Cisco Network Security (CCNA) Practical Training Course

Course Duration: 48 Hours

Schedule: 4 hours per day × 2 days per week × 6 weeks

Target Audience:

• Undergraduate students (Computer Science, Information Technology, or related disciplines)
• Basic knowledge of networking (TCP/IP, OSI Model, IP addressing) is recommended

Course Format:

• Instructor-led, hands-on labs, simulations (Packet Tracer / GNS3), quizzes, and group challenges

 Course Objectives:

By the end of this course, students will be able to:

• Understand the fundamentals of network security
• Identify threats, vulnerabilities, and security measures
• Configure Cisco devices for basic to intermediate security
• Use Cisco IOS security features for firewall, VPN, and intrusion prevention
• Build and secure a small enterprise network

Course Modules:

 Introduction to Network Security

Theory:

• What is Network Security?
• CIA Triad: Confidentiality, Integrity, Availability
• Common Threats: Malware, Phishing, DoS/DDoS
• Security Policy and Risk Management

Practical:

• Lab: Introduction to Cisco Packet Tracer
• Lab: Topology building basics
• Lab: Secure Telnet vs SSH configuration
• Group Activity: Identify network vulnerabilities in sample topologies

 Cisco Device Security Basics

Theory:

• Cisco IOS CLI Basics
• AAA (Authentication, Authorization, Accounting)
• Device Hardening Overview

Practical:

• Lab: Secure CLI Access (Enable password, Line console, VTY lines)
• Lab: Configure SSH access on Cisco routers/switches
• Lab: Configure local user accounts and privilege levels
• Lab: Password encryption and banners

 Network Security Technologies

Theory:

• Firewalls (Stateless vs Stateful)
• Access Control Lists (ACLs)
• VPN Concepts
• Introduction to IDS/IPS

Practical:

• Lab: Configure Standard and Extended ACLs
• Lab: ACLs to control traffic between VLANs
• Lab: Simulate a basic VPN connection using Packet Tracer

 Advanced Cisco Security Configuration

Theory:

• Port Security
• DHCP Snooping
• Dynamic ARP Inspection
• IP Source Guard

Practical:

• Lab: Configure Port Security (Sticky MAC, Violation actions)
• Lab: DHCP Snooping configuration and validation
• Lab: DAI setup with trusted/untrusted ports
• Lab: Combine Layer 2 security features in a topology

 Threat Mitigation and Monitoring

Theory:

• Understanding Cisco Security Device Manager (SDM)
• Syslog and SNMP
• Threat Defense Best Practices

Practical:

• Lab: Configure logging (Syslog server simulation)
• Lab: Implement basic IDS using ACLs
• Lab: Monitor traffic using SPAN ports and Packet Tracer traffic analysis
• Group Challenge: Secure an open network using multiple techniques

Capstone Project & Assessment

Capstone Project:

• Group Project: Build a secure small enterprise network
  • Requirements: SSH access, VLANs, ACLs, Port Security, VPN, Logging
  • Students design, implement, test, and document the network

Assessment & Certification:

• Final Quiz (25%)
• Capstone Evaluation (50%)
• Participation & Labs Completion (25%)

 Certification:

Students who complete the course and pass the final assessment will receive from JELECOM

“Certificate of Completion: Cisco Network Security Fundamentals”.

if you would like to get our course content please register . . .