CCNA安全10月之后考试大纲！

wl35232988

" p0 p0 v5 }: z8 I$ L  u1 z; }
1 s8 U  q9 c5 J8 U640-554 IINS Exam TopicsExam Description

The 640-554 Implementing Cisco IOS Network Security (IINS) exam is associated with the CCNA Security certification. This exam tests a candidate's knowledge of securing Cisco routers and switches and their associated networks. It leads to validated skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices and develops competency in the technologies that Cisco uses in its security infrastructure.

Candidates can prepare for this exam by taking the Implementing Cisco IOS Network Security (IINS) course.

Exam Topics

The following topics are general guidelines for the content likely to be included on the Implementing Cisco IOS Network Security (IINS) exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

/ ]% A. R' V  W$ E2 m) r3 CCommon Security Threats

• Describe common security threats
  
  0 {8 Y$ u3 f" e4 Z2 h- H

$ {  W+ D( h, [# {# |; FSecurity and Cisco Routers

• Implement security on Cisco routers
• Describe securing the control, data, and management plane
• Describe Cisco Security Manager
• Describe IPv4 to IPv6 transition
  
  

AAA on Cisco Devices

• Implement AAA (authentication, authorization, and accounting)
• Describe TACACS+
• Describe RADIUS
• Describe AAA
• Verify AAA functionality
  
  8 }5 H% I( d, X/ a! @

7 h/ h$ K$ J  Y1 nIOS ACLs

• Describe standard, extended, and named IP IOS access control lists (ACLs) to filter packets
• Describe considerations when building ACLs
• Implement IP ACLs to mitigate threats in a network
  
  2 w6 E' E/ ?" G

Secure Network Management and Reporting

• Describe secure network management
• Implement secure network management
  
  8 l" V4 f) {4 v5 R  B6 S4 ]4 O

4 @. {$ }" H, |( ]# b! Z' ]Common Layer 2 Attacks

• Describe Layer 2 security using Cisco switches
• Describe VLAN security
• Implement VLANs and trunking
• Implement spanning tree
  
  

Cisco Firewall Technologies

• Describe operational strengths and weaknesses of the different firewall technologies
• Describe stateful firewalls
• Describe the types of NAT used in firewall technologies
• Implement zone-based policy firewall using CCP
• Implement the Cisco Adaptive Security Appliance (ASA)
• Implement Network Address Translation (NAT) and Port Address Translation (PAT)
  
  , v" j  a6 [5 ?' `: J2 ?) m% F

3 W. ^1 N% ?- u2 P9 M- K2 nCisco IPS

• Describe Cisco Intrusion Prevention System (IPS) deployment considerations
• Describe IPS technologies
• Configure Cisco IOS IPS using CCP
  
  , I1 U1 D" y" X

+ E# K, I# T: s4 uVPN Technologies

• Describe the different methods used in cryptography
• Describe VPN technologies
• Describe the building blocks of IPSec
• Implement an IOS IPSec site-to-site VPN with pre-shared key authentication
• Verify VPN operations
• Implement Secure Sockets Layer (SSL) VPN using ASA device manager
  
  5 s( @- w+ {: T  s" z- H

bluenets

夜之子、

夕夏o

huangtidi

JChou

{:soso__8093492230196664026_3:}

杰子

kentplay

25452816

leo_88

谢谢分享

tznhkyahoo

simon8950

master925

happies

要是有新版的视频教程和题库就好了！希望论坛尽快发布！

我是新手

正好想看看安全