Course

Skills Expanded

Cisco IOS Threat Control for CCNP Security (300-206) SENSS

This course teaches you the ins and outs of Cisco IOS Zone-based firewalls. In this course, you will learn how to control traffic between interfaces assigned to zones and how to perform filtering all the way up to layer 7. You will also learn how to configure URL filtering, creating a custom white and black list.

What you'll learn

There are many appliances that are designed to prevent a network from attack; however, many overlook the capabilities of Cisco IOS. Cisco IOS routers support Zone-based firewall features that allow stateful filtering from L3 to L7 of the OSI model. In this course, you will learn how to configure and control the Cisco IOS ZBFW while also covering important topics of the 300-206 SENSS exam.

Introduction to IOS Threat Control

11mins

IOS Threat Control Course Introduction 4m
Zones 3m
Course Topic Summary 4m

Zone Pairs

18mins

Overview: Zones 2m
Lab: Creating Zones 6m
Zone Pairs for Traffic Flows 3m
Lab: Creating Zone Pairs 6m
Summary 1m

L3-4 Interzone Policy

49mins

L3-4 Interzone Policy Introduction 3m
Lab: Creating Class Maps 15m
Policy Maps 4m
Default Policy Table 6m
Lab: Configuring Policy Maps 21m
Summary 2m

L3-4 Intrazone Policy

13mins

Introduction: L3-4 Intrazone Policy 2m
Lab: Configure Intrazone Inspection 9m
Summary 2m

Self Zone Inspection

16mins

Self Zone Inspection Introduction 2m
Default Self Zone Policy 4m
Lab: Configuring Self Zone 9m
Self Zone Summary 1m

Tuning ZBFW

33mins

Introduction: Tuning Zone Based Firewalls (ZBFW) 3m
Inspection Timers 4m
TCP Normalizer 4m
Lab: Tune ZBFW 13m
Lab: Configuring NAT on ZBFW 5m
Lab: Enable Audit Trail 2m
ZBFW Summary 2m

L7 Inspection and URL Filtering

43mins

Introduction to L7 Inspection and URL Filtering 2m
Four Approaches to AIC 2m
HTTP Inspection 1m
Request Inspection Options 4m
Inspection and URL Filtering Process 5m
Lab: Configuring HTTP Inspection 13m
URL Inspection 1m
Lab: Configuring URL Filtering 15m
Summary 1m

Course Summary

7mins

IOS Threat Control Course Summary 8m

About the author

Brandon Carroll

Brandon has over 13 years experience as a Cisco Instructor and has taught hundreds of students in the areas of Routing and Switching, Security, Wireless, Voice, and Data Center. Brandon loves technology and is a an avid blogger, spends time assisting students in the Cisco Learning Network. He holds the CCIE in Security (#23837).

See more courses by Brandon Carroll

Ready to upskill? Get started

Contact Sales

Cisco IOS Threat Control for CCNP Security (300-206) SENSS

What you'll learn

Table of contents

About the author

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Contact Sales

Cisco IOS Threat Control for CCNP Security (300-206) SENSS

What you'll learn

Table of contents

About the author

Get access now

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Ready to skill up
your entire team?

Ready to skill up
your entire team?