雏鹰部落

 找回密码
 立即注册

QQ登录

只需一步,快速开始

搜索
查看: 2523|回复: 0

[讨论/求助] 2009年思科CCNP—ISCW考纲

[复制链接]
发表于 2009-9-29 14:29:37 | 显示全部楼层 |阅读模式
642-825 ISCW Exam Topics (Blueprint)Exam DescriptionThe Implementing Secure Converged Wide Area Networks (ISCW 642-825) is a qualifying exam for the Cisco Certified Network Professional CCNP®. The ISCW 642-825 exam will certify that the successful candidate has important knowledge and skills necessary to secure and expand the reach of an enterprise network to teleworkers and remote sites with focus on securing remote access and VPN client configuration. The exam covers topics on Cisco hierarchical network model as it pertains to the WAN, teleworker configuration and access, frame mode MPLS, site-to-site IPSEC VPN, Cisco EZVPN, strategies used to mitigate network attacks, Cisco device hardening and IOS firewall features.

Exam TopicsThe following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Implement basic teleworker services
    Describe Cable (HFC) technologies.
    Describe xDSL technologies.
    Configure ADSL (i.e., PPPoE or PPPoA).
  • Verify basic teleworker configurations.

Implement Frame-Mode MPLS
    Describe the components and operation of Frame-Mode MPLS (e.g., packet-based MPLS VPNs).
  • Configure and verify Frame-Mode MPLS.

Implement a site-to-site IPSec VPN
    Describe the components and operations of IPSec VPNs and GRE Tunnels.
    Configure a site-to-site IPSec VPN/GRE Tunnel with SDM (i.e., preshared key).
    Verify IPSec/GRE Tunnel configurations (i.e., IOS CLI configurations).
    Describe, configure, and verify VPN backup interfaces.
  • Describe and configure Cisco Easy VPN solutions using SDM.

Describe network security strategies
    Describe and mitigate common network attacks (i.e., Reconnaissance, Access, and Denial of Service).
    Describe and mitigate Worm, Virus, and Trojan Horse attacks.
  • Describe and mitigate application-layer attacks (e.g., management protocols).

Implement Cisco Device Hardening
    Describe, Configure, and verify AutoSecure/One-Step Lockdown implementations (i.e., CLI and SDM).
    Describe, configure, and verify AAA for Cisco Routers.
    Describe and configure threat and attack mitigation using ACLs.
  • Describe and configure IOS secure management features (e.g., SSH, SNMP, SYSLOG, NTP, Role-Based CLI, etc.)

Implement Cisco IOS firewall
    Describe the functions and operations of Cisco IOS Firewall (e.g., Stateful Firewall, CBAC, etc.).
    Configure Cisco IOS Firewall with SDM.
  • Verify Cisco IOS Firewall configurations (i.e., IOS CLI configurations, SDM Monitor).

Describe and configure Cisco IOS IPS
    Describe the functions and operations of IDS and IPS systems (e.g., IDS/IPS signatures, IPS Alarms, etc.)
  • Configure Cisco IOS IPS using SDM
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

QQ|熊猫同学技术论坛|小黑屋| 网络工程师论坛 ( 沪ICP备09076391 )

GMT+8, 2024-3-29 18:07 , Processed in 0.074299 second(s), 18 queries , Gzip On.

快速回复 返回顶部 返回列表