Cisco VPN 2.0: Cisco ASA Site-to-Site IPsec VPN Solutions

This course is included in our On-demand training solution.

Overview

The Cisco ASA adaptive security appliance supports site-to-site IP Security (IPsec) VPN deployments, which can be used to protect traffic between remote and central sites. Basic deployments of site-to-site IPsec VPNs use pre-shared keys (PSKs) for authentication, which is recommended for smaller deployments. This course demonstrates how to configure, verify, and troubleshoot basic site-to-site IPsec VPNs.
The Cisco ASA adaptive security appliance supports certificate-based authentication in site-to-site VPNs, together with rich public key infrastructure (PKI) integration options. You can use certificates to provide secure and scalable authentication among multiple sites in large site-to-site IPsec VPNs. How to enroll the Cisco ASA security appliance into a PKI and how to enable certificate-based authentication for site-to-site IPsec VPNs is also covered in the course.

Target Audience

Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security designation. Cisco Network Security Engineers responsible for the selection, configuration, and the troubleshooting of the majority of Cisco ASA adaptive security appliance perimeter security features to reduce risk to IT infrastructure and its applications within their networking environments. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure, as well as working knowledge of the Microsoft Windows operating system. Candidates who have completed the Cisco Certified Network Associate (CCNA), the Cisco Certified Network Associate Security (CCNA Security), the Securing Networks with Cisco Routers and Switches (SECURE) v1.0, and the Deploying Cisco ASA Firewall Solutions (FIREWALL 2.0) Certifications.

Prerequisites

Expected Duration

60 min.

Course Objectives

Basic Site-to-Site IPsec VPN

  • identify the guidelines for configuring a Cisco ASA security appliance site-to-site VPN
  • Configuring Basic Peer Authentication

  • identify the steps to configure basic peer authentication in a Cisco ASA security appliance site-to-site VPN
  • Configuring Transmission Protection

  • identify the steps to configure transmission protection in a Cisco ASA security appliance site-to-site VPN
  • Configuring Site-to-Site IPsec VPNs

    Troubleshooting a Cisco ASA Site-to-Site VPN

  • troubleshoot the operation of a Cisco ASA security appliance site-to-site VPN
  • Configuring PKI-Based Peer Authentication

  • identify the steps to configure PKI-based peer authentication for a site-to-site VPN
  • COURSE COST



     

    NEED HELP OR NOT SURE?