Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 is a five-day course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco Adaptive Security Appliances (ASAs) and using Cisco IOS routers.
- Exam Number:
- Exam Name:
- Implementing Cisco Secure Mobility Solutions
- CCNP Security
- Comprehensive study materials, including official Cisco courseware
- Remote lab access
PrerequisitesA valid CCNA Security certification is recommended.
Course ObjectivesAfter completing this course, you will be able to:
- Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.
- Implement and maintain Cisco site-to-site VPN solutions.
- Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke and spoke-to-spoke IPsec VPNs.
- Implement and maintain Cisco clientless SSL VPNs.
- Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
- Implement and maintain endpoint security and dynamic access policies (DAP).
Module 1: Fundamentals of VPN Technologies and Cryptography
- Lesson 1: The Role of VPNs in Network Security
- Lesson 2: VPNs and Cryptography
Module 2: Deploying Secure Site-to-Site Connectivity Solutions
- Lesson 1: Introducing Cisco Secure Site-to-Site Connectivity Solutions
- Lesson 2: Deploying Point-to-Point IPsec VPNs on the Cisco ASA
- Lesson 3: Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
- Lesson 4: Deploying Cisco IOS DMVPNs
Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions
- Lesson 1: Introducing Cisco FlexVPN Solution
- Lesson 2: Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 3: Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 4: Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
Module 4: Deploying Clientless SSL VPN
- Lesson 1: Clientless SSL VPN Overview
- Lesson 2: Deploying Basic Cisco Clientless SSL VPN
- Lesson 3: Deploying Application Access in Clientless SSL VPN
- Lesson 4: Deploying Advanced Authentication in Clientless SSL VPN
Module 5: Deploying AnyConnect VPN for Remote Access
- Lesson 1 Overview of Cisco AnyConnect VPNs
- Lesson 2 Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 3 Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 4: Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
- Lesson 5: Deploying Advanced Authentication, Authorization, and Accounting in Cisco
Module 6: Deploying Endpoint Security and Dynamic Access Policies
- Lesson 1: Implementing Host Scan
- Lesson 2: Implementing DAP for SSL VPNs
- Lab 1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
- Lab 2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
- Lab 3: Implement DMVPN
- Lab 4: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
- Lab 5: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS FlexVPN
- Lab 6: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS FlexVPN
- Lab 7: Implement ASA Basic Clientless SSL VPN
- Lab 8: Application Access Clientless SSL
- Lab 9: Advanced AAA Clientless SSL
- Lab 10: Implement ASA Basic AnyConnect SSL VPN
- Lab 11: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
- Lab 12: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
- Lab 13: Configure Advanced Authentication for Cisco AnyConnect VPN on Cisco ASA
- Lab 14: Configure Hostscan and DAP for AnyConnect SSL VPNs
Military RequirementsIn addition to validating your IT skills and networking training, Cisco Certifications are a must for certain IT positions.
- DoD Mandate: The DoD Directive 8570.01-M mandates all government personnel, civilians, and contractors with privileged access working on networks are required to receive industry IT certifications.
- CNSS/NSA 4013: Cisco CCSP and CCNP Security courses meet the CNSS training standard.
- By being 4013 compliant, the Cisco Security certification program ensures that certified network security professionals assisting federal agencies and private sector entities understand what is required to protect information and aid in the defense of the nation's vital information resources.