All courses
All courses
Course categories
Contact us

Implementing Cisco Secure Mobility Solutions, 5 days

Delivered at your office or a training centre, in groups or 1-2-1

Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.

Check availability in your area…

Key features

  • Live instructor-led course with 30 hours of training
  • Session runs from 9.30–5pm with normal breaks included
  • Fully certified trainer
  • Get key skills and practical knowledge
  • This course is available for delivery at your office, 1-2-1 and groups – contact us
  • Course materials included
  • Recognised course certificate

What will I learn?

Further course objectives:

Implement and maintain Cisco site-to-site VPN solutions.
Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs.
Implement and maintain Cisco clientless SSL VPNs.
Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
Implement and maintain endpoint security and dynamic access policies (DAP)

Module 1: The Role of VPNs in Network Security
VPN Definition
Key Threats to WANs and Remote Access
Cisco Modular Network Architecture and VPNs
VPN Types
VPN Components
Secure Communication and Cryptographic Services
Cryptographic Algorithms
Cryptography and Confidentiality
Cryptography and Integrity
Cryptography and Authentication
Cryptography and Nonrepudiation
Keys in Cryptography
Public Key Infrastructure
Next-Generation Encryption
Dependencies in Cryptographic Services
Cryptographic Controls Guidelines
Module 2: Deploying Secure Site-to-Site Connectivity Solutions
Site-to-Site VPN Topologies
Site-to-Site VPN Technologies
IPsec VPN Overview
Internet Key Exchange v1 and v2
Encapsulating Security Payload
IPsec Virtual Tunnel Interface
Dynamic Multipoint VPN
Cisco IOS FlexVPN
Overview of Point-to-Point IPsec VPNs on the Cisco ASA
Configuration Tasks for Basic Point-to-Point Tunnels on the Cisco ASA
Enable IKE on an Interface
Configure IKE Policy
Configure PSKs
Choose Transform Set and VPN Peer
Choose Traffic for VPN
Configuring Site-to-Site VPN with Connection Profiles Menu
Verify and Troubleshoot Basic Point-to-Point Tunnels on the Cisco ASA
Lab 2-1 Implement Site to Site Secure Connectivity on Cisco ASA
Overview of Cisco IOS VTIs
Configure Static VTI Point-to-Point Tunnels
Verify Static VTI Point-to-Point Tunnels
Configure Dynamic VTI Point-to-Point Tunnels
Verify Dynamic VTI Point-to-Point Tunnels
Lab 2-2 Objective: Implement a Cisco IOS static VTI point-to-point tunnel
Overview of Cisco IOS DMVPN
DMVPN Solution Components
DMVPN Operations
Types of Authentication
Configure DMVPN on Hub
Configure DMVPN on Spoke
Configure Routing in DMVPN
Verify DMVPN
Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions

Excellent trainer with real world experience which for me really added to this course”

Julian O

FlexVPN Overview
Public Key Infrastructure (PKI)
Site-to-Site VPN Topologies
FlexVPN Architecture
FlexVPN Configuration Overview
FlexVPN Capabilities
IKEv2 vs. IKEv1 Overview
IKEv2 Message Exchange
IKEv2 DoS Prevention
IKEv1 and IKEv2 Comparison
FlexVPN Use Cases
Point-to-Point FlexVPN
FlexVPN Configuration Blocks
IKEv2 Profile
Smart Defaults
Manipulating Default Values
Negotiating IKEv2 Proposals
Point-to-Point VPN Scenario with IPv4 Static Routes
Configure and Verify Point-to-Point VPN with IPv4 Static Routes
Point-to-Point VPN Scenario with OSPFv3
Configure and Verify Point-to-Point VPN with OSPFv3
Enroll Devices to ECDSA PKI
Configure Router for ECDSA
Configure ASA for ECDSA
Verify EC Key Pairs and Certificates
Verify IKEv2 SA
Verify IPsec SA
Verify Point-to-Point FlexVPN (just flowchart and important show/debug command output)
Lab 3-1: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
Cisco IOS FlexVPN
IKEv2 Configuration Payload
Locally Managed Hub-and-Spoke Scenario
Configure a Spoke in a Hub-and-Spoke Scenario
Configure a Hub in a Hub-and-Spoke Scenario
Configuration Exchange
Verify and Troubleshoot Hub-and-Spoke FlexVPN
Lab 3-2: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Spoke-to-Spoke Shortcut Scenario
Configure and Verify a Spoke in a Spoke-to-Spoke Shortcut Scenario
Configure and Verify a Hub in a Spoke-to-Spoke Shortcut Scenario
RADIUS-Managed FlexVPN Scenario
Verify Spoke-to-Spoke Shortcut Switching
Troubleshoot Spoke-to-Spoke Shortcut Switching (just flowchart and important show/debug command output)
Lab 3-3: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Module 4: Deploying SSL VPNs
SSL VPN Components
Overview of group policies and connection profiles
Basic Cisco Clientless SSL VPN
Solution Components
Configure ASA gateway
Configure basic authentication
Configure access control (including URL entry and bookmarks)
Verify basic clientless SSL VPN
Troubleshoot basic clientless SSL VPN
Lab 4-1 Objective: Implement Basic Cisco Clientless SSL VPN on Cisco ASA
Deploying Application Access options (plug-ins, smart tunnels)
Configure and verify plugins
Configure and verify smart tunnels


Download course details as a PDF

Interested in this course? Get in touch...

01225 308979


Find us at:
Go Courses Ltd.
Kemp House
152 - 160 City Road
United Kingdom

Registered Office:
Go Courses Ltd.
10 Laura Place
United Kingdom

View on a map

Delighted satisfaction rating