Book description
Your resource to passing the Cisco CCSP SECUR Certification Exam!
Join the ranks of readers who have trusted Exam Cram 2 to their certification preparation needs! The CCSP SECUR Exam Cram 2 (Exam 642-501) is focused on what you need to know to pass the CCSP CSI exam. The Exam Cram 2 Method of Study provides you with a concise method to learn the exam topics. The book includes tips, exam notes, acronyms and memory joggers in order to help you pass the exam.
Included in the CCSP SECUR Exam Cram 2:
A tear-out "Cram Sheet" for last minute test preparation.
Covers the current exam objectives for the 642-501 exam.
The PrepLogic Practice Tests, test engine to simulate the testing environment and test your knowledge.
Trust in the series that has helped many others achieve certification success - Exam Cram 2.
Table of contents
- Copyright
- The SECUR Cram Sheet
- A Note from Series Editor Ed Tittel
- About the Authors
- Acknowledgments
- We Want to Hear from You!
- Introduction
- Self-Assessment
- Cisco Certification Exams
- Network Security and Cisco IOS Routers
-
Cisco IOS Firewall Feature Set
-
Configuring Context-based Access Control on a Cisco Router
- Introduction
- Introduction to the Cisco IOS Firewall Feature Set
- What Is CBAC?
- CBAC Operation
- What Does CBAC Inspect?
- Event Tracking
- Configuring Syslog
- Configuring CBAC
- Global Parameters
- Identifying Traffic Using Inspection Rules
- Guidelines for Applying CBAC and ACLs
- Nonstandard Application Port Implementation
- PAM
- Verifying and Testing CBAC
- Removing CBAC
- Summary
- Exam Prep Questions
- Need to Know More?
-
Securing Cisco Network Routers Using AAA
- Introduction
- What Is AAA?
- Components of AAA
- Understanding AAA
- Types of Authentication Methods
- Implementing AAA Using Local Authentication
- Implementing AAA Using External Servers
- Defining AAA
- TACACS+
- RADIUS
- TACACS+ Versus RADIUS
- Configuring Edge Routers Using AAA
- Overview of CiscoSecure Access Control Server
- CSACS for Windows NT/2000
- CSACS Services
- Using the ACS Database
- Using a Windows Database
- Token Card Support
- Features
- CSACS Appliance
- Troubleshooting CSACS for Windows
- What Is Kerberos?
- Summary
- Exam Prep Questions
- Need to Know More?
- Configuring the Intrusion Detection System on a Cisco Router
- Configuring Authentication Proxy on a Cisco Router
-
Configuring Context-based Access Control on a Cisco Router
-
Virtual Private Networks Using Cisco IOS Routers
-
Understanding IPSec VPNs on Cisco Routers
- Overview and Objectives
- What Are VPNs?
- Introduction to IPSec
- What Does IPSec Provide?
- Types of Encryption
- Symmetric Key Algorithms
- Asymmetric Key Algorithms
- Integrity
- Hash Algorithms
- Origin Authentication
- Antireplay Protection
- Framework of IPSec
- Tunneling Protocols
- AH
- ESP
- Tunnel Versus Transport Mode
- Steps Involved in Setting Up IPSec
- Tasks Involved in Configuring IPSec
- Planning for IKE and IPSec
- Defining IKE Phase 1 Policy
- Overview of CA Support
- Configuring CA Support
- Maintaining and Monitoring the CA
- Available Authentication Methods
- Identifying IPSec Peers
- Associating an ISAKMP Policy to Peers
- Various Policy Parameters for IKE Phase 1
- Defining IKE Phase 2 (IPSec) Policy
- Defining IPSec Peers
- Checking for Compatible Policies
- Ensuring Network Connectivity
- Required Protocols for IPSec
- Summary
- Exam Prep Questions
- Need to Know More?
-
Configuring IPSec VPNs on Cisco Routers
- Introduction
- Configuring IKE Phase 1
- Enabling IKE
- Configuring ISAKMP Identity
- Creating IKE Policies
- Configure Preshared Keys
- Digital Certificate Support Introduction
- Hostname and Domain Name
- Digital Certificate Support Summary
- Verifying IKE Configuration
- Configuring IKE Phase 2 (IPSec)
- Crypto Access Lists
- Symmetrical ACLs
- Configuring the IPSec SA Lifetime
- Transform Sets
- Crypto Maps
- Configuring Crypto Maps
- Applying Crypto Maps to Interfaces
- Verifying and Testing IPSec
- IKE Show Commands
- Digital Certificate Show Commands
- IPSec Show Commands
- Debug Commands
- Summary
- Exam Prep Questions
- Need to Know More?
-
Cisco Easy VPN
- Introduction
- Understanding Cisco Easy VPN
- Components of Easy VPN
- Features of Easy VPN Server
- Elements and Options Supported by Cisco Easy VPN Server
- Elements and Options Not Supported by Cisco Easy VPN Server
- Supported Easy VPN Servers
- Features of Easy VPN Remote
- Understanding Easy VPN Remote Phase 2
- Supported Hardware and Software Easy VPN Devices
- Limitations of Easy VPN Remote Phase 2
- Establishing VPN Using Easy VPN Remote
- Configuring the Easy VPN Server
- Adding XAUTH to the Easy VPN Server Configuration
- Overview of Cisco VPN Software Client 3.x
- Accessing Cisco VPN 3.5 Client
- Cisco VPN Client Log Viewer
- Modifying MTU Size
- VPN Client Connection Status
- Summary
- Exam Prep Questions
- Need to Know More?
-
Management Center for VPN Routers
- Introduction
- Introduction to the Router Management Center
- Tunneling Technology Support
- Router MC Requirements
- Introduction to CiscoWorks 2000
- Basic VPN Configuration
- Creating an Activity
- Cisco Devices Supported by Router MC
- Configurable VPN Settings on Router MC
- Configuring IKE Policy
- Building Blocks
- Configuring Tunnel Policy
- Traffic Filter
- Existing Configuration Management Using Router MC
- Deployment Jobs
- Deployment Reports
- Summary
- Exam Prep Questions
- Need to Know More?
-
Understanding IPSec VPNs on Cisco Routers
- Practice Exams
-
Appendixes
-
Resources
- Cisco Secure Access Control Server 3.2
- Overview of Authentication, Authorization, and Accounting
- Authentication Servers
- Configuring Context-based Access Control
- Troubleshooting Context-based Access Control
- Configuring Authentication Proxy
- Troubleshooting Authentication Proxy
- Configuring Cisco IOS Intrusion Detection System
- IP Security (IPSec)
- RFC for Internet Key Exchange
- RFC for Encapsulating Security Payload
- Cisco Easy VPN
- Management Center for Virtual Private Network Routers
- What's on the CD-ROM
-
Using the PrepLogic Practice Exams, Preview Edition Software
- The Exam Simulation
- Question Quality
- The Interface Design
- The Effective Learning Environment
- Software Requirements
- Installing PrepLogic Practice Exams, Preview Edition
- Removing PrepLogic Practice Exams, Preview Edition from Your Computer
- How to Use the Software
- Contacting PrepLogic
- License Agreement
- Glossary
-
Resources
- Index
Product information
- Title: SECUR Exam Cram™ 2 (Exam 642-501)
- Author(s):
- Release date: December 2003
- Publisher(s): Pearson IT Certification
- ISBN: 9780789730251
You might also like
book
CCSP Self-Study: CCSP SNRS Exam Certification Guide
Official self-study test preparation guide for the Cisco SNRS exam 642-502 Attack threats Router management and …
book
CCNP Security VPN 642-648 Quick Reference
As a final exam preparation tool, the CCNP Security VPN 642-648 Quick Reference provides a concise …
book
CCIE Security v4.0 Practice Labs
CCIE Security v4.0 Practice Labs The material covered in CCIE Security v4.0 Practice Labs is designed …
book
CCSP Self-Study: Securing Cisco IOS Networks (SECUR)
Cisco authorized self-study book for CCSP 642-501 foundation learning Identify the lineup of Cisco Systems network …