Functions and Capabilities
- Traffic Capture
- Tuning Signatures
- Response Actions
- TCP Resets
- Shunning / Blocking
- Setup Wizard
- Interactive GUI Demo of 4215
- PIX/ASA IDS
- Router Based IDS
- IOS URL Filter and Java/ActiveX filtering
- PAM
MODULE 13: IOSFW
- CBAC
- ACLs
- Time Based ACLs
- Standard vs. Extended ACLs
- Reflexive ACLs
- Lock and Key ACLs
MODULE 14: NETWORK ATTACKS
- SYN Attacks
- TCP Intercept
- Spoofing and RFC 2827 / RFC 1918
- Smurf Attacks
- Fraggle Attacks
- SYN Flood
- Code Red
- Blaster
- Nachi
- Land.c
- MQC and PBR Mitigations
- ASA Embryonic Mitigations
- uRPF
- ARP Inspection
MODULE 15: NETWORK ADMISSION CONTROL (NAC)
- NAC Framework Architecture
- NAC L2 IP Switch Configuration
- NAC Dot1x Switch Configuration
- NAC L3 VPN3k Configuration
- NAC ACS Setup
- NAC Testing from XP Workstation
APPENDIX A: ROUTING PROTOCOLS PRIMER
RIP/EIGRP/OSPF/BGP/REDISTRIBUTION
IPexpert materials are governed by a 1-Person End-User License Agreement. To help prevent / dissuade piracy, use of electronic media offered by IPexpert are monitored several ways:
We wish piracy was not a problem, but it is. These methods help us to monitor and track the dishonest individuals that do not honor the License Agreement and copyright laws.
