Course detail

CISCO Academy - Network Security

FEKT-XPC-CASAcad. year: 2021/2022

The course which is part of the updated and official Cisco CCNA Curriculum (Network Security), addresses practically the security issues of network devices and network communications. Included topics are: Network security principles, creating a secure network, AAA configuration, use of Radius and TACACS + authentication. Securing of routers. Creating a secure infrastructure using L2 elements, 802.1x technology. Security of end devices. Using Cisco IOS Firewall and Cisco IOS IPS. Cryptography for VPN networks, creating IPSec VPN networks. Cisco ASA firewalls.

Learning outcomes of the course unit

The graduate is able to:
- list the various network threats and attacks and provide their basic characteristics,
- compare two basic AAA protocols,
- select and configure an appropriate security strategy for the network,
- Prepare configuration of secure routing, switching,
- Configure the IPsec VPN network including a description of the required cryptographic protocols,
- operate the Cisco ASA firewall and use it to secure the network.

Prerequisites

Student, which is going to attend this course, should be able to:
- use several numeral systems and conversions between them,
- explain and use elementary units common in area of information and communication technologies (ICT), e.g. data size, transmission speed,
- use elementary terms from ICT area, e.g. operating system, memory, process,
- describe architecture of basic network models, i.e. TCP/IP and ISO/OSI,
- describe basic application protocols for user data transfer from TCP/IP suite,
- configure devices and protocols used on local-area level on Cisco CCNA knowledge level.
One of the three following conditions is required: Completed XCA3 course at FEEC BUT, or valid CCNA certification (up-to-date version), or successfully finished CCNA3 even at another Cisco Academy.

Co-requisites

Not applicable.

Recommended optional programme components

Not applicable.

Literature

Lecture slides and lab manuals (freely available for students of course) (EN)
Santos O., Stuppi J.: CCNA security 210-260: official cert guide, Cisco press, 570 stran, 2015. ISBN 978-1-58720-566-8. (EN)

Planned learning activities and teaching methods

Teaching methods include practical laboratories. Course is taking advantage of e-learning (Moodle) system.

Assesment methods and criteria linked to learning outcomes

Up to 16 points from partial tests.
Up to 24 points from final theoretical test.
Up to 60 points from final practical exam.

Language of instruction

Czech

Work placements

Not applicable.

Course curriculum

1. Securing administrative access to the router, social engineering.
2. Configuring administrative roles, automated security features, and routing security.
3. Configuring Authentication, Authorization, and Accounting (AAA) on Cisco devices.
4. Radius-based authentication, ACLs for IPv4.
5. ACLs for IPv6, packet flow.
6. Zone Policy Firewall and local SPAN.
7. Security on L2 devices (switches).
8. Cryptography for VPNs - symmetric and asymmetric ciphers, hash algorithms.
9. Creating IPsec VPNs.
10. Basics of configuring Cisco ASA firewalls using the command line.
11. Basic configuration of Cisco ASA firewalls using ASDM.
12. Comprehensive configuration in a Cisco ASA firewall environment.
13. Final theoretical test, practical exam.

Aims

The aim of the course is to provide students with a comprehensive orientation in the field of security of network active devices. In addition to the theoretical concepts, they will be familiar with Authentication, Authorization and Accounting (AAA) technology, ways of setting security on routers and also second layer devices. They will learn how to configure Virtual Private Network (VPN) networks and the Cisco Adaptive Security Appliance (ASA) firewalls.

Specification of controlled education, way of implementation and compensation for absences

Attendance on laboratories is compulsory, properly excused laboratories can be filled after talking to the lecturer.

Classification of course in study plans

  • Programme BPC-AUD Bachelor's

    specialization AUDB-ZVUK , any year of study, summer semester, 3 credits, elective
    specialization AUDB-TECH , any year of study, summer semester, 3 credits, elective

  • Programme BPC-AMT Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BKC-EKT Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BPC-EKT Bachelor's, any year of study, summer semester, 3 credits, elective

  • Programme AJEI-H Bachelor's

    branch H-AEI , any year of study, summer semester, 3 credits, elective

  • Programme BPC-IBE Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BKC-MET Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BPC-MET Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BPC-SEE Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BKC-SEE Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BPC-TLI Bachelor's, any year of study, summer semester, 3 credits, elective
  • Programme BKC-TLI Bachelor's, any year of study, summer semester, 3 credits, elective

  • Programme MPC-AUD Master's

    specialization AUDM-TECH , any year of study, summer semester, 3 credits, elective
    specialization AUDM-ZVUK , any year of study, summer semester, 3 credits, elective

  • Programme MPC-BIO Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-TIT Master's, any year of study, summer semester, 3 credits, elective
  • Programme MKC-TIT Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-KAM Master's, any year of study, summer semester, 3 credits, elective
  • Programme MKC-EVM Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-EVM Master's, any year of study, summer semester, 3 credits, elective
  • Programme MKC-EEN Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-EEN Master's, any year of study, summer semester, 3 credits, elective
  • Programme MKC-EKT Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-EKT Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-IBE Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-MEL Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-SVE Master's, any year of study, summer semester, 3 credits, elective
  • Programme MPC-EAK Master's, any year of study, summer semester, 3 credits, elective

Type of course unit

 

Laboratory exercise

52 hours, compulsory

Teacher / Lecturer

eLearning

eLearning: opened course