3 arrows

Get 50% Off ForgeRock Training Bundles


Building Enhanced Cisco Security Networks

  • Tuition USD $3,750 GSA  $3,211.59
  • Reviews star_rate star_rate star_rate star_rate star_half 3118 Ratings
  • Course Code BECSN-v2-0
  • Duration 5 days
  • Available Formats Classroom

Studies have shown that over recent years there have been increases in the number of network attacks and the number of simplified tools available to carry out such attacks. Although the number of attacks has increased, the skill required to launch network attacks has decreased. For this reason, the need to secure corporate networks has grown exponentially. Building Enhanced Cisco Security Networks Version 2.0 focuses on securing access to the enterprise network and on securing the data that flows through it. Students who attend the course will configure Layer 2 network security; Layer 3 network security; IP Security (IPsec) VPNs for Cisco® IOS® Software routers; Cisco Secure PIX®; Cisco ASA 5500 Series Adaptive Security Appliances (ASAs); Cisco Catalyst® 6500 Series Firewall Services Modules (FWSMs); Cisco Network Admission Control (NAC); IPsec VPNs using Cisco firewalls and Cisco VPN concentrators; Secure Sockets Layer (SSL) VPNs on Cisco ASAs using the Cisco Adaptive Security Device Manager (ASDM); Cisco intrusion prevention system (IPS) network devices; and Cisco Security Monitoring, Analysis, and Response System (MARS).

Skills Gained

  • Describe common network security threats to a given enterprise network at Layer 2, Layer 3, and Layer 7
  • Identify components of and configure Cisco Catalyst Integrated Security Features (CISF) throughout the Layer 2 infrastructure
  • Describe and deploy Layer 3 network security methods
  • Deploy NAC using the Cisco Clean Access platform
  • Configure IPsec to secure communications on a network infrastructure that also utilizes Network Address Translation (NAT)
  • Deploy Dynamic Multipoint VPN (DMVPN) using routing protocol methods and Next Hop Resolution Protocol (NHR)P to provide a dynamic encryption framework
  • Deploy SSL VPNs using the Cisco ASA 5520 Adaptive Security Appliance
  • Use the Cisco firewall platforms to secure enterprise network segments and provide VPN network termination
  • Deploy Cisco IPS network platforms in the given network environment and make sure the device is deployed using Cisco best practices
  • Deploy Cisco Security MARS for the given enterprise network and tie in Cisco routers, switches, firewalls, and IPS network platforms for monitoring and correlation

Who Can Benefit

This course is for technical professionals who:

  • Troubleshoot core network security components and platforms
  • Maintain coexistence between Cisco security technologies
  • Deploy end-to-end network security for the corporate infrastructure


Knowledge about the following is prerequisite for this course:

  • Basic routing and switching principles
  • Network security best practices
  • Cisco firewall products
  • IPsec technology and practice

Course Details

Chapter 1: Course Overview

Chapter 2: Network Security Overview

Chapter 3: Layer 2 Network Security

Chapter 4: Layer 3 Network Security

Chapter 5: Cisco Firewalls for Enterprise Networks

Chapter 6: NAC for Enterprise Networks

Chapter 7: IPsec and NAT Coexistence for IOS Routers and Cisco Firewalls

Chapter 8 (Review): DMVPN

Chapter 9: Deploying SSL VPNs Using ASDM with the Cisco ASA

Chapter 10: Managing Network Threats with Cisco IPS and Cisco Security MARS

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

It was quick and easy to sign up and attend the class. Instructions were easy to follow. I appreciate the reminder emails of class date/time.

TX3181/3191 Courses. Really good course, highly recommended for TWS/D users.

Good training material and good instruction. More time needs to be provided for the lab work.

Good course, and the instruction was also good. The pace could have been a bit quicker, but overall a good course.

Class was very informative and Craig presented the material in an effective way.

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward