CCNA Security Official Exam Certification Guide (Exam 640-553)

This document was uploaded by one of our users. The uploader already confirmed that they had the permission to publish it. If you are author/publisher or own the copyright of this documents, please report to us by using this DMCA report form.

Simply click on the Download Book button.

Yes, Book downloads on Ebookily are 100% Free.

Sometimes the book is free on Amazon As well, so go ahead and hit "Search on Amazon"

CCNA Security

Official Exam Certification Guide

 

  • Master the IINS 640-553 exam with this official study guide
  • Assess your knowledge with chapter-opening quizzes
  • Review key concepts with Exam Preparation Tasks
  • Practice with realistic exam questions on the CD-ROM

 

CCNA Security Official Exam Certification Guide is a best of breed Cisco® exam study guide that focuses specifically on the objectives for the CCNA® Security IINS exam. Senior security instructors Michael Watkins and Kevin Wallace share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics.

 

CCNA Security Official Exam Certification Guide presents you with an organized test preparation routine through the use of proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and allow you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks sections help drill you on key concepts you must know thoroughly.

 

The companion CD-ROM contains a powerful testing engine that allows you to focus on individual topic areas or take complete, timed exams. The assessment engine also tracks your performance and provides feedback on a topic-by-topic basis, presenting question-by-question remediation to the text and laying out a complete study plan for review.

Well-regarded for its level of detail, assessment features, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time.

 

CCNA Security Official Exam Certification Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.

 

Michael Watkins, CCNA/CCNP®/CCVP®/CCSP®, is a full-time senior technical instructor with SkillSoft Corporation. With 13 years of network management, training, and consulting experience, Michael has worked with organizations such as Kraft Foods, Johnson and Johnson, Raytheon, and the United States Air Force to help them implement and learn the latest network technologies.

 

Kevin Wallace, CCIE® No. 7945, is a certified Cisco instructor working full time for SkillSoft, where he teaches courses in the Cisco CCSP, CCVP, and CCNP tracks. With 19 years of Cisco networking experience, Kevin has been a network design specialist for the Walt Disney World Resort and a network manager for Eastern Kentucky University. Kevin also is a CCVP, CCSP, CCNP, and CCDP with multiple Cisco security and IP communications specializations.

 

The official study guide helps you master all the topics on the IINS exam, including

  • Network security threats
  • Security policies
  • Network perimeter defense
  • AAA configuration
  • Router security
  • Switch security
  • Endpoint security
  • SAN security
  • VoIP security
  • IOS firewalls
  • Cisco IOS® IPS
  • Cryptography
  • Digital signatures
  • PKI and asymmetric encryption
  • IPsec VPNs

 

This volume is part of the Exam Certification Guide Series from Cisco Press®. Books in this series provide officially developed exam preparation materials that offer assessment, review, and practice to help Cisco Career Certification candidates identify weaknesses, concentrate their study efforts, and enhance their confidence as exam day nears.

 

Category: Cisco Press—Cisco Certification

Covers: IINS exam 640-553

Author(s): Michael Watkins, Kevin Wallace
Edition: 1 Har/Cdr
Publisher: cisco-press
Year: 2008

Language: English
Pages: 776

CCNA Security Official Exam Certification Guide......Page 1
Contents......Page 9
Foreword......Page 25
Introduction......Page 26
Part I: Network Security Concepts......Page 38
"Do I Know This Already?” Quiz......Page 40
Exploring Security Fundamentals......Page 44
Understanding the Methods of Network Attacks......Page 55
Review All the Key Topics......Page 76
Definition of Key Terms......Page 77
“Do I Know This Already?” Quiz......Page 80
Increasing Operations Security......Page 84
Constructing a Comprehensive Network Security Policy......Page 92
Creating a Cisco Self-Defending Network......Page 101
Review All the Key Topics......Page 109
Definition of Key Terms......Page 110
“Do I Know This Already?” Quiz......Page 112
ISR Overview and Providing Secure Administrative Access......Page 116
Cisco Security Device Manager Overview......Page 134
Definition of Key Terms......Page 141
Command Reference to Check Your Memory......Page 142
“Do I Know This Already?” Quiz......Page 146
Configuring AAA Using the Local User Database......Page 150
Configuring AAA Using Cisco Secure ACS......Page 163
Review All the Key Topics......Page 184
Command Reference to Check Your Memory......Page 185
“Do I Know This Already?” Quiz......Page 190
Locking Down the Router......Page 193
Using Secure Management and Reporting......Page 206
Complete the Tables and Lists from Memory......Page 236
Command Reference to Check Your Memory......Page 237
Part II: Constructing a Secure Infrastructure......Page 240
“Do I Know This Already?” Quiz......Page 242
Defending Against Layer 2 Attacks......Page 246
Cisco Identity-Based Networking Services......Page 267
Complete the Tables and Lists from Memory......Page 281
Command Reference to Check Your Memory......Page 282
“Do I Know This Already?” Quiz......Page 286
Examining Endpoint Security......Page 289
Securing Endpoints with Cisco Technologies......Page 300
Review All the Key Topics......Page 311
Definition of Key Terms......Page 312
“Do I Know This Already?” Quiz......Page 314
Overview of SAN Operations......Page 317
Implementing SAN Security Techniques......Page 322
Definition of Key Terms......Page 330
“Do I Know This Already?” Quiz......Page 332
Defining Voice Fundamentals......Page 336
Identifying Common Voice Vulnerabilities......Page 342
Securing a VoIP Network......Page 345
Definition of Key Terms......Page 352
“Do I Know This Already?” Quiz......Page 354
Exploring Firewall Technology......Page 358
Using ACLs to Construct Static Packet Filters......Page 382
Implementing a Cisco IOS Zone-Based Firewall......Page 399
Review All the Key Topics......Page 415
Definition of Key Terms......Page 416
Command Reference to Check Your Memory......Page 417
“Do I Know This Already?” Quiz......Page 420
Examining IPS Technologies......Page 423
Using SDM to Configure Cisco IOS IPS......Page 436
Definition of Key Terms......Page 460
Part III: Extending Security and Availability with Cryptography and VPNs......Page 462
“Do I Know This Already?” Quiz......Page 464
Introducing Cryptographic Services......Page 468
Exploring Symmetric Encryption......Page 480
Understanding Security Algorithms......Page 488
Review All the Key Topics......Page 495
Definition of Key Terms......Page 496
“Do I Know This Already?” Quiz......Page 498
Examining Hash Algorithms......Page 501
Using Digital Signatures......Page 513
Review All the Key Topics......Page 523
Definition of Key Terms......Page 524
“Do I Know This Already?” Quiz......Page 526
Understanding Asymmetric Algorithms......Page 529
Working with a PKI......Page 535
Complete the Tables and Lists from Memory......Page 554
Definition of Key Terms......Page 555
“Do I Know This Already?” Quiz......Page 558
Exploring the Basics of IPsec......Page 562
Constructing an IPsec Site-to-Site VPN......Page 577
Using Cisco SDM to Configure IPsec on a Site-to-Site VPN......Page 583
Complete the Tables and Lists from Memory......Page 606
Command Reference to Check Your Memory......Page 607
Part IV: Final Preparation......Page 610
Exam Engine and Questions on the CD......Page 612
Study Plan......Page 614
Part V: Appendixes......Page 618
Appendix A: Answers to “Do I Know This Already?” Questions......Page 620
A......Page 630
C......Page 632
D......Page 634
E......Page 636
F......Page 637
H......Page 638
I......Page 639
M......Page 640
N......Page 641
P......Page 642
R......Page 644
S......Page 645
T......Page 648
V......Page 649
Z......Page 650
Appendix C: CCNA Security Exam Updates: Version 1.0......Page 652
Appendix D: Memory Tables......Page 655
Appendix E: Memory Tables Answer Key......Page 707
A......Page 759
C......Page 761
D......Page 764
E......Page 765
H......Page 766
I......Page 767
J-K......Page 768
M......Page 769
P......Page 770
R......Page 771
S......Page 772
T......Page 774
V......Page 775
X-Y-Z......Page 776