Book description
Official self-study test preparation guide for the CCIE Security written exam
Review all CCIE Security written exam topics,
including:
Switching concepts, routing protocols, and WAN protocols, including PPP, ISDN, and Frame Relay
DNS, TFTP, Secure Shell, Secure Socket Layer Protocol, NTP, and SNMP
Cisco IOS(r) Software specifics, including password security, password recovery, and standard and extended access lists
Encryption technologies and security protocols, including TACACS+, RADIUS, and Kerberos Windows and UNIX operating system security issues
Cisco security applications, including Cisco PIX(r) Firewall, VPN, IDS, and Cisco Policy Manager
Basic security methods and the evolution of new secure networks including packet filtering, proxies, and NAT/PAT
Network security policies, vulnerabilities, and protection techniques
With increased reliance on networking resources to provide productivity gains and corporate revenue contributions, the need for network security has never been higher. Rising concerns over corporate espionage, cyber-terrorism, financial fraud, and theft of proprietary information have radically increased the demand for highly skilled networking security professionals. One of the most sought-after and highly valued networking certifications, the Cisco Systems CCIE Security certification is answering the need for technical expertise in this critical market by distinguishing the top echelon of internetworking experts.
CCIE Security Exam Certification Guide is a comprehensive study tool for the Security written exam. Written and reviewed by members of the CCIE Security team at Cisco, this book helps you understand and master the material you will need to know to pass the written exam. Designed to optimize your study time, this book helps you assess your knowledge of the material at the beginning of each chapter with customized quizzes for each topic. Increase retention of key concepts by reviewing summaries of crucial concepts. Test your comprehension with chapter-ending review questions. Determine your assimilation of knowledge and get a taste for the CCIE Security lab exam with two complete practice lab scenarios focused on security and routing and switching topics. Take timed practice exams that mimic the real testing environment with the CD-ROM test engine or customize the test bank to focus on the topics for which you need the most help. Along with an electronic version of the text, a complete copy of Henry Benjamin's previously published CCIE Routing and Switching Exam Cram is also presented on the CD-ROM as an additional bonus.
CCIE Security Exam Certification Guide is part of a recommended study program from Cisco Systems that can include simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.
"This book will be a valuable asset for potential CCIE Security
candidates. I am positive individuals will inevitably gain
extensive security network knowledge during their preparation by
using this book."
-Gert De Laet, Product Manager, CCIE Security, Cisco Systems,
Inc.
Companion CD-ROM
CD contains a test engine with over 300 questions, lab equipment
suggestions, sample configurations, and a bonus electronic copy of
the complete CCIE Routing and Switching Exam Cram text.
Table of contents
- Copyright
- About the Author
- Acknowledgments
- Foreword
- Introduction
- Using This Book to Prepare for the CCIE Security Written Exam
-
General Networking Topics
- “Do I Know This Already?” Quiz
- Foundation Topics
- Networking Basics—The OSI Reference Model
- Ethernet Overview
- Internet Protocol
- Variable-Length Subnet Masks
- Classless Interdomain Routing
- Transmission Control Protocol
- TCP Services
- Routing Protocols
- ISDN
- IP Multicast
- Asynchronous Communications and Access Devices
- Foundation Summary
- Requirements for FastEther Channel
- Q & A
- Scenario
- Scenario 2-1: Routing IP on Cisco Routers
- Scenario Answers
- Scenario 2-1 Answers: Routing IP on Cisco Routers
-
Application Protocols
- “Do I Know This Already?” Quiz
- Foundation Topics
- Domain Name System
- Trivial File Transfer Protocol
- File Transfer Protocol
- Hypertext Transfer Protocol
- Secure Socket Layer
- Simple Network Management Protocol
- Simple Mail Transfer Protocol
- Network Time Protocol
- Secure Shell
- Foundation Summary
- Q & A
- Scenario
- Scenario 3-1: Configuring DNS, TFTP, NTP, and SNMP
- Scenario Answers
- Scenario 3-1 Solutions
- Cisco IOS Specifics and Security
-
Security Protocols
- “Do I Know This Already?” Quiz
- Foundation Topics
- Authentication, Authorization, and Accounting (AAA)
- Remote Authentication Dial-In User Service (RADIUS)
- Terminal Access Controller Access Control System Plus (TACACS+)
- Kerberos
- Virtual Private Dial-Up Networks (VPDN)
- Encryption Technology Overview
- Internet Key Exchange (IKE)
- Certificate Enrollment Protocol (CEP)
- Foundation Summary
- Q & A
- Scenario
- Scenario 5-1: Configuring Cisco Routers for IPSec
- Scenario Answers
- Scenario 5-1 Solutions
-
Operating Systems and Cisco Security Applications
- “Do I Know This Already?” Quiz
- Foundation Topics
- UNIX
- Microsoft NT Systems
- Common Windows DOS Commands
- Cisco Secure for Windows and UNIX
- Cisco Secure Policy Manager
- Cisco Secure Intrusion Detection System and Cisco Secure Scanner
- Cisco Security Wheel
- Foundation Summary
- Q & A
- Scenarios
- Scenario 6-1: NT File Permissions
- Scenario 6-2: UNIX File Permissions
- Scenario Answers
- Scenario 6-1 Solution
- Scenario 6-2 Solution
-
Security Technologies
- “Do I Know This Already?” Quiz
- Foundation Topics
- Advanced Security Concepts
- Network Address Translation and Port Address Translation
- Cisco Private Internet Exchange (PIX)
- Cisco IOS Firewall Security Feature Set
- Public Key Infrastructure
- Virtual Private Networks
- Foundation Summary
- Q & A
- Scenario
- Scenario 7-1: Configuring a Cisco PIX for NAT
- Scenario Answer
- Scenario 7-1 Solution
-
Network Security Policies, Vulnerabilities, and Protection
- “Do I Know This Already?” Quiz
- Foundation Topics
- Network Security Policies
- Standards Bodies and Incident Response Teams
- Vulnerabilities, Attacks, and Common Exploits
- Intrusion Detection System
- Protecting Cisco IOS from Intrusion
- Foundation Summary
- Q & A
- Scenario
- Scenario 8-1: Defining IOS Commands to View DoS Attacks in Real Time
- Scenario Answer
- Scenario 8-1 Solution
- CCIE Security Self-Study Lab
-
Answers to Quiz Questions
- Chapter 2 “Do I Know This Already?” Quiz Answers
- Chapter 2 Q & A Answers
- Chapter 3 “Do I Know This Already?” Quiz Answers
- Chapter 3 Q & A Answers
- Chapter 4 “Do I Know This Already?” Quiz Answers
- Chapter 4 Q & A Answers
- Chapter 5 “Do I Know This Already?” Quiz Answers
- Chapter 5 Q & A Answers
- Chapter 6 “Do I Know This Already?” Quiz Answers
- Chapter 6 Q & A Answers
- Chapter 7 “Do I Know This Already?” Quiz Answers
- Chapter 7 Q & A Answers
- Chapter 8 “Do I Know This Already?” Quiz Answers
- Chapter 8 Q & A Answers
- Study Tips for CCIE Security Examinations
-
Sample CCIE Routing and Switching Lab
- Basic Setup (1 Hour)
- IP Configuration and IP Addressing (No Time)
- Frame Relay Setup (0.5 Hours)
- Basic ATM Configuration (0.5 hours)
- IGP Routing (3 Hours)
- Basic ISDN Configuration (0.5 Hours)
- DLSw+ Configuration (0.75 Hours)
- Flash Configuration (0.2 Hours)
- VTY Changes (0.2 Hours)
- HTTP server (0.2 Hours)
- Catalyst 6509 Password Recovery (0.2 Hours)
- Private Address Space Allocation (0.2 Hours)
- BGP Routing Configuration (0.75 Hours)
- Conclusion
- Index
Product information
- Title: CCIE Security Exam Certification Guide
- Author(s):
- Release date: April 2003
- Publisher(s): Cisco Press
- ISBN: 1587200651
You might also like
book
CCNP SWITCH 642-813 Official Certification Guide
CCNP SWITCH 642-813 Official Certification Guide David Hucaby, CCIE® No. 4594 CCNP SWITCH Exam Preparation Master …
book
CCNP Security SISAS 300-208 Official Cert Guide
CCNP Security SISAS 300-208 Official Cert Guide CCNP Security SISAS 300-208 Official Cert Guide from Cisco …
book
CCIE Practical Studies: Security (CCIE Self-Study)
Hands-on preparation for the CCIE Security lab exam Prepare for the CCIE Security lab exam with …
book
CCIE Security v4.0 Practice Labs
CCIE Security v4.0 Practice Labs The material covered in CCIE Security v4.0 Practice Labs is designed …