Cisco CCNA Security: Implementing Cisco Network Security (IINS 210-260) Boot Camp - 5 Days -

Cisco CCNA Security: Implementing Cisco Network Security (IINS 210-260) Boot Camp - 5 Days

Regular price $1,995.00 Sale


Course Specifications

Course Number:


Course Length:

5 days

Course Description

Course Objectives:

In this course, you will secure your network infrastructure by implementing Cisco network security features at the management plane, control plane, and data plane.

You will:

  • Describe the fundamentals of networking security.
  • Describe network infrastructure security concepts.
  • Implement management plane security on Cisco IOS devices.
  • Implement ACLs for threat mitigation.
  • Implement data plane security on Cisco IOS devices.
  • Configure threat control and containment measures.
  • Configure security and NAT on Cisco ASA.
  • Implement Cisco IOS IPS.
  • Describe VPN technologies, PKI, and IPsec concepts.
  • Implement VPNs and Cisco AnyConnect.
  • Implement control plane security and additional data plane security features.
  • Configure secure network management services and 802.1x port-based authentication.


Target Student:

This course is designed for network security specialists, security administrators, and network security support engineers who are responsible for deploying and managing Cisco security products and features in a network infrastructure. Individuals should attend if their primary job responsibility is to secure a network from sophisticated threats.

This course is also designed for students who are seeking CCNA Security certification and who want to prepare for the Implementing Cisco Network Security (IINS) Exam 210-260.


To ensure your success in this course, you should be familiar with basic networking and security concepts, and Cisco IOS networking features and concepts. You can obtain this level of skills and knowledge by taking the following Logical Operations courses:

  • Cisco CCENT/CCNA 3.0: Interconnecting Cisco Network Devices, Part 1 (ICND1)
  • Cisco CCNA 3.0: Interconnecting Cisco Network Devices, Part 2 (ICND2)


Course-specific Technical Requirements

Hardware and Software

You will need the following hardware and software configurations. Device Name Hardware IOS Software NYEDGE1

  • Cisco 2911 Router
  • 1 * HWIC-2T module
  • c2900-universalk9-mz.SPA.152-4.M6.bin
  • Licenses: Data and Security
  • Cisco 2911 Router
  • 1 * HWIC-2T module
  • c2900-universalk9-mz.SPA.152-4.M6.bin
  • Licenses: Data and Security
  • Cisco 2911 Router
  • 1 * HWIC-2T module
  • 1 * HWIC-1T module
  • c2900-universalk9-mz.SPA.152-4.M6.bin
  • Licenses: Security and Voice
NYCORE1 Cisco 3750v2-24PS or Cisco 3750v1-24PS Switch
  • 3750v2: 15.0 IPServicesK9
  • 3750v1: 12.2 Advanced IP Services
NYCORE2 Cisco 3750v2-24PS or Cisco 3750v1-24PS Switch
  • 3750v2: c3750-ipservicesk9-mz.150-2.SE2
  • 3750v1: c3750-ipservicesk9-mz.122-55.SE5
NYACCESS1 Cisco 2960-24TC-S Switch c2960-lanlitek9-mz.150-2.SE9.bin or c2960-lanlitek9-mz.122-55.SE5.bin Cisco Phone Any Cisco IP POE phone will work Either SIP or SCCP software Backend (BGP)
  • 2 Cisco 2800 series routers
  • 1 * WIC-2T module
2 * Cisco 2811 routers running enterprise software. These routers need to run BGP and Frame Relay services. PLABWEB01: Windows Standalone Server
  • OS: Windows Server 2008 R2 64-bit standard or above
  • Hard disk space: 25 GB
  • RAM: 2 MB
  • CPU: Intel Xeon CPU E5-2680 v2 @ 2.8 GHz
  • IIS role installed, running LabShared website.
  • PLABCSCO01 must be able to connect to PLABWEB01.
The PLABWEB01 is not part of the immediate topology. Therefore, it is not included in the network diagram.


You will also require a computer or laptop for the PLABCSCO01 device with the following minimum hardware and software configurations. Hardware Software Processor (CPU): Intel Core i3-3xxx or equivalent Microsoft Windows 7 Professional, Enterprise, or Ultimate Memory: 4 GB RAM Internet Explorer 11 or above Storage: 500 GB internal hard drive PuTTY ( NIC – IP Address, GW .1 Tftpd32 ( Display card that runs at 1280 x 1024 or higher display resolution, and a compatible display monitor FileZilla ( Internet access (contact your local network administrator) 7ZIP ( Keyboard and mouse This machine will also require access to the following files for Lesson 8, "Implementing Cisco IOS IPS":

  • IOS-S818-CLI
  • sigv5-SDM-S809



You will require the following cables for the setup:

  • 5 straight-through cables.
  • 4 crossover cables.
  • 1 Cisco console cable. You may need a USB-to-serial adapter if your PC/laptop does not have a serial port.
  • 5 Cisco serial DCE/DTE cables.


Course Content

Lesson 1: Networking Security Fundamentals

Topic A: Network Security Concepts

Topic B: Security Policies Using a Life-Cycle Approach

Topic C: Network Topologies

Lesson 2: Network Infrastructure Security

Topic A: Introduction to Cisco NFP

Topic B: Introduction to Control Plane Security

Topic C: Introduction to Management Plane Security

Topic D: Introduction to Data Plane Security

Lesson 3: Implementing Management Plane Security on Cisco IOS Devices

Topic A: Secure Remote Access Using SSH

Topic B: Configure Custom Privilege Levels and Views

Topic C: Configure Cisco IOS and Key Network Services

Lesson 4: Implementing ACLs for Threat Mitigation

Topic A: Implement ACLs Using CLI

Topic B: Configure TCP Intercept and VACLs

Lesson 5: Implementing Data Plane Security on Cisco IOS Devices

Topic A: Content and Endpoint Security

Topic B: Configure VLANs, Trunks, and InterVLAN Routing

Topic C: Implement Layer 2 Security

Lesson 6: Configuring Threat Control and Containment Measures

Topic A: Fundamentals of Firewalls

Topic B: Implement Zone-Based Policy Firewalls Using Cisco IOS

Lesson 7: Configuring Security and NAT on Cisco ASA

Topic A: Configure ASA

Topic B: Implement NAT and PAT

Lesson 8: Implementing Cisco IOS IPS

Topic A: Fundamentals of IPS

Topic B: Configure Cisco IOS IPS

Topic C: Verify Cisco IOS IPS Configuration

Lesson 9: VPN Technologies, PKI, and IPsec

Topic A: Fundamentals of VPN Technologies

Topic B: Fundamentals of PKI

Topic C: Fundamentals of IPsec

Lesson 10: Implementing VPNs and Cisco AnyConnect

Topic A: Implement Site-to-Site VPNs on Cisco IOS Routers

Topic B: Implement SSL VPNs Using the Cisco ASA Appliance

Topic C: Implement Cisco AnyConnect Using the Cisco ASA Device Manager

Lesson 11: Implementing Control Plane Security and Additional Data Plane Security Features

Topic A: Configure Control Plane Security on Cisco IOS Devices

Topic B: Configure Control Plane Policing on Cisco IOS CLI

Topic C: Additional Data Plane Security Concepts

Topic D: Implement Policy-Based NAT on a Cisco ASA Appliance

Lesson 12: Configuring Secure Network Management Service and 802.1x Port-Based Authentication

Topic A: Configure Secure Network Management Services

Topic B: Configure 802.1x Port-Based Authentication

Customer Reviews

Based on 1 review Write a review