Course details

This course has been designed to provide students with the knowledge and skills required to implement and manage security on Cisco ASA firewalls, Cisco Routers with the firewall feature set and Cisco Switches. Students will gain hands-on experience with configuring various perimeter security solutions to mitigate outside threats and secure network zones. At the end of the course, students should be able to reduce the risk to their IT infrastructures and applications and provide detailed operations support for Cisco Switches, Cisco ASA, and Router security appliance features.

Target Audience

This course is aimed at network professionals involved in the support and deployment of Cisco Edge Security solutions utilizing Cisco Switches, Cisco Routers and Cisco ASA Firewalls, as well as Individuals looking to obtain the Cisco Certified Network Professional Certification.


After attending this course you should be able to :

  • Understand current security threat landscape
  • Understand and implement Cisco modular Network Security Architectures such as SecureX and TrustSec
  • Deploy Cisco Infrastructure management and control plane security controls
  • Configure Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Design and deploy Cisco Threat Defense solutions on a Cisco ASA utilizing access policy and application and identity based inspection
  • Implement Botnet Traffic Filters
  • Deploy Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Course Outline

Cisco Secure Design Principles

  • Network Security Zoning
  • Cisco Module Network Architecture
  • Cisco SecureX Architecture
  • Cisco TrustSec Solutions

Implement Network Infrastructure Protection

  • Introducing Cisco Network Infrastructure Architecture
  • Deploying Cisco IOS Control Plane Security Controls
  • Deploying Cisco IOS Management Plane Security Controls
  • Deploying Cisco ASA Management Plane Security Controls
  • Deploying Cisco Traffic Telemetry Methods
  • Deploying Cisco IOS Layer 2 Data Plane Security Controls
  • Deploying Cisco IOS Layer 3 Data Plane Security Controls

Deploying NAT on Cisco IOS and Cisco Adaptive Security Appliance

  • Introducing Network Address Translation
  • Deploying Cisco ASA Network Address Translation
  • Deploying Cisco IOS Software Network Address Translation

Deploying Threat Controls on Cisco ASA

  • Introducing Cisco Threat Controls
  • Deploying Cisco ASA Basic Access Controls
  • Deploying Cisco ASA Application Inspection Policies
  • Deploying Cisco ASA Botnet Traffic Filtering
  • Deploying Cisco ASA Identity Based Firewall

Deploying Threat Controls on Cisco IOS Software

  • Deploying Cisco IOS Software with Basic Zone-Based Firewall Policies
  • Deploying Cisco IOS Software Zone-Based Firewall with Application Inspection Policies


  • Lab 2-1: Configuring Configure Cisco Policy Protection (CPP) and Management Plane Protection (MPP)
  • Lab 2-2: Configure Traffic Telemetry Methods
  • Lab 2-3: Configure Layer 2 Data Plan Security
  • Lab 2-4: Configure Layer 2 Data Plan Security
  • Lab 3-1: Configure NAT on Cisco Adaptive Security Appliance (ASA) Firewall
  • Lab 3-2: Configure NAT on Cisco IOS Software
  • Lab 4-1: Configure Cisco ASA Access Policy
  • Lab 4-2: Configure Cisco ASA Application Inspection Policy
  • Lab 4-3: Configure Cisco ASA Botnet Traffic Filter
  • Lab 4-4: Configure Cisco ASA Identity Based Firewall
  • Lab 5-1: Configure Cisco IOS Software Zone-Based Firewall (ZBFW)
  • Lab 5-2: Configure Cisco IOS Software ZBFW Application Inspection Policy

About Equitrain

EquiTrain –a pision of Equinox International- equips organizations with IT skills that are the lifeblood of modern corporate life, as Theyll as the professional expertise required for ensuring productivity and to remain competitive now and tomorrow.

At EquiTrain, They tailor end-to-end training solutions that incorporate both IT and business consultancy to the specific needs of each inpidual customer. They can equip yTheir IT professionals with all they need to quickly maximize yTheir new technology investments as Theyll as pushing forward absolute beginners on their road to IT proficiency.

They offer a broad range of IT and Management training cTheirses and certifications from top technology vendors with a choice of on-site or offsite, public or closed and local or abroad training. Their portfolio of cTheirses is supplemented by Their strategic training alliance with world's leading providers of learning solutions.

See all Equitrain courses

Contact information not available.

Are you from Equitrain ? Claim your course!
Courses you can instantly connect with... Fiber Optic Network Deesign Power Technical Training Advanced Professional Fiber Optic Installation Power Technical Training

Is this the right course for you?

Rate our content

Didn't find what you were looking for ?