Course detail
CISCO Academy - Network Security
FEKT-XPC-CASAcad. year: 2021/2022
The course which is part of the updated and official Cisco CCNA Curriculum (Network Security), addresses practically the security issues of network devices and network communications. Included topics are: Network security principles, creating a secure network, AAA configuration, use of Radius and TACACS + authentication. Securing of routers. Creating a secure infrastructure using L2 elements, 802.1x technology. Security of end devices. Using Cisco IOS Firewall and Cisco IOS IPS. Cryptography for VPN networks, creating IPSec VPN networks. Cisco ASA firewalls.
Language of instruction
Number of ECTS credits
Mode of study
Guarantor
Department
Learning outcomes of the course unit
- list the various network threats and attacks and provide their basic characteristics,
- compare two basic AAA protocols,
- select and configure an appropriate security strategy for the network,
- Prepare configuration of secure routing, switching,
- Configure the IPsec VPN network including a description of the required cryptographic protocols,
- operate the Cisco ASA firewall and use it to secure the network.
Prerequisites
- use several numeral systems and conversions between them,
- explain and use elementary units common in area of information and communication technologies (ICT), e.g. data size, transmission speed,
- use elementary terms from ICT area, e.g. operating system, memory, process,
- describe architecture of basic network models, i.e. TCP/IP and ISO/OSI,
- describe basic application protocols for user data transfer from TCP/IP suite,
- configure devices and protocols used on local-area level on Cisco CCNA knowledge level.
One of the three following conditions is required: Completed XCA3 course at FEEC BUT, or valid CCNA certification (up-to-date version), or successfully finished CCNA3 even at another Cisco Academy.
Co-requisites
Planned learning activities and teaching methods
Assesment methods and criteria linked to learning outcomes
Up to 24 points from final theoretical test.
Up to 60 points from final practical exam.
Course curriculum
2. Configuring administrative roles, automated security features, and routing security.
3. Configuring Authentication, Authorization, and Accounting (AAA) on Cisco devices.
4. Radius-based authentication, ACLs for IPv4.
5. ACLs for IPv6, packet flow.
6. Zone Policy Firewall and local SPAN.
7. Security on L2 devices (switches).
8. Cryptography for VPNs - symmetric and asymmetric ciphers, hash algorithms.
9. Creating IPsec VPNs.
10. Basics of configuring Cisco ASA firewalls using the command line.
11. Basic configuration of Cisco ASA firewalls using ASDM.
12. Comprehensive configuration in a Cisco ASA firewall environment.
13. Final theoretical test, practical exam.
Work placements
Aims
Specification of controlled education, way of implementation and compensation for absences
Recommended optional programme components
Prerequisites and corequisites
Basic literature
Recommended reading
Elearning
Classification of course in study plans
- Programme BKC-EKT Bachelor's 0 year of study, summer semester, elective
- Programme BKC-MET Bachelor's 0 year of study, summer semester, elective
- Programme BKC-SEE Bachelor's 0 year of study, summer semester, elective
- Programme BKC-TLI Bachelor's 0 year of study, summer semester, elective
- Programme BPC-AMT Bachelor's 0 year of study, summer semester, elective
- Programme BPC-AUD Bachelor's
specialization AUDB-TECH , 0 year of study, summer semester, elective
specialization AUDB-ZVUK , 0 year of study, summer semester, elective - Programme BPC-ECT Bachelor's 0 year of study, summer semester, elective
- Programme BPC-IBE Bachelor's 0 year of study, summer semester, elective
- Programme BPC-MET Bachelor's 0 year of study, summer semester, elective
- Programme BPC-SEE Bachelor's 0 year of study, summer semester, elective
- Programme BPC-TLI Bachelor's 0 year of study, summer semester, elective
- Programme MKC-EEN Master's 0 year of study, summer semester, elective
- Programme MPC-EKT Master's 0 year of study, summer semester, elective
- Programme MPC-EVM Master's 0 year of study, summer semester, elective
- Programme MPC-AUD Master's
specialization AUDM-TECH , 0 year of study, summer semester, elective
specialization AUDM-ZVUK , 0 year of study, summer semester, elective - Programme MPC-BIO Master's 0 year of study, summer semester, elective
- Programme MPC-EEN Master's 0 year of study, summer semester, elective
- Programme MPC-EKT Master's 0 year of study, summer semester, elective
- Programme MPC-EVM Master's 0 year of study, summer semester, elective
- Programme MPC-IBE Master's 0 year of study, summer semester, elective
- Programme MPC-KAM Master's 0 year of study, summer semester, elective
- Programme MPC-MEL Master's 0 year of study, summer semester, elective
- Programme MPC-SVE Master's 0 year of study, summer semester, elective
- Programme MPC-TIT Master's 0 year of study, summer semester, elective
- Programme EEEI-H Bachelor's
branch H-AEI , 0 year of study, summer semester, elective
- Programme MPC-TIT Master's 0 year of study, summer semester, elective
- Programme MPC-EAK Master's 0 year of study, summer semester, elective
Type of course unit
Elearning