Cisco SECURE 1.0: Deploying Tunnel-Based IPSec VPNs and GET VPNs

This course is included in our On-demand training solution.

Overview

Building a highly available virtual private network (VPN) network involves protecting it against expected failures, and enabling the VPN network to heal itself in a reasonable amount of time. Organizations have different uptime requirements for their networks. Frequently, when migrating from a traditional circuit-based WAN network, which had high availability mechanisms in place (backup dial interfaces, backup routers), the need to provide the same or better functionality in a VPN is paramount. Fully meshed virtual private networks (VPNs) present a scalability and manageability challenge and have traditionally been avoided by many sites. The Cisco Group Encrypted Transport (GET) VPN technology provides solutions to these challenges and allows organizations to easily deploy complex, redundant fully meshed networks. This course enables you to choose recommended high availability architectures, and to configure a highly available tunnel-based IP Security (IPSec) VPN and shows you how to configure and troubleshoot a Cisco IOS Software GET VPN.

Target Audience

Network professionals responsible for securing and managing their network infrastructures who have CCNA certification, CCNA Security certification (IINS) and a working knowledge of Microsoft Windows operating systems.

Prerequisites

Expected Duration

150 min.

Course Objectives

VPN Failure Modes

  • describes how to plan the deployment of Cisco IOS site-to-site IPSec VPN high-availability features
  • Using Routing Protocol-Based Failover

  • describe how to use routing protocols for VPN failover
  • Managing Failures in VTI-Based VPNs and DMVPN

  • determine the optimal method of mitigating failures in a VTI-based VPN
  • determine the optimal method of mitigating failures in a DMVPN
  • Overview of GET VPN Architecture

  • describe the operation of a Cisco IOS GET VPN
  • GET VPN Configuration Procedures

  • describe how to plan the deployment of Cisco IOS GET VPN
  • GET VPN Deployment Tasks

  • configure a Cisco IOS GET VPN key server
  • Configure a GET VPN Key Server

    Verifying GET VPN Deployment

  • verify a Cisco IOS GET VPN key server
  • identify implementation guidelines for a Cisco IOS GET VPN key server
  • GET VPN Member Configuration

  • configure a Cisco IOS GET VPN group member
  • recognize how to troubleshoot a Cisco IOS GET VPN group member
  • Configure a GET VPN Group Member

    Deploying GET VPN High Availability

  • identify key features of GET VPN Key Server Clustering
  • sequence the steps to configure high availability mechanisms in a GET VPN
  • troubleshoot a GET VPN key server redundancy
  • SUBSCRIPTION COST



     

    NEED HELP OR NOT SURE?