Course details

Implementing Secure Converged WANs (CCNP2)

CP2 Acad. year 2010/2011 Winter semester 4 credits

Current academic year

The course covers modern technologies for secure remote access through Internet using cable modems and DSL. It also describes MPLS transmission in WAN, VPN building using MPLS, IPSec, and GRE. It includes network device security, AAA architecture, packet filtering and IDS/IPS devices.

Guarantor

Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS)

Language of instruction

Czech

Completion

Classified Credit

Time span

  • 52 hrs laboratories

Department

Department of Information Systems (UIFS)

Subject specific learning outcomes and competences

Students will learn technologies for remote access. They will learn how to configure cable modem and DSL. They will understand MPLS and its implementation in Cisco routers. They will learn how to configure VPN using MPLS, IPSec, and GRE. They will get acquainted how to secure network devices, and AAA architecture. They will learn how to configure packet filtering and IPS/IDS devices.

Students will understand technologies for remote access into Internet and secure data transmission over Internet using VPN technology. They will learn how to configure VPN and how to secure network devices. Course knowledge and experience cover  requirements of Cisco certification exam 642-825 ISCW.

Learning objectives

Technologies for secure remote access - cable technology, DSL (PPPoE, PPPoA). MPLS architecture and configuration. Building VPN using MPLS. IPSec architecture, VPN using IPSec. GRE tunnelling. Securing network devices. AAA architecture. IOS protection. Packet inspection and filtering, IDS and IPS.

Prerequisite knowledge and skills

Students are expected to have knowledge of CCNA Exploration 4, or certification exam CCNA 804-802.

Syllabus of seminars

Item has no outline.

Syllabus of laboratory exercises

  1. Remote access - requirements, technologies.
  2. Cable access. DSL, PPPoE, PPPoA.
  3. MPLS Architecture.
  4. IPSec VPN networks.
  5. GRE tunnelling, high availability.
  6. Securing network devices.
  7. AAA architecture, implementation.
  8. Packet filtering, firewalls.
  9. Securing IOS. IDS and IPS devices.
  10. Case study presentation.
  11. Skills exam. Final test.

Progress assessment

  • Labs attendance.
  • Getting at least 50% points of every activity.

Controlled instruction

  • Příprava a aktivní účast na všech laboratorní cvičení.
  • Vypracování všech modulových testů.

Course inclusion in study plans

  • Programme IT-MGR-2, field MBI, MBS, MMM, MPV, any year of study, Elective
  • Programme IT-MGR-2, field MMI, 2nd year of study, Compulsory-Elective
  • Programme IT-MGR-2, field MSK, any year of study, Compulsory-Elective
Back to top