Muutke küpsiste eelistusi

31 Days Before Your CCNA Security Exam: A Day-By-Day Review Guide for the IINS 210-260 Certification Exam [Pehme köide]

4.14/5 (41 hinnangut Goodreads-ist)
  • Formaat: Paperback / softback, 352 pages, kõrgus x laius x paksus: 230x155x20 mm, kaal: 440 g
  • Sari: 31 Days
  • Ilmumisaeg: 28-Jul-2016
  • Kirjastus: Cisco Press
  • ISBN-10: 1587205785
  • ISBN-13: 9781587205781
Teised raamatud teemal:
31 Days Before Your CCNA Security Exam: A Day-By-Day Review Guide for the IINS 210-260 Certification ExamSuurem pilt
  • Formaat: Paperback / softback, 352 pages, kõrgus x laius x paksus: 230x155x20 mm, kaal: 440 g
  • Sari: 31 Days
  • Ilmumisaeg: 28-Jul-2016
  • Kirjastus: Cisco Press
  • ISBN-10: 1587205785
  • ISBN-13: 9781587205781
Teised raamatud teemal:
Püsilink: https://www.kriso.ee/db/9781587205781.html
Märksõnad:
31 Days Before Your CCNA Security Exam







31 Days Before Your CCNA Security Exam offers you an engaging and practical way to understand the certification process, commit to taking the CCNA Security IINS 210-260 certification exam, and finish your preparation using a variety of Primary and Supplemental study resources.







The IINS 210-260 exam tests your knowledge of secure network infrastructure, core security concepts, secure access, VPN encryption, firewalls, intrusion prevention, web/email content security, and endpoint security. It also tests your skills for installing, troubleshooting, and monitoring secure networks to maintain the integrity, confidentiality, and availability of data and devices.







Sign up for the IINS 210-260 exam and use the books day-by-day guide and checklist to organize, prepare, and review. Each day in this guide breaks down an exam topic into a manageable bit of information to review using short summaries. A Study Resources section provides you with a quick reference for locating more in-depth treatment of a days topics within the Primary and Supplemental resources.







The features of the book empower you to fit exam preparation into a busy schedule:

·         A visual calendar summarizing each days study topic

·         A checklist providing advice for preparation activities leading up to the exam

·         A description of the CCNA Security IINS 210-260 exam organization and sign-up process

·         Strategies from the author to be mentally, organizationally, and physically prepared for exam day

·         A conversational tone, which makes your study time more enjoyable







Primary Resources:

CCNA Security 210-260 Official Cert Guide ISBN-13: 978-1-58720-566-8

CCNA Security Course Booklet Version 2 ISBN-13: 978-1-58713-351-0

CCNA Security Lab Manual Version 2 ISBN-13: 978-1-58713-350-3







Supplemental Resources:

CCNA Security 210-260 Complete Video Course ISBN-13: 978-0-13-449931-4

CCNA Security Portable Command Guide, Second Edition ISBN-13: 978-1-58720-575-0

Cisco ASA: All-in-One Next-Generation Firewall, IPS, and VPN Services, Third Edition ISBN-13: 978-1-58714-307-6

 

Category: Certification

Covers: CCNA Security

 
Introduction xxii
Digital Study Guide xxvi
Day 31: Common Security Principles 1(4)
CCNA Security 210-260 IINS Exam Topics
1(1)
Key Topics
1(1)
Confidentiality, Integrity, and Availability (CIA)
1(1)
SIEM
1(1)
Common Network Security Terms
2(1)
Security Zones
2(2)
Study Resources
4(1)
Day 30: Common Security Threats 5(6)
CCNA Security 210-260 IINS Exam Topics
5(1)
Key Topics
5(1)
Network Attacks
5(2)
Reconnaissance Attacks
5(1)
Access Attacks
5(1)
DoS and DDoS Attacks
6(1)
Social Engineering
7(1)
Types
7(1)
Defenses
8(1)
Malware
8(1)
Data Loss
9(1)
Study Resources
10(1)
Day 29: Cryptographic Technologies 11(10)
CCNA Security 210-260 IINS Exam Topics
11(1)
Key Topics
11(1)
CIA Triad
11(1)
Key Exchange and Management
11(1)
Hash Algorithms
12(3)
Well-known Hash Functions
12(1)
Authentication Using Hashing
13(1)
Hashing in Cisco Products
14(1)
Symmetric and Asymmetric Encryption
15(3)
Encryption Overview
15(1)
Symmetric Encryption Algorithms
15(1)
Asymmetric Encryption Algorithms
16(2)
Digital Signatures and RSA Certificates
18(1)
Study Resources
19(2)
Day 28: PKI and Network Security Architectures 21(14)
CCNA Security 210-260 IINS Exam Topics
21(1)
Key Topics
21(1)
Public Key Infrastructure
21(7)
PKI Terminology, Components, and Classes of Certificates
22(1)
PKI Topologies
23(1)
PKI Standards
24(1)
PKI Operations
25(2)
Enrollment and Revocation
27(1)
Network Architectures and Topologies
28(5)
Campus-Area Network (CAN)
28(1)
WAN and Branch/SOHO
29(2)
Data Center
31(1)
Cloud and Virtual Networks
31(2)
Study Resources
33(2)
Day 27: Secure Management Systems 35(10)
CCNA Security 210-260 IINS Exam Topics
35(1)
Key Topics
35(1)
In-band and Out-of-band Management
35(1)
Management Plane Security
36(3)
Access Security
36(2)
SSH/HTTPS
38(1)
Syslog
38(1)
Simple Network Management Protocol (SNMP)
39(3)
Network Time Protocol (NTP)
42(1)
Secure Copy Protocol (SCP)
43(1)
Study Resources
44(1)
Day 26: AAA Concepts 45(6)
CCNA Security 210-260 IINS Exam Topics
45(1)
Key Topics
45(1)
AAA
45(1)
RADIUS and TACACS+
46(2)
RADIUS
46(1)
TACACS+
47(1)
ACS and ISE
48(2)
ACS
49(1)
ISE
49(1)
Study Resources
50(1)
Day 25: TACACS+ and RADIUS Implementation 51(10)
CCNA Security 210-260 IINS Exam Topics
51(1)
Key Topics
51(1)
Server-based AAA Authentication
51(2)
Server-based AAA Authorization
53(1)
Server-based AAA Accounting
54(1)
Server-based AAA Verification and Troubleshooting
55(3)
Study Resources
58(3)
Day 24: 802.1X 61(6)
CCNA Security 210-260 IINS Exam Topics
61(1)
Key Topics
61(1)
802.1X
61(4)
Terminology and Concepts
61(2)
Configuration and Verification
63(2)
Study Resources
65(2)
Day 23: BYOD 67(6)
CCNA Security 210-260 IINS Exam Topics
67(1)
Key Topics
67(1)
BYOD Architecture
67(2)
BYOD Management
69(3)
Study Resources
72(1)
Day 22: IPsec Technologies 73(12)
CCNA Security 210-260 IINS Exam Topics
73(1)
Key Topics
73(1)
VPNs
73(3)
IPsec Framework
76(5)
IPsec Protocols
77(2)
AH
77(1)
ESP
78(1)
IPsec Modes of Operations
78(1)
Confidentiality
79(1)
Data Integrity
79(1)
Origin Authentication
80(1)
Key Management
80(1)
Suite B Cryptographic Standard
81(1)
IKE
81(3)
IKEv1 Phase 1
82(1)
IKEv1 Phase 2
83(1)
IKEv2
83(1)
Study Resources
84(1)
Day 21: Clientless Remote-Access VPN 85(14)
CCNA Security 210-260 IINS Exam Topics
85(1)
Key Concepts
85(1)
Clientless SSL VPN Concepts
85(2)
Clientless SSL VPN Configuration
87(8)
Task 1: Launch Clientless SSL VPN Wizard from ASDM
88(1)
Task 2: Configure the SSL VPN URL and Interface
88(1)
Task 3: Configure User Authentication
89(1)
Task 4: Configure User Group Policy
90(1)
Task 5: Configure Bookmarks
90(5)
Clientless SSL VPN Verification
95(2)
Study Resources
97(2)
Day 20: AnyConnect Remote Access VPN 99(14)
CCNA Security 210-260 IINS Exam Topics
99(1)
Key Topics
99(1)
AnyConnect SSL VPN Concepts
99(2)
SSL VPN Server Authentication
100(1)
SSL VPN Client Authentication
100(1)
SSL VPN Client IP Address Assignment
100(1)
AnyConnect SSL VPN Configuration and Verification
101(10)
Phase 1: Configure Cisco ASA for Cisco AnyConnect
101(5)
Task 1: Connection Profile Identification
101(1)
Task 2: VPN Protocols and Device Certificate
102(1)
Task 3: Client Image
102(1)
Task 4: Authentication Methods
103(1)
Task 5: Client Address Assignment
103(1)
Task 6: Network Name Resolution Servers
104(1)
Task 7: Network Address Translation Exemption
104(1)
Task 8: AnyConnect Client Deployment and Summary
105(1)
Phase 2: Configure the Cisco AnyConnect VPN Client
106(2)
Phase 3: Verify AnyConnect Configuration and Connection
108(3)
Study Resources
111(2)
Day 19: Site-to-Site VPN 113(18)
CCNA Security 210-260 IINS Exam Topics
113(1)
Key Topics
113(1)
IPsec Negotiation
113(1)
Cisco IOS CLI-based Site-to-Site IPsec VPN
114(8)
Configuration
115(4)
Step 1: ACL Compatibility
115(1)
Step 2: IKE Phase 1—ISAKMP Policy
115(2)
Step 3: IKE Phase 2—IPsec Transform Set
117(1)
Step 4: Crypto ACLs
117(1)
Step 5: IPsec Crypto Map
118(1)
Verification
119(3)
Cisco ASA Site-to-Site IPsec VPN
122(6)
Configuration
123(2)
Step 1: Launch the ASDM Site-to-Site VPN Wizard
123(1)
Step 2: Peer Device Identification
123(1)
Step 3: Traffic to Protect
124(1)
Step 4: Security
124(1)
Step 5: NAT Exempt
125(1)
Verification
125(3)
Study Resources
128(3)
Day 18: VPN Advanced Topics 131(6)
CCNA Security 210-260 IINS Exam Topics
131(1)
Key Topics
131(1)
Hairpinning and Client U-Turn
131(1)
Split Tunneling
132(2)
Always-on VPN
134(1)
NAT Traversal
134(1)
Endpoint Posture Assessment
135(1)
Study Resources
136(1)
Day 17: Secure Device Access 137(6)
CCNA Security 210-260 IINS Exam Topics
137(1)
Key Topics
137(1)
Cisco IOS Authorization with Privilege Levels
137(1)
Authorization with Role-Based CLI
138(1)
Cisco IOS Resilient Configuration
139(1)
Cisco IOS File Authenticity
140(2)
Study Resources
142(1)
Day 16: Secure Routing Protocols 143(6)
CCNA Security 210-260 IINS Exam Topics
143(1)
Key Topics
143(1)
Routing Protocol Authentication
143(1)
OSPF MD5 Authentication
144(2)
MD5 Authentication with Key Chain
144(1)
MD5 Authentication Without Key Chain
145(1)
OSPF SHA Authentication
146(2)
Study Resources
148(1)
Day 15: Control Plane Security 149(4)
CCNA Security 210-260 IINS Exam Topics
149(1)
Key Topics
149(1)
Functional Planes of the Network
149(1)
Control Plane Policing
150(1)
If Control Plane Protection
151(1)
Study Resources
152(1)
Day 14: Layer 2 Infrastructure Security 153(8)
CCNA Security 210-260 IINS Exam Topics
153(1)
Key Topics
153(1)
Common Layer 2 Attacks
153(6)
STP Attacks
153(2)
ARP Spoofing
155(1)
MAC Spoofing
156(1)
CAM Table Overflows
157(1)
CDP/LLDP Reconnaissance
157(1)
VLAN Hopping
157(1)
DHCP Spoofing
158(1)
Study Resources
159(2)
Day 13: Layer 2 Protocols Security 161(10)
CCNA Security 210-260 IINS Exam Topics
161(1)
Key Topics
161(1)
DHCP Snooping
161(2)
Dynamic ARP Inspection
163(1)
IP Source Guard
164(1)
Port Security
165(2)
STP Security Mechanisms
167(2)
PortFast
167(1)
BPDU Guard
168(1)
Root Guard
168(1)
Loop Guard
168(1)
Study Resources
169(2)
Day 12: VLAN Security 171(10)
CCNA Security 210-260 IINS Exam Topics
171(1)
Key Topics
171(1)
Private VLANs
171(3)
PVLAN Edge
174(1)
ACLs on Switches
175(3)
PACL Configuration
176(1)
VACL Configuration
177(1)
Native VLAN
178(2)
Study Resources
180(1)
Day 11: Firewall Technologies 181(10)
CCNA Security 210-260 IINS Exam Topics
181(1)
Key Topics
181(1)
Firewall Overview
181(2)
Packet Filtering
183(2)
Proxy and Application Firewalls
185(2)
Stateful Firewalls
187(1)
Next-Generation Firewalls
188(1)
Personal Firewall
189(1)
Study Resources
189(2)
Day 10: Cisco ASA NAT Implementation 191(18)
CCNA Security 210-260 IINS Exam Topics
191(1)
Key Topics
191(1)
NAT Fundamentals
191(2)
NAT on Cisco ASA
193(2)
Static NAT
195(3)
Dynamic NAT
198(3)
Dynamic PAT
201(2)
Policy NAT
203(5)
Study Resources
208(1)
Day 9: Cisco IOS Zone-Based Policy Firewall 209(10)
CCNA Security 210-260 IINS Exam Topics
209(1)
Key Topics
209(1)
ZPF Concepts
209(1)
ZPF Zones and Zone Pairs
210(1)
Introduction to C3PL
211(2)
Class Maps
212(1)
Policy Maps
212(1)
Service Policy
213(1)
Default Policies and Traffic Flows
213(1)
ZPF Configuration and Verification
214(4)
Configuring Class Maps
214(1)
Configuring Policy Maps
215(1)
Configuration and Verification
216(2)
Study Resources
218(1)
Day 8: Cisco ASA Firewall Concepts 219(8)
CCNA Security 210-260 IINS Exam Topics
219(1)
Key Topics
219(1)
Cisco ASA Family
219(2)
ASA Features and Services
221(1)
ASA Deployments
222(1)
ASA High Availability
223(2)
ASA Contexts
225(1)
Study Resources
226(1)
Day 7: ASA Firewall Configuration 227(18)
CCNA Security 210-260 IINS Exam Topics
227(1)
Key Topics
227(1)
ASA Default Configuration
227(2)
ASA Management Access
229(1)
ASA Interfaces
230(2)
ASA Access Rules
232(2)
ASA Objects and Object Groups
234(6)
ASA Modular Policy Framework
240(4)
Study Resources
244(1)
Day 6: IDS/IPS Concepts 245(8)
CCNA Security 210-260 IINS Exam Topics
245(1)
Key Topics
245(1)
IDS vs. IPS
245(2)
Host-based vs. Network-based IPS
247(1)
IPS Deployment Options
248(1)
IPS Placement
249(1)
IPS Terminology
250(1)
Study Resources
251(2)
Day 5: IDS/IPS Technologies 253(6)
CCNA Security 210-260 IINS Exam Topics
253(1)
Key Topics
253(1)
Detection Technologies
253(1)
Signatures
254(1)
Trigger Actions
255(1)
Blacklisting
256(1)
Next-Generation IPS with FirePOWER
256(1)
Study Resources
257(2)
Day 4: Email-based Threat Mitigation 259(10)
CCNA Security 210-260 IINS Exam Topics
259(1)
Key Topics
259(1)
ESA Overview
259(1)
ESA Deployment
260(3)
ESA Features
263(2)
Filtering Spam
263(1)
Fighting Viruses and Malware
264(1)
Email Data Loss Prevention
264(1)
Advanced Malware Protection
264(1)
ESA Mail Processing
265(2)
Incoming Mail Processing
265(1)
Outgoing Mail Processing
266(1)
Study Resources
267(2)
Day 3: Web-based Threat Mitigation 269(6)
CCNA Security 210-260 IINS Exam Topics
269(1)
Key Topics
269(1)
Cisco WSA
269(3)
Cisco CWS
272(2)
Study Resources
274(1)
Day 2: Endpoint Protection 275(6)
CCNA Security 210-260 IINS Exam Topics
275(1)
Key Topics
275(1)
Endpoint Security Overview
275(1)
Personal Firewalls
276(1)
Antivirus
276(1)
Antispyware
277(1)
Antimalware
278(1)
Data Encryption
279(1)
Study Resources
280(1)
Day 1: CCNA Security Skills Review and Practice 281(18)
CCNA Security 210-260 IINS Exam Topics
281(1)
Key Topics
281(1)
CCNA Security Skills Practice
281(8)
Introduction
281(1)
Topology Diagram
281(1)
Addressing Table
282(1)
ISP Configuration
283(1)
Implementation
283(6)
Step 1: Cable the Network As Shown in the Topology
283(1)
Step 2: Configure Initial Settings for R1_BRANCH
283(1)
Step 3: Configure Initial Settings for HQ_SW
284(1)
Step 4: Configure Initial Settings for HQ-ASA
285(1)
Step 5: Configure Clientless SSL VPN
286(1)
Step 6: Configure Site-to-Site IPsec VPN
286(2)
Step 7: Configure a Zone-Based Policy Firewall
288(1)
Answers to CCNA Security Skills Practice
289(10)
Step 1: Cable the Network As Shown in the Topology
289(1)
Step 2: Configure Initial Settings for R1_BRANCH
289(1)
Step 3: Configure Initial Settings for HQ_SW
290(1)
Step 4: Configure Initial Settings for HQ-ASA
291(2)
Step 5: Configure Clientless SSL VPN
293(1)
Step 6: Configure Site-to-Site IPsec VPN
294(1)
Step 7: Configure a Zone-Based Policy Firewall
295(4)
Exam Day 299(2)
What You Need for the Exam
299(1)
What You Should Receive After Completion
299(1)
Summary
300(1)
Post-Exam Information 301(2)
Receiving Your Certificate
301(1)
U.S. Government Recognition
301(1)
Examining Certification Options
302(1)
If You Failed the Exam
302(1)
Summary
302(1)
Index 303
Patrick Gargano has been an educator since 1996 and a Cisco Networking Academy Instructor since 2000. He currently heads the Networking Academy program at Collège La Cité in Ottawa, Canada, where he teaches CCNA/CCNP-level courses. Patrick has twice led the Cisco Networking Academy student Dream Team deploying the wired and wireless networks supporting the U.S. Cisco Live conferences. In 2014 he co-authored CCNP Routing and Switching Portable Command Guide. Recognitions of his teaching include prizes from Collège La Cité for innovation and excellence and from the Ontario Association of Certified Engineering Technicians and Technologists for excellence in technology education. Previously, Patrick was a Cisco Networking Academy instructor at Cégep de lOutaouais (Gatineau, Canada) and Louis-Riel High School (Ottawa, Canada) and a Cisco instructor (CCSI) for Fast Lane UK (London). His certifications include CCNA (R&S), CCNA Wireless, CCNA Security, and CCNP (R&S). He holds Bachelor of Education and Bachelor of Arts degrees from the University of Ottawa. Find him on Twitter @PatrickGargano.