Zooming in on Security

After attempting 4 IE Mock labs and various IE Vol 2 labs, I have a good understanding of my weaknesses. During the next month or so I plan on isolating these sections and will be labbing them up day and night.

First in line is the security section and after talking to a few successful CCIEs, I have come up with this plan. Listed below is the detailed outline of the security section from IE’s website. My plan is to watch IE Class on demand on each of these and then use the Vol 1 labs to master the technology. Once I am comfortable with these features let’s say reflexive ACL, then I will read the Cisco Documentation. After that I will redo the Vol 1 labs and gauge my understanding.

For the starting, here is the detailed outline for the Security section. Feel free to post any suggestions that I can follow to improve my “security”.

Security

• Standard Access-Lists
• Extended Access-Lists
• Time Based Access-Lists
• Access-List Logging
• Reflexive Access-Lists
• Dynamic Access-Lists
• TCP Intercept
• Disabling Services
  • Source Routing
  • Proxy ARP
  • IP Options
  • CDP
  • IP Unreachable
• Local Authentication
• Access-Class
• Local Authorization
• URPF
• 3560 Security
  • 802.1x Authentication
  • Storm Control
  • VACLs
  • Port Security
    • Violation
      • Protect
      • Restrict
      • Shutdown
    • MAC Address
    • Maximum
    • Aging
      • Time
      • Type
      • Errdisable Recovery
  • Port Protection
    • Switchport Block