- Shopping Bag ( 0 items )
Ships from: acton, MA
Usually ships in 1-2 business days
Learn the topics on the CCSP SECUR 642-501 exam with the only authorized Self-Study guide based on the course from Cisco Systems
CCSP Self-Study: Securing Cisco IOS Networks (SECUR) provides a comprehensive guide for the Cisco Systems CCSP SECUR 642-501 exam. It is also a reference for security practices, protocols, software, and equipment that work on or in conjunction with Cisco IOS equipment to provide layers of security to networks. Based on version 1.0 of the SECUR course, this guide will serve readers as a valuable study aid and continue as an invaluable theory and configuration guide.
Coverage includes new IOS features, Cisco Secure ACS (Access Control Server), advanced AAA (Authentication, Authorization, and Accounting) security topics, the Cisco IOS Firewall, VPNs, IPSec using Cisco routers, IKE (Internet Key Encryption), Crypto ACLs, NAT (Network Address Translation), and IPSec VPNs using Cisco routers, as well as the newest topics covered in the latest course, Cisco Easy VPN and Security Device Manager (SDM). A case study enables readers to walk through a scenario and help determine a real-world solution.
This book replaces the existing Managing Cisco Network Security book, which was based on the previous version of the course by the same name. This new title contains approximately 90 percent new material, providing updated information on the CCSP certification and covering the newIOS features developed since the first edition was published.
|Ch. 1||Introduction to network security||3|
|Ch. 2||Basic Cisco router security||45|
|Ch. 3||Advanced AAA security for Cisco router networks||119|
|Ch. 4||Cisco router threat mitigation||165|
|Ch. 5||Cisco IOS firewall context-based access control configuration||275|
|Ch. 6||Cisco IOS firewall authentication proxy||309|
|Ch. 7||Cisco IOS firewall intrusion detection system||333|
|Ch. 8||Building IPSec VPNs using Cisco routers and pre-shared keys||363|
|Ch. 9||Building advanced IPSec VPNs using Cisco routers and certificate authorities||447|
|Ch. 10||Configuring IOS remote access using Cisco easy VPN||483|
|Ch. 11||Securing Cisco routers using security device manager||535|
|Ch. 12||Managing enterprise VPN routers||591|
|Ch. 13||Case study||671|
|App. A: Answers to chapter review questions||687|
|App. B: Sample network security policy||709|
|App. C: Configuring standard and extended access lists||723|
Posted August 28, 2005
Though I have yet to take the first exam in the Cisco Certified Security Professional series, I feel confident that after reading this book, that I¿ll pass. I am a CCNP (re-certified last year) and would say that the material covered in this book expounds on a CCNP¿s education. In other words, this should be the next phase for all CCNPs, i.e., don¿t stop reading after attaining the CCNP. The information covered in this book is the least you need to read and understand in order to be, at a minimum, a ¿security¿ professional in your field. This book covers the security aspects that aren¿t mentioned (or mentioned very briefly) in the CCNP series. This book covers securing the router using the IOS¿ built-in features, such as, the IDS, the firewall features (CBAC), and setting up secure VPNs with IPSec. For the most part, the author did a good job with the illustrations and the examples. There are a few errors, but with enough reading, the student can decipher them. Perhaps they¿ll be fixed in the next edition. A reader would benefit greatly by answering the questions at the end of each chapter, but were a reader to work out the scenario exercises at the end of each chapter, everything would then fall into place. The material is difficult. With enough repetition (and the author gives you many chances), the reader can¿t help but understand it. One thing this reader noticed is how well the material is presented, i.e., the author tells you what he¿s going to cover, he covers the material systematically and extensively, and he summarizes by telling you what he covered. This method of presentation ensures maximum coverage of the material and ingrains it into the reader. In fact, and I don¿t speak facetiously, this author does such a great job of presenting the material several times that if you never got it the first or the second time, by the third time, it finally sinks in -- at least that¿s what it took for this reader. This book included two additional and very helpful appendices, i.e., a ¿Sample Network Security Policy¿, and ¿Configuring Standard and Extended Access Lists¿. The sample policy offers a nice template for those that may find themselves tasked to create one in the future. Very nice additional features in the configuring access lists appendix are two tables. One table contains the several types and codes of ICMP and the other table contains the TCP port keywords. I would give this book a 4 in a rating of 1 - 5, 5 being the highest. Though the book is very long, I learned the material. In fact, I believe that it required such a length because, as I state yet again, the material is very difficult to grasp. There are enough examples that one could easily follow the steps and employ them in one¿s own network without (too much) difficulty. And most definitely, this book will be used frequently on my book shelf, not only as reference, but as a template builder.Was this review helpful? Yes NoThank you for your feedback. Report this reviewThank you, this review has been flagged.
Posted February 15, 2005
I was disappointed by the Sybex book on this topic so I bought this one. I don't often buy the CiscoPress Study Guides. I thought the chapter structures were clearly outlined and helped reinforce the subject material. Exam topic coverage is EXCELLENT! This book definitely helped pass this test.Was this review helpful? Yes NoThank you for your feedback. Report this reviewThank you, this review has been flagged.