© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Cisco Secure Virtual Private Networks 4.0
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Lesson 1 Course Introduction
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Course Objectives Upon completion of this course, you will be able to perform the following tasks: Describe the features, functions, and benefits of Cisco VPN products. Explain the IPSec and IKE component technologies that are implemented in Cisco VPN products. Install and configure the Cisco VPN Software Client. Configure the Cisco VPN 3000 Series Concentrators for remote access using digital certificates. Configure the Cisco VPN Client for auto-initiation. Configure the Cisco VPN 3000 Series Concentrator firewall feature. Configure the Cisco VPN 3002 Hardware Client for remote access using pre-shared keys.
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Course Objectives (cont.) Configure the Cisco VPN Client for software auto-update. Configure the Cisco VPN 3002 Hardware Client for interactive unit and individual user authentication. Configure the Cisco VPN Client for a backup server and load balancing. Configure the Cisco VPN 3000 Series Concentrator for IPSec over TCP or IPSec over UDP. Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with pre-shared keys. Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with NAT. Configure the Cisco VPN 3000 Series Concentrator for LAN-to-LAN with digital certificates.
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Course Agenda Day 1 Lesson 1Course Introduction Lesson 2Security Fundamentals Lesson 3Overview of Virtual Private Networks and IPSec Technologies Lunch Lesson 4Cisco Virtual Private Network 3000 Concentrator Series Hardware Overview Lesson 5Configure the Cisco VPN 3000 Series Concentrator for Remote Access Using Pre-shared Keys Day 2 Lesson 6Configure the Cisco VPN 3000 Series Concentrator for Remote Access Using Digital Certificates Lesson 7Configure the Cisco Virtual Private Network Firewall Feature for the IPSec Software Client
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Course Agenda (cont.) Lunch Lesson 8Configure the Cisco Virtual Private Network Client Auto-Initiation Feature Lesson 9Monitor and Administer the Cisco VPN 3000 Series Concentrator Remote Access Networks Day 3 Lesson 10Configure the Cisco VPN 3002 Hardware Client for Remote Access Using Pre-Shared Keys Lesson 11Configure the Cisco VPN 3002 Hardware Client for Unit and User Authentication Lunch Lesson 12Configure the Cisco Virtual Private Network 3002 Hardware Client for a Backup Server, and Load Balancing Lesson 13Configure the Cisco Virtual Private Network Client for Software Auto-Update
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Course Agenda (cont.) Day 4 Lesson 14Configuring the Cisco Virtual Private Network 3000 Series Concentrator for IPSec over UDP and IPSec over TCP Lesson 15Cisco Virtual Private Network 3000 Series Concentrator LAN-to-LAN with Pre-Shared Keys Lunch Lesson 16Cisco Virtual Private Network 3000 Series Concentrator LAN-to-LAN with NAT Lesson 17Configure the Cisco Virtual Private Network 3000 Series Concentrator LAN-to-LAN Using Digital Certificates
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Participant Responsibilities Student responsibilities Complete prerequisites Participate in lab exercises Ask questions Provide feedback
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN General Administration Class-related Sign-in sheet Length and times Break and lunch room locations Attire Facilities-related Participant materials Site emergency procedures Restrooms Telephones/faxes
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Graphic Symbols IOS Router PIX Firewall VPN 3000IDS SensorCatalyst 6500 with IDS Module IOS Firewall Network Access Server Policy Manager CA Server PCLaptopServer Web, FTP, etc. Modem Ethernet link VPN tunnel Hub Network cloud
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Participant Introductions Your name Your company Pre-requisites skills Brief history Objective
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Cisco Security Career Certifications Expand Your Professional Options and Advance Your Career Cisco Certified Security Professional (CCSP) Certification Expert Professional CCIE CCSP CCNA Associate Professional-level recognition in designing and implementing Cisco security solutions Recommended Training through Cisco Learning Partners Required Exam Cisco SAFE Implementation Network Security Securing Cisco IOS Networks Cisco Secure Virtual Private Networks Cisco Secure Intrusion Detection System Cisco Secure PIX Firewall Advanced
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Cisco Security Career Certifications Enhance Your Cisco Certifications and Validate Your Areas of Expertise Cisco Firewall, VPN, and IDS Specialists Recommended Training through Cisco Learning Partners Required Exam Securing Cisco IOS Networks Cisco Secure PIX Firewall Advanced Recommended Training through Cisco Learning Partners Required Exam Securing Cisco IOS Networks Cisco Secure Virtual Private Networks Recommended Training through Cisco Learning Partners Required Exam Securing Cisco IOS Networks Cisco Secure Intrusion Detection System Cisco Firewall Specialist Cisco VPN Specialist Cisco IDS Specialist Pre-requisite: Valid CCNA certification
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Lab Topology Overview
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN CSVPN Software Client-to-LAN Lab Visual Objective.100 CA server P.0 Student PC VPN Client P 10.0.P.0 RTS Concentrator Web and FTP server
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN CSVPN 3002 Hardware Client-to-LAN Lab Visual Objective P.0 Student PC PP P.0 RTS Concentrator Web and FTP server.10.1PP PP.0 Hardware Client
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Q P.0 CSVPN LAN-to-LAN Lab Visual Objective Student PC.5 Student PC P Q P Q.0 RTS.100 RTS.100 Pods 1–5 Pods 6–10.10 Web and FTP server RBB Concentrator Web and FTP server CA Server