Learn how to secure Cisco routers and switches, mitigate Layer 3 and Layer 2 attacks, and secure a VLAN.
Overview
Syllabus
Introduction
- Welcome
- What you need to know
- Packet Tracer and exercise files
- Prepare for the CCNA Security exam
- Secure routing and switching: Overview
- Control, data, and management planes
- Router and switch security basics
- Layer 3 attacks: Overview
- Secure the control plane
- Examine privilege levels
- Assign privilege levels
- Configure IOS role-based CLI access
- Implement IOSR Resilient Configuration
- Routing update authentication
- Challenge: EIGRP authentication
- Solution: EIGRP authentication
- Layer 2 attacks: Overview
- Spanning-Tree Protocol
- STP attacks
- ARP spoofing
- MAC spoofing
- macof attack
- CDP/LLDP reconnaissance
- DHCP spoofing
- Implement DHCP snooping
- Dynamic ARP inspection
- Implement port security
- BPDU guard, root guard, and loop guard
- VLAN attacks
- Security implications of a PVLAN
- Security implications of a native VLAN
- Next steps
Taught by
Lisa Bock