Contact | Register |  Advanced Search | Student Login
CONTACT US
Do You Have Questions?:  
Phone: 949-477-2000 ext. 1  
   

CCNP2 Course with ONT & ISCW

Bookmark and Share

Call (949) 477-2000 Option 1 to schedule a class

CCNP2_BUNDLE Course Description

Course Fee: $800.00

ONT 1.0: Optimizing Converged Cisco Networks

Target Audience: Individuals preparing for the Cisco Certified Network Professional CCNP and the Cisco Certified Design Professional CCDP certifications; senior-level network support professionals, network administrators, network engineers, network managers, systems managers, or network designers.

Module 1 - Network Requirements and Introduction to VoIP

To recognize the converged network requirements within the Cisco conceptual network models, the basic principles of VoIP networks and conversion to them, call control mechanisms, and how voice is digitized for data transport.

  • recognize the IIN and SONA framework, and the Cisco conceptual network models.
  • recognize the traffic conditions in a converged network.
  • recognize the basic principles of VoIP networks, their components, and the roles of each component.
  • determine how to migrate to a VoIP network in given scenario.
  • recognize the stages of a call and compare call control mechanisms.
  • recognize the process by which voice is digitized and packetized for transport on a data network.
  • identify compression bandwidth requirements for various codecs and data links, and recognize the purpose of a DSP.

Module 2 - Supporting VoIP

To recognize how voice is encapsulated, bandwidth requirements and overhead, and how voice is implemented in an enterprise.

  • recognize how voice is encapsulated into IP packets, the purpose of RTP, and how header overhead is reduced with cRTP.
  • recognize the impact of voice samples and packet size on bandwidth, its requirements, and the sources of overhead.
  • recognize how to calculate total bandwidth for a VoIP call and reduce bandwidth consumption.
  • recognize how VoIP is implemented in an enterprise and the models used.
  • recognize voice commands in Cisco IOS configurations and CAC functionality.
  • determine how to implement voice support in an enterprise network, given a scenario.

Module 3 - IP QoS and its Implementation

To recognize converged network issues and how QoS optimizes performance, its models and methods of implementation.

  • recognize the quality issues of converged networks.
  • recognize the function of QoS and how it is implemented on a network.
  • recognize how the three QoS models operate in a network.
  • identify bottlenecks and performance losses in the network, and recommend appropriate QoS actions to mitigate specific performance issues in a given scenario.
  • recognize the methods for configuring and monitoring QoS on a network, and how the CLI and MQC methods are implemented.
  • recognize how to implement QoS on a network using the Cisco AutoQoS and the Cisco SDM QoS wizard methods.

Module 4 - Classification and Marking

To recognize how classification and marking are used to define a QoS service class, and configure and use NBAR for Cisco MQC class-based classification and marking operations.

  • recognize the purpose of classification and marking, and how they operate in a network.
  • use classification and marking to manage network traffic in a given scenario.
  • recognize how to define and implement a QoS service class.
  • recognize the functionality of NBAR and the applications it supports, PDLMs, and NBAR Protocol Discovery.
  • recognize how to configure and monitor NBAR Protocol Discovery.
  • configure NBAR classification with MQC marking in a given scenario.

Module 5 - Queuing

To recognize how to implement the basic and advanced queuing mechanisms for relieving network traffic congestion, and how to configure queuing on a Cisco router.

  • recognize Cisco queuing operations, and the basic algorithms and configurations.
  • recognize the procedure for configuring WFQ mechanisms.
  • recognize the advanced queuing mechanisms of CBWFQ and LLQ, and the architecture, benefits, and configuration of CBWFQ.
  • recognize the architecture, benefits, and configuration of LLQ.
  • configure CBWFQ and LLQ, and apply them to a serial interface in a given scenario.
  • use queuing mechanisms to solve network congestion problems in a given scenario.

Module 6 - TCP and QoS Traffic Management and Mechanisms

To recognize how TCP and QoS support traffic management and optimization, and how their mechanisms are implemented.

  • recognize how TCP, in conjunction with RED, WRED, and CBWRED, manages the traffic flow between two hosts.
  • recognize how CBWRED is configured and monitored.
  • recognize Cisco class-based traffic-policing and class-based traffic-shaping operations and basic configuration.
  • recognize Cisco class-based header compression operations and basic configurations.
  • recognize the purpose and basic configuration of QoS preclassify for traffic going over IPsec and GRE tunnels.
  • configure QoS preclassify in a given scenario.
  • identify the elements of IP QoS SLA, the typical network requirements within each functional block in an end-to-end network, and the best-practice QoS implementations.
  • recognize QoS implementations and requirements on WAN customer edge and provider edge routers, and how the control plane and CoPP are deployed.

Module 7 - TCP and QoS Traffic Management and Mechanisms

To recognize how TCP and QoS support traffic management and optimization, and how their mechanisms are implemented.

  • recognize how TCP, in conjunction with RED, WRED, and CBWRED, manages the traffic flow between two hosts.
  • recognize how CBWRED is configured and monitored.
  • recognize Cisco class-based traffic-policing and class-based traffic-shaping operations and basic configuration.
  • recognize Cisco class-based header compression operations and basic configurations.
  • recognize the purpose and basic configuration of QoS preclassify for traffic going over IPsec and GRE tunnels.
  • configure QoS preclassify in a given scenario.
  • identify the elements of IP QoS SLA, the typical network requirements within each functional block in an end-to-end network, and the best-practice QoS implementations.
  • recognize QoS implementations and requirements on WAN customer edge and provider edge routers, and how the control plane and CoPP are deployed.

Module 8 - AutoQoS

To recognize the functionality of Cisco AutoQos, and how to configure and optimize it for an enterprise.

  • recognize how Cisco AutoQoS is used to implement QoS policy and its prerequisites.
  • recognize how to configure and verify Cisco AutoQoS on a network using the CLI.
  • configure a router and a switch for AutoQoS in a given scenario.
  • identify the QoS technologies that are automatically implemented on the network using Cisco AutoQoS and the known issues with Cisco AutoQoS.
  • determine the QoS mechanisms that Cisco AutoQoS automatically provisions using DiffServ technology in a given scenario.
  • recognize how to use show commands to isolate areas in the Cisco AutoQoS and modify the QoS configuration.

Module 8 - Wireless Implementations

To recognize how to configure wireless security and basic wireless management.

  • recognize how WLAN QoS operates and is implemented.
  • recognize why WLAN security is needed, its issues, methods, and evolution.
  • recognize how enhanced 802.11 security improves on basic 802.11 security.
  • identify the basic concepts of 802.1x authentication, LEAP, or EAP Cisco Wireless, EAP-FAST, EAP-TLS, and PEAP.
  • propose WLAN security as an enterprise network solution, given a scenario.
  • recognize the WPA authentication process.
  • recognize how to configure an advanced feature set WLAN for encryption and authentication on lightweight access points.
  • recognize the Cisco Unified Wireless Network solutions, how Cisco implements WLANs, and the features and benefits of CiscoWorks WLSE.
  • recognize the features and operations of WCS, and the architecture and functionality of the Cisco 2700 Series Wireless Location Appliance.
  • recognize basic Cisco WCS configuration and database management, and the Cisco WCS rogue access point methodology.

ISCW 1.0: Implementing Secure Converged Wide Area Networks

Target Audience: Network administrators; network engineers; network managers; systems managers; network designers who wish to validate their ability to install, configure and troubleshoot converged local and wide area networks with 100 to 500 nodes.

Prerequisites: Completion of the course Interconnecting Cisco Network Devices (ICND).

Expected Duration:
26.25 Hours

Module 1 - Network Connectivity

To recognize Cisco architectural framework models and network requirements, and how remote connections are established.

  • recognize the IIN and the SONA architectural framework.
  • recognize the Cisco network models in the Cisco Enterprise Architecture and their mapping to a traditional three-layer hierarchical network model, and remote connection requirements in a converged network.
  • recognize the typical remote connections that an enterprise network has to support, the challenges of connecting the teleworker, and the Business-Ready Teleworker solution.
  • identify basic cable technology terms, standards organizations, and RF signaling terms.
  • recognize how data services are delivered over an HFC architecture, the various cable components and their issues, and how a cable modem is provisioned to work in a SOHO of a subscriber using TCP/IP.
  • identify the features, types, and distance limitations of DSL.
  • recognize ADSL technology, how it coexists with traditional telephony service, and its encapsulation types.
  • recognize how data is transmitted over ADSL using PPPoE and PPPoA.
  • specify the Cisco Enterprise Architecture, how to provision a cable modem, and how to establish the discovery stage of a PPPoE session in a given scenario.

Module 2 - Configuring the CPE and Verifying Broadband ADSL

To configure a network of hosts over a bridging DSL CPE access device to an aggregate router and verify broadband ADSL configurations for Layer 1 and Layer 2.

  • recognize how to configure the PPPoE client and PAT.
  • recognize how to configure and verify DHCP and static default routes.
  • recognize how to verify a PPPoE configuration, and how to configure PPPoA and the DSL ATM Interface.
  • configure a Cisco ADSL router as a PPPoE client in a given scenario.
  • identify if Layer 1 is causing a failed ADSL service.
  • identify if Layer 2 is causing a failed ADSL service.

Module 3 - Frame Mode MPLS Implementation

To recognize the MPLS architecture and functionality, configure frame mode MPLS on IOS routers, and distinguish between MPLS VPN and traditional VPN operation.

  • recognize the elements of the MPLS conceptual model and the router switch mechanisms.
  • recognize the main components of the MPLS architecture, the structure and format of an MPLS label, and the function of LSRs.
  • recognize how labels are allocated, distributed, and advertised in a frame mode MPLS network.
  • recognize how routers populate the LFIB database, how IP packets cross an MPLS network, and how PHP enhances MPLS performance.
  • recognize how to configure frame mode MPLS on a Cisco IOS router.
  • configure frame mode MPLS on IOS routers to link a network into the ISP's network, given a scenario.
  • recognize MPLS VPN architecture and how it improves on traditional methods of overlay and peer-to-peer VPN.
  • recognize how routing information is propagated across the P-network.
  • recognize the end-to-end flow of routing updates in an MPLS VPN.

Module 4 - IPSec VPNs

To recognize how IPSec VPNs operate and configure a site-to-site IPsec VPN.

  • recognize the basic functions and advantages of the IPSec protocol and the IKE protocols.
  • recognize the functionality available within IKE.
  • recognize the functions of the ESP and AH IPsec protocols, and message authentication and integrity check using hash.
  • recognize the operation of asymmetric and encryption algorithms.
  • recognize the elements and operation of the PKI environment.
  • recognize how a site-to-site IPSec VPN operates.
  • recognize how to configure a site-to-site IPSec VPN.
  • configure a site-to-site IPSec VPN with preshared keys authentication, using CLI in a given scenario.

Module 5 - IPSec VPN Configuration

To implement IPSec site-to-site VPNs using SDM and GRE tunnels, and provide high-availability VPNs using backup interfaces.

  • recognize how to navigate the site-to-site VPN wizard interface, the components configured by the SDM site-to-site VPN wizard, how to launch the wizard, and how to set the parameters of the site-to-site VPN tunnel.
  • recognize how to define the traffic that the VPN protects and how to complete the configuration by viewing the settings in the Summary window.
  • recognize the characteristics of GRE, the purpose of secure GRE tunnels and how to configure them, how to set the parameters of the site-to-site VPN tunnel, and how to configure IKE using SDM.
  • recognize how to configure the IPSec transform set using the SDM wizard, how to configure routing, and how to view the settings in the Summary window.
  • recognize how high availability for IPSec VPNs is achieved and the use of IPSec backup peers.
  • recognize HSRP operation, IPSec stateful failover functionality, and how to back up a WAN connection using an IPSec VPN.
  • remove an IPSec VPN after a successful back up of a WAN connection in a given scenario.

Module 6 - Configuring Cisco Easy VPN

To recognize the components and operation of Cisco Easy VPN, and configure Easy VPN Server and the VPN client for Easy VPN Remote access.

  • recognize the components, operation, and benefits of Cisco Easy VPN, and the functionality of Easy VPN Server and Easy VPN Remote.
  • recognize how to configure Easy VPN Server and IKE, and the storage locations for Easy VPN group policies.
  • recognize where to store user records for Xauth, how to configure local group policies, and how to view configuration settings in the Summary window.
  • configure a Cisco router to use Easy VPN Server in a given scenario.
  • recognize how to install the VPN client and create a new client connection entry when configuring the VPN client.
  • recognize how to configure mutual group authentication, transparent tunneling, and backup servers when configuring the VPN client.

Module 7 - Mitigating Network Attacks and Disabling Unused Services

To recognize the Cisco Self-Defending Network strategy, secure enterprise networks from various attacks, and disable unnecessary network services.

  • recognize the Cisco self-defense network strategy and the types of attacks that enterprise networks must defend against.
  • recognize reconnaissance attacks and how to mitigate them.
  • recognize access attacks and how to mitigate them.
  • recognize DoS attacks and how to mitigate them.
  • recognize malicious software and application layer attacks, and how to mitigate them.
  • recognize vulnerabilities in configuration management protocols and how to mitigate them, and how to use open source tools to discover network vulnerabilities and threats.
  • recognize router services and interfaces that are vulnerable to attack and how to secure routers with AutoSecure.
  • recognize how to configure AutoSecure on a Cisco router.
  • recognize how to lock down routers with SDM.
  • recognize how to secure Cisco router administrative access by using the SDM Security Audit wizard in a given scenario.

Module 8 - Securing Routers, Administrative Access, and Access Lists

To secure Cisco routers by protecting the router administrative interface using password features and role-based CLI, and recognize how to mitigate network threats and attacks by using ACLs to filter traffic.

  • recognize how to secure administrative access to Cisco routers by configuring passwords.
  • recognize how to secure administrative access to Cisco routers by setting login failure rates, timeouts, multiple privilege levels, and banner messages.
  • recognize the function of role-based CLI, how to configure it, and how to secure configuration files.
  • configure a Role-Based CLI view in a given scenario.
  • recognize ACL types, formats, and development guidelines, and how to apply ACLs to router interfaces.
  • recognize the use of traffic filtering with ACLs to mitigate network threats and how to implement ACLs.
  • recognize how to configure router ACLs to mitigate distributed DoS attacks, how to combine ACL functions, and caveats when building ACLs.

Module 9 - IOS Firewalls and IOS IPS

To secure enterprise networks by implementing Cisco IOS Firewalls and Cisco IOS IPS using CLI and SDM.

  • recognize the basic structure of a layered defense, and the strengths and weaknesses of the three firewall technologies.
  • recognize the operation of a stateful firewall and the key features of the Cisco IOS Firewall Feature Set.
  • recognize the functions and process of the Cisco IOS Firewall.
  • recognize how to configure Cisco IOS Firewall from the CLI.
  • distinguish between the Basic and Advanced Firewall Configuration wizards, and recognize how to configure a basic firewall using its wizard.
  • recognize how to configure an advanced firewall using the Advanced Firewall Configuration wizard.
  • configure a Cisco IOS Firewall in a given scenario.
  • distinguish between the functions and operations of IDS and IPS systems.
  • recognize the types of IDS and IPS signatures.
  • recognize how to configure IPS on Cisco IOS routers and SDF locations.
  • recognize how to view IPS policies, customize IPS policies and global settings, view SDEE messages, and tune IPS signatures using SDM.

Module 10 - Securing Management Features and AAA

To recognize the features of secure management and reporting, and securely implement them, and configure and troubleshoot AAA on a Cisco systems router.

  • recognize the considerations when planning the secure management and reporting of network devices and the factors that affect their architecture.
  • recognize how to configure an SSH server, the function of syslog, and how to configure it on Cisco routers.
  • recognize the security features of SNMPv3 and how to configure SNMPv3 on a Cisco IOS router.
  • recognize how to configure an NTP client and a Cisco router as an NTP server.
  • secure Cisco router administrative access and configure authenticated NTP communications in a given scenario.
  • recognize the concepts and implementation of AAA services, and its protocols, RADIUS and TACACS+.
  • recognize how to configure the AAA server.
  • recognize how to troubleshoot AAA on a Cisco perimeter router.
  • configure AAA login authentication in a given scenario.
Facebook Link AscoltaBlogs.com link Twitter Link Linkedin

Home | Class Schedule | Channel Partners | Certifications | Services | Locations | About Ascolta
Classroom Rentals | Shopping Cart Trouble? | Contact Us | Privacy Policy | Sitemap
Ascolta © 1998 - 2010 • All Rights Reserved • tel: 949-477-2000 ext. 1