S.No. CCIE Security Written Exam Topics v4.0 Part I Infrastructure, Connectivity, Communications, Network Security

Similar documents
CCIE Security. Course Outline. CCIE Security. 07 Oct

Implementing Cisco Edge Network Security Solutions ( )

The following chart provides the breakdown of exam as to the weight of each section of the exam.

Implementing Cisco Network Security (IINS) 3.0

The IINS acronym to this exam will remain but the title will change slightly, removing IOS from the title, making the new title.

Chapter 3 Network Foundation Protection (NFP) Overview 39. Configuring and Implementing Switched Data Plane Security Solutions 57

CCIE Security. 1.0 Perimeter Security and Intrusion Prevention 21% 23% 2.0 Advanced Threat Protection and Content Security 17% 19%

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Cisco - ASA Lab Camp v9.0

ASACAMP - ASA Lab Camp (5316)

CCIE Security Written Exam

CISCO EXAM QUESTIONS & ANSWERS

Cisco 5921 Embedded Services Router

TestOut Network Pro - English 4.1.x COURSE OUTLINE. Modified

Int ernet w orking. Internet Security. Literature: Forouzan: TCP/IP Protocol Suite : Ch 28

TestOut Network Pro - English 5.0.x COURSE OUTLINE. Modified

UniNets CCNA Security LAB MANUAL UNiNets CCNA Cisco Certified Network Associate Security LAB MANUAL UniNets CCNA LAB MANUAL

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD SEGURIDAD EN REDES. NIVEL II. VERSION 2.0

Cisco Exam Questions & Answers

CISCO EXAM QUESTIONS & ANSWERS

Cisco Exam. Volume: 223 Questions. Question No: 1 Which three commands can be used to harden a switch? (Choose three.)

ASA/PIX Security Appliance

CCIE Route & Switch Written (CCIERSW) 1.0

Fundamentals of Network Security v1.1 Scope and Sequence

Cisco 5921 Embedded Services Router

Exam Questions Demo Cisco. Exam Questions CCIE Security Written Exam.

Cisco Security Solutions for Systems Engineers (SSSE) Practice Test. Version

ExamTorrent. Best exam torrent, excellent test torrent, valid exam dumps are here waiting for you

CISCO QUAD Cisco CCENT/CCNA/CCDA/CCNA Security (QUAD)

Addresses, Protocols, and Ports Reference

CCIE Routing & Switching

Implementing Core Cisco ASA Security (SASAC)

Cisco 921J Gigabit Ethernet security router with external power supply for Japan only

Informal Write-up on CCNA Security. October, 2009 (V1.0)

AIR-WLC K9 Datasheet. Overview. Check its price: Click Here. Quick Specs

TestOut Routing and Switching Pro - English 6.0.x COURSE OUTLINE. Modified

Cisco Certified Network Associate ( )

CCNA Security 1.0 Student Packet Tracer Manual

Deploying Cisco ASA Firewall Solutions (FIREWALL v1.0)

Cisco Exam Implementing Cisco Network Security Version: 12.0 [ Total Questions: 186 ]

CCNA Routing and Switching (NI )

VPN World. MENOG 16 Istanbul-Turkey. By Ziad Zubidah Network Security Specialist

CCNA. Murlisona App. Hiralal Lane, Ravivar Karanja, Near Pethe High-School, ,

CCNA Security. 2.0 Secure Access. 1.0 Security Concepts

Technology Scenarios. INE s CCIE Security Bootcamp - 1 -

ActualTest Questions

Cisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

PrepAwayExam. High-efficient Exam Materials are the best high pass-rate Exam Dumps

A-B I N D E X. backbone networks, fault tolerance, 174

COPYRIGHTED MATERIAL. Contents

Configuring L2TP over IPsec

Exam Actual. Higher Quality. Better Service! QUESTION & ANSWER

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

Cisco Exam Troubleshooting and Maintaining Cisco IP Networks (TSHOOT) Version: 6.0 [ Total Questions: 79 ]

I N D E X. Numerics. 3DES (triple Data Encryption Standard), 199

Implementing Cisco IP Routing

CCDP. Design Professional. Silver Learning

Overview 1. Service Features 1

"Charting the Course... Interconnecting Cisco Networking Devices Accelerated 3.0 (CCNAX) Course Summary

This course prepares candidates for the CompTIA Network+ examination (2018 Objectives) N

Security+ SY0-501 Study Guide Table of Contents

Sample excerpt. Virtual Private Networks. Contents

CCIE Wireless v3.1 Workbook Volume 1

Acronyms. International Organization for Standardization International Telecommunication Union ITU Telecommunication Standardization Sector

HP U200 Unified Threat Management (UTM) Appliance Series

Understanding Cisco Cybersecurity Fundamentals

Network Security 1. Module 7 Configure Trust and Identity at Layer 2

CCNP Security VPN

HOME-SYD-RTR02 GETVPN Configuration

Exam Topics Cross Reference

About This Guide. Document Objectives. Audience

Security and Lawful Intercept In VoIP Networks. Manohar Mahavadi Centillium Communications Inc. Fremont, California

CCIE ROUTING & SWITCHING V5.0

Question: 1 The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?

Cisco Catalyst 6500 Series/Cisco 7600 Series Wireless Services Module

CCIE(Routing & Switching) Course Catalog

Cisco Exam Questions & Answers

SYLLABUS. DIVISION: Business and Engineering Technology REVISED: FALL 2015 CREDIT HOURS: 4 HOURS/WK LEC: 4 HOURS/WK LAB: 0 LEC/LAB COMB: 4

Network Security. Thierry Sans

Syllabus. Cisco Certified Design Professional. Implementing Cisco IP Routing

ActualTorrent. Professional company engaging Providing Valid Actual Torrent file for qualification exams.

DYNAMIC MULTIPOINT VPN SPOKE TO SPOKE DIRECT TUNNELING

Platform Settings for Firepower Threat Defense

Certified Penetration Testing Consultant

TEXTBOOK MAPPING CISCO COMPANION GUIDES

Gigabit SSL VPN Security Router

Retired. Models HP U200-A UTM Appliance

Exam Questions Demo Cisco. Exam Questions

DMVPN to Group Encrypted Transport VPN Migration

CCIE Wireless v3 Lab Video Series 1 Table of Contents

CompTIA Security+ Certification

Network Security and Cryptography. December Sample Exam Marking Scheme

CompTIA Security+ (Exam SY0-401)

CCIE Security Written Exam v4.0. CCIE Security Written Exam v4.0

Index. Numerics 3DES (triple data encryption standard), 21

Cisco Wireless LAN Controller Module

CCNA. Course Catalog

New Features for ASA Version 9.0(2)

Cisco CCNP ROUTE: Implementing Cisco IP Routing (ROUTE) 2.0. Upcoming Dates. Course Description. Course Outline

AccessEnforcer Version 4.0 Features List

Transcription:

S.No. CCIE Security Written Exam Topics v4.0 Part I Infrastructure, Connectivity, Communications, Network Security 1 Network Addressing Basics 2 OSI Layers 3 TCP/UDP/IP Protocols 4 LAN Switching (e.g. VTP, VLANs, Spanning Tree, Trunking) 5 Routing Protocols (RIP, EIGRP, OSPF, and BGP) (a) Basic Functions/Characteristics (b) Security Features 6 Tunneling Protocols (a) GRE (b) NHRP (c) v6 Tunnel Types 7 IP Multicast (a) PIM (b) Multi Src Disc Protocol (c) IGMP/CGMP (d) Multi Listener Discovery 8 Wireless (a) SSID (b) Authentication/Authorization (c) Rogue Aps (d) Session Establishment 9 Authentication/Authorization Technologies (a) Single Sign-on (b) OTPs (c) LDAP/AD (d) Role Based Access Control 10 VPNs (a) L2 vs L3 (b) MPLS/VRFs/Tag switching 11 MobileIP Networks Part II Security Protocols 1 Rivest, Shamir and Adleman (RSA) 2 Rivest Cipher 4 (RC4) 3 Message Digest 5 (MD5) 4 Secure Hash Algorithm (SHA) Page 1

Page 2 5 Data Encryption Standard (DES) 6 Triple DES (3DES) 7 Advanced Encryption Standard (AES) 8 IP Security (IPsec) 9 Internet Security Association and Key Management Protocol (ISAKMP) 10 Internet Key Exchange IKE/IKEv2 11 Group Domain of Interpretation (GDOI) 12 Authentication Header (AH) 13 Encapsulating Security Payload (ESP) 14 Certificate Enrollment Protocol (CEP) 15 Transport Layer Security TLS/DTLS 16 Secure Socket Layer (SSL) 17 Secure Shell (SSH) 18 Remote Authentication Dial In User Service (RADIUS) 19 Terminal Access Controller Access-Control System Plus (TACACS+) 20 Lightweight Directory Access Protocol (LDAP) 21 EAP Methods (e.g. EAP-MD5, EAP-TLS, EAP-TTLS, EAP-FAST, PEAP, LEAP) 22 Public Key Infrastructure (PKI)/PKIX/PKCS 23 802.1X 24 WEP/WPA/WPA2 25 Web Cache Communication Protocol (WCCP) 26 Secure Group Tagging Exchange Protocol (SXP) 27 MacSec 28 DNSSec Part III Application and Infrastructure Security 1 Hypertext Transfer Protocol (HTTP) 2 Hypertext Transfer Protocol Secure (HTTPS) 3 Simple Mail Transfer Protocol (SMTP) 4 Dynamic Host Configuration Protocol (DHCP) 5 Domain Name System (DNS) 6 File Transfer Protocol (FTP/SFTP) 7 Trivial File Transfer Protocol (TFTP) 8 Network Time Protocol (NTP) 9 Simple Network Management Protocol (SNMP) 10 Syslog 11 Netlogon,Netbios,SMB 12 RPCs 13 RDP/VNC

14 PCoIP 15 OWASP 16 Basic unnecessary services Part IV Threats, Vulnerability Analysis and Mitigation 1 Recognizing and mitigating common attacks (a) ICMP attacks, PING floods (b) MITM (c) Replay (d) Spoofing (e) Backdoor (f) Botnets (g) Wireless attacks (h) DoS/DDoS Attacks (i) Virus and Worms Outbreaks (j) Header Attacks (k) Tunneling attacks 2 Software/OS Exploits 3 Security/Attack Tools 4 Generic Network Intrusion Prevention Concepts 5 Packet Filtering 6 Content Filtering/Packet Inspection 7 Endpoint/Posture Assessment 8 QoS marking attacks Part V Cisco Security Products, Features and Management 1 Cisco Adaptive Security Appliance (ASA) (a) Firewall Functionality (b) Routing/Multicast Cababilities (c) Firewall modes (d) NAT - Pre 8.4/Post 8.4 (e) Object Definition/ACLs (f) MPF functionality (IPS/QoS/Application Awareness) (g) Context Aware Firewall (h) Identity Based Services (i) Failover Options Page 3

Page 4 2 Cisco IOS Firewalls and NAT (a) CBAC (b) Zone-Based Firewall (c) Port-to-Application Mapping (d) Identity Based Firewalling 3 Cisco Intrusion Prevention Systems (IPS) 4 Cisco IOS IPS 5 Cisco AAA Protocols and Application (a) RADIUS (b) TACACS+ (c) Device Admin (d) Network Access (e) 802.1X (f) VSAs 6 Cisco Identity Services Engine 7 Cisco Secure ACS Solution Engine 8 Cisco Network Admission Control (NAC) Appliance Server 9 Endpoint/Client (a) Cisco AnyConnect VPN Client (b) Cisco VPN Client (c) Cisco Secure Desktop (CSD) (d) NAC Agent 10 Secure Access Gateways (Cisco IOS Router/ASA) (a) IPsec (b) SSL VPN (c) PKI 11 Virtual Security Gateway 12 Cisco Catalyst 6500 Series Security Services Modules 13 Scansafe Functionality&Components 14 IronPort Products 15 Security Management (a) Cisco Security Manager (CSM) (b) Cisco Adaptive Security Device Manager (ASDM) (c) Cisco IPS Device Manager (IDM) (d) Cisco IPS Manager Express (IME) (e) Cisco Configuration Professional (CCP) (f) Cisco Prime

Part VI Cisco Security Technologies and Solutions 1 Router Hardening Features (e.g. CoPP, MPP. urpf, PBR) 2 Switch Security Features (e.g. anti-spoofing, port, STP, MacSec,NDAC,NEAT) 3 NetFlow 4 Wireless Security 5 Network Segregation (a) VRF-aware technologies (b) VXLAN 6 VPN Solutions (a) FlexVPN (b) Dynamic Multipoint VPN (DMVPN) (c) Group Encrypted Transport VPN (GETVPN) (d) EasyVPN 7 Content and Packet Filtering 8 QoS application for security 9 Load Balancing & Failover Part VII Security Policies and Procedures, Best Practices, Standards 1 Security Policy Elements 2 Information Security Standards (e.g. ISO/IEC 27001, ISO/IEC 27002) 3 Standards Bodies (e.g. ISO, IEC, ITU, ISOC, IETF, IAB, IANA, ICANN) 4 Industry Best Practices (e.g. SOX, PCI DSS) 5 Common RFC/BCP (e.g. RFC2827/BCP38, RFC3704/BCP84,RFC5735) 6 Security Audit & Validation 7 Risk Assessment 8 Change Management Process 9 Incident Response Framework 10 Computer Security Forensics 11 Desktop Security Risk Assessment/Desktop Security Risk Management Page 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback