SIMOS 1.0: Deploying Secure Site-to-Site Connectivity Solutions (Part 1)

Network security engineers and learners preparing for Cisco CCNP Security certification

Prerequisite
None

Expected Duration
105 minutes

Description
Point-to-point is the simplest VPN topology and it constitutes two networks communicating over an encrypted connection. In this course, you’ll learn about the steps to configure point-to-point VPNs on Cisco ASA hardware. This course is one of a series in the Skillsoft learning path that prepares the learner for Cisco certification exam 300-209 SIMOS. This exam counts toward CCNP Security certification.

Objective

Secure Site-to-Site Connectivity

  • start the course
  • describe hub and spoke and full mesh site-to-site VPN topologies and hybrids
  • list services for site-to-site VPNs
  • describe VPNs using encapsulating security payload and internet key exchange
  • describe the internet key exchange process and the differences between IKE v1 and IKE v2
  • describe the encapsulating security payload protocol used in IPSec VPNs
  • describe virtual tunnel interface to configure IPSec-based VPNs between sites
  • describe dynamic multipoint VPNs to route IPSec traffic
  • describe how FlexVPN can reduce complexity when deploying VPNs over different transport networks
  • Deploying Point-to-Point IPSec VPNs

  • describe requirements for configuring point-to-point IPSec VPNs on the Cisco Adaptive Security Appliance
  • describe the configuration process for configuring point-to-point IPSec VPN tunnels on the Cisco Adaptive Security Appliance
  • enable IKE on a Cisco Adaptive Security Appliance interface
  • start the configuration wizard for configuring point-to-point tunnels on Cisco Adaptive Security Appliance
  • configure IKE policy for point-to-point tunnels on Cisco Adaptive Security Appliance
  • configure tunnel groups for point-to-point tunnels on Cisco Adaptive Security Appliance
  • configure crypto maps and transport mode for point-to-point tunnels on Cisco Adaptive Security Appliance
  • configure NAT traversal and IKE negotiation mode for point-to-point tunnels on Cisco Adaptive Security Appliance
  • configure point-to-point tunnels on Cisco Adaptive Security Appliance using connection profiles
  • verify point-to-point tunnels on Cisco Adaptive Security Appliance using connection profiles
  • troubleshoot point-to-point tunnels on Cisco Adaptive Security Appliance using connection profiles
  • Practice: Configuring a VPN

  • configure a point-to-point VPN on Cisco Adaptive Security Appliance
  • MONTHLY SUBSCRIPTION

    $129/month
     

    ANNUAL SUBSCRIPTION

    $1295/year

    Multi-license discounts available for Annual and Monthly subscriptions.