Network Security Release Notes

Last updated March 23, 2021

Purpose
Today's organizations are challenged with responding rapidly to emerging network
security threats. Security personnel configure and monitor various network security
threat mitigation measures, such as device hardening, intrusion prevention systems,
and firewalls, to protect data assets and network systems from attack. The purpose of
this course is to provide skills and knowledge in the field of network security.

By the end of the course, students will be able to:

• Explain the various types of threats and attacks.
• Explain tools and procedures to mitigate the effects of malware and common
network attacks.
• Configure command authorization using privilege levels and role-based CLI.
• Implement the secure management and monitoring of network devices.
• Configure AAA to secure a network.
• Implement ACLs to filter traffic and mitigate network attacks on a network.
• Implement Zone-Based Policy Firewall using the CLI.
• Explain how network-based Intrusion Prevention Systems are used to help
secure a network.
• Explain endpoint vulnerabilities and protection methods.
• Implement security measures to mitigate Layer 2 attacks.
• Explain how the types of encryption, hashes, and digital signatures work
together to provide confidentiality, integrity, and authentication.
• Explain how a public key infrastructure is used to ensure data confidentiality
and provide authentication.
• Configure a site-to-site IPsec VPN, with pre-shared key authentication, using
the CLI.
• Explain how the ASA operates as an advanced stateful firewall.

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 1 of 6 www.netacad.com
 Network Security Release Notes

• Implement an ASA firewall configuration.

• Implement an ASA firewall configuration using ASDM. (optional)
• Test network security.

This course contains numerous opportunities for practicing and assessing student
skills through various types of assessments, labs, syntax checkers, and Packet Tracer
activities.
These notes provide detailed information about this release, including curriculum
content, known issues, and support information. This 70-hour, instructor-led course
includes videos, labs, Packet Tracer activities, module quizzes, module exams, a
skills assessment lab, and final exams.

Release Content
Table 1. Content Included in the Network Security Course

Component Description

E-Learning Content 22 modules

Videos 22 videos

Labs 23 hands on and paper labs

Packet Tracer Activities 22 Packet Tracer activities. The minimum Packet Tracer version is 8.0.

Simulation and modeling activities designed for skills exploration,

acquisition, and reinforcement

Syntax Checkers 40 syntax checkers

Syntax checkers are small simulations that expose learners to the Cisco
command line to practice device configuration

Interactive Activities 11 Interactive activities

Check Your Understanding 40 CYUs

CYUs are per topic, online, self-diagnostic quizzes to help learners

gauge content understanding. CYU activities are designed to let
students quickly determine if they understand the content and can
proceed, or if they need to review. CYU activities do not affect student
grades.

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 2 of 6 www.netacad.com
 Network Security Release Notes

Module Quizzes 22 module quizzes

Instructor activated assessments that assess content from multiple

modules. These assessments provide learners the opportunity to apply
and validate knowledge learned.

Module Group Exams 8 module group exams

These assessments provide learners the opportunity to apply and

validate knowledge learned throughout the course.

Practice Final 1 practice final

Unsecured. Not dynamic.

Secured, Dynamic Final 1 dynamic final exam with secured activation

Exam
Variables in the design of the exam allow an instructor to administer
unique exams to each student and assess each student’s learning
individually. With secured activation, individual assessment item
preview and review is disabled to improve validity and security of this
summative assessment. Instructors are provided with a visual summary
view of how students performed against the competencies outlined for
the course.

Packet Tracer Skills 1

Assessment (PTSA)

Skills Assessment Lab 1

End-of-Course Feedback 1 end-of-course survey to provide feedback for the course.

Accessibility New UI complies with WCAG 2.1 Level AA Guidelines. All pages
contain accessible text and highly descriptive media transcripts. All PDF
files in the curriculum have been created with accessible features.
Videos have closed captioning available.

UI is screen reader and keyboard accessible.

Certificate of Completion The successful completion of the end-of-course assessment and end-
of-course survey are required for receiving the certificate of completion.

Digital Badges Students will receive a digital badge after successfully completing the
course and meet the badge criteria.
https://www.netacad.com/portal/faq-page/digital-badges#t632n4239

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 3 of 6 www.netacad.com
 Network Security Release Notes

Equipment List
This course requires no physical equipment other than the student’s lab PC. Practice activities for the
technical and critical skills needed in this course are delivered using Cisco Packet Tracer.

Baseline Equipment Bundle:

• PCs minimum system requirements
o CPU: Intel Pentium 4, 2.53 GHz or equivalent.
o OS: Microsoft Windows, Linux, or macOS
o RAM: 8 GB
o Storage: 20GB of free disk space
o Display resolution: 1024 x 768
o Language fonts supporting Unicode encoding (if viewing in languages other than English)
o Latest video card drivers and operating system updates
o Internet connection for lab and study PCs

Student PC Software:
• Cisco Packet Tracer v 8.0 or higher
• Latest stable version of Wireshark
• SSH client software, such as PuTTy or Tera Term, for lab PCs.
• Oracle VirtualBox
• Security Workstation VM - Download from the course
• Requires 1 GB RAM, 15 GB disk space

Lab bundle requirements:

Detailed equipment information, including descriptions and part numbers, is available on Cisco
netacad.com on the Equipment Information page. Please refer to that document for the latest
information, which includes specifications for the following minimum equipment required:
• 3 Cisco ISR 4221 SEC Bundle with Security License
• 2 Cisco Catalyst 2960 Plus 24 10/100 + 2T/SFP LAN Base
• (Optional) 1 Cisco ASA 5506-X with FirePOWER services, 8GE, AC, 3DES/AES)
• Console cables
• Assorted ethernet cables

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 4 of 6 www.netacad.com
 Network Security Release Notes

Known Issues
Known Issues and Description
Caveats
English Spelling American-English spellings are interspersed in the text of the modules.
Closed Captions Use the external video link if you are having issues with the embedded
videos.
Packet Tracer You must use Packet Tracer version 8.0 to load the Packet Tracer activities
Program within this course and assessments.
ASA 5506-X with The ASA-5506-X with FirePOWER Services is optional equipment for this
FirePOWER Services course. The ASA labs are not required. ASA-related skills can be
device experienced through the use of video, Packet Tracer activities, and Syntax
Checkers.

Course Outline
Module Title
1 Course Introduction/Securing Networks
2 Network Threats
3 Mitigating Threats
4 Secure Device Access
5 Assigning Administrative Roles
6 Device Monitoring and Management
7 Authentication, Authorization, and Accounting (AAA)
8 Access Control Lists
9 Firewall Technologies
10 Zone-Based Policy Firewalls
11 IPS Technologies
12 IPS Operation and Implementation
13 Endpoint Security
14 Layer 2 Security Considerations
15 Cryptographic Services
16 Basic Integrity and Authenticity
17 Public Key Cryptography
18 VPNs
19 Implement Sire-to-Site IPsec VPN
20 Introduction to the ASA
21 ASA Firewall Configuration
22 Network Security Testing

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 5 of 6 www.netacad.com
 Network Security Release Notes

Updates in Network Security

This is the first version of the Network Security course; therefore, there are no
updates.

Support
For general assistance with curriculum, classroom, or program issues, please contact
the Networking Academy™ Support Desk by signing into the netacad.com™ learning
environment and clicking the Support question mark (?).

© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 6 of 6 www.netacad.com