home cciesp cciedc cciesec ww ccies pt ccies juniper

CCIE SEC Mini-Scenarios


1. Implement secure networks using Cisco ASA Firewalls

ASA-1
ASA-2
ASA-3
ASA-4
ASA-5
ASA-6
ASA-7
ASA-8
ASA-9
ASA-10
ASA-11
ASA-12
ASA-13
ASA-14
ASA-15
ASA-16
ASA-17
ASA-18
ASA-19
ASA-20
ASA-21
ASA-22

2. Implement secure networks using Cisco IOS Firewalls

CBAC-1
CBAC-2
CBAC-3
CBAC-4
CBAC-5
CBAC-6
CBAC-7
CBAC-8
CBAC-9
ZBF-1

3. Implement secure networks using Cisco VPN solutions

IPSEC-1
IPSEC-2
IPSEC-3
IPSEC-4
IPSEC-5
IPSEC-6
IPSEC-7
IPSEC-8
IPSEC-9
IPSEC-10
IPSEC-11
IPSEC-12
IPSEC-13
IPSEC-14
IPSEC-15
IPSEC-16
IPSEC-17
IPSEC-18
IPSEC-19
IPSEC-20
IPSEC-21
IPSEC-22
EZVPN-1
DMVPN-1
DMVPN-2
DMVPN-3

4. Configure Cisco IPS to mitigate network threats

IPS-1
IPS-2

5. Implement Identity Management

5.1

6. Implement Control Plane and Management Plane Security

6.1

7. Configure Advanced Security

7.1

8. Identify and Mitigate Network Attacks

8.1

ASA-1



Topology:


Purpose: ASA Configuration with ICMP inspection.

Dynamips .net file and configurations


ASA-2



Topology:


Purpose: ASA Configuration with ICMP ACL.

Dynamips .net file and configurations


ASA-3



Topology:


Purpose: Transparent ASA Configuration with ICMP inspection.

Dynamips .net file and configurations


ASA-4



Topology:


Purpose: Transparent ASA Configuration with ICMP ACL.

Dynamips .net file and configurations


ASA-5



Topology:


Purpose: Multiple-Context ASA Configuration with ICMP inspection.

Dynamips .net file and configurations


ASA-6



Topology:


Purpose: Multiple-Context ASA Configuration with ICMP ACL.

Dynamips .net file and configurations


ASA-7



Topology:


Purpose: Multi-Context Transparent ASA Configuration with ICMP inspection.

Dynamips .net file and configurations


ASA-8



Topology:


Purpose: Multi-Context Transparent ASA Configuration with ICMP ACL.

Dynamips .net file and configurations


ASA-9



Topology:


Purpose: OSPF ASA Configuration.

Dynamips .net file and configurations


ASA-10



Topology:


Purpose: OSPF ASA Configuration.

Dynamips .net file and configurations


ASA-11



Topology:


Purpose: EIGRP ASA Configuration.

Dynamips .net file and configurations


ASA-12



Topology:


Purpose: RIP ASA Configuration.

Dynamips .net file and configurations


ASA-13



Topology:


Purpose: Dynamic NAT ASA Configuration.

Dynamips .net file and configurations


ASA-14



Topology:


Purpose: Dynamic PAT ASA Configuration.

Dynamips .net file and configurations


ASA-15



Topology:


Purpose: Static NAT ASA Configuration.

Dynamips .net file and configurations


ASA-16



Topology:


Purpose: Static PAT ASA Configuration.

Dynamips .net file and configurations


ASA-17



Topology:


Purpose: Identity NAT ASA Configuration.

Dynamips .net file and configurations


ASA-18



Topology:


Purpose: Static Identity NAT ASA Configuration.

Dynamips .net file and configurations


ASA-19



Topology:


Purpose: NAT Exemption ASA Configuration.

Dynamips .net file and configurations


ASA-20



Topology:


Purpose: Policy NAT ASA Configuration.

Dynamips .net file and configurations


ASA-21



Topology:


Purpose: Active/Standby Failover ASA Configuration.

Dynamips .net file and configurations


ASA-22



Topology:


Purpose: Active/Active Failover ASA Configuration.

Dynamips .net file and configurations


CBAC-1



Topology:


Purpose: CBAC Configuration.

Dynamips .net file and configurations


CBAC-2



Topology:


Purpose: CBAC Configuration.

Dynamips .net file and configurations


CBAC-3



Topology:


Purpose: CBAC Configuration.

Feature 12.3(7)T: Transparent Cisco IOS Firewall

Dynamips .net file and configurations


CBAC-4



Topology:


Purpose: CBAC Configuration.

Feature 12.3(14)T: VRF Aware Cisco IOS Firewall

Dynamips .net file and configurations


CBAC-5



Topology:


Purpose: CBAC Configuration.

Feature 12.3(14)T: VRF Aware Cisco IOS Firewall

Dynamips .net file and configurations


CBAC-6



Topology:


Purpose: CBAC Configuration.

Feature 12.3(14)T: Inspection of Router-Generated Traffic

Dynamips .net file and configurations


CBAC-7



Topology:


Purpose: CBAC Configuration.

Feature 12.3(8)T: Virtual Fragmentation Reassembly

Dynamips .net file and configurations


CBAC-8



Topology:


Purpose: CBAC Configuration.

Feature 12.3(14)T: HTTP Inspection Engine

Dynamips .net file and configurations


CBAC-9



Topology:


Purpose: CBAC Configuration.

Feature 12.3(14)T: E-mail Inspection Engine

Dynamips .net file and configurations


ZBF-1



Topology:


Purpose: ZBF Configuration.

Feature 12.4(6)T: Zone-Based Policy Firewall

Dynamips .net file and configurations


IPSEC-1



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


IPSEC-2



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel with ISAKMP Profiles.

Dynamips .net file and configurations


IPSEC-3



Topology:


Purpose: IOS-to-ASA LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


IPSEC-4



Topology:


Purpose: IOS-to-ASA LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


IPSEC-5



Topology:


Purpose: ASA-to-ASA LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


IPSEC-6



Topology:


Purpose: ASA-to-ASA LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


IPSEC-7



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel and Certificates.

Dynamips .net file and configurations


IPSEC-8



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel and ISAKMP Aggressive Mode.

Dynamips .net file and configurations


IPSEC-9



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel and IPSec Nat Traversal.

Dynamips .net file and configurations


IPSEC-10



Topology:


Purpose: IOS-to-ASA LAN-to-LAN IPsec Tunnel and Certificates.

Dynamips .net file and configurations


IPSEC-11



Topology:


Purpose: ASA-to-ASA LAN-to-LAN IPsec Tunnel and Certificates.

Dynamips .net file and configurations


IPSEC-12



Topology:


Purpose: IOS-to-ASA LAN-to-LAN IPsec Tunnel and ISAKMP Aggressive Mode.

Dynamips .net file and configurations


IPSEC-13



Topology:


Purpose: ASA-to-ASA LAN-to-LAN IPsec Tunnel and ISAKMP Aggressive Mode.

Dynamips .net file and configurations


IPSEC-14



Topology:


Purpose: IOS-to-IOS IPsec Tunnel and Transport Modes.

Dynamips .net file and configurations


IPSEC-15



Topology:


Purpose: IOS-to-ASA IPsec Tunnel and Transport Modes.

Dynamips .net file and configurations


IPSEC-16



Topology:


Purpose: ASA-to-ASA IPsec Tunnel and Transport Modes.

Dynamips .net file and configurations


IPSEC-17



Topology:


Purpose: Hub-and-Spoke Dynamic IPsec and RRI.

Dynamips .net file and configurations


IPSEC-18



Topology:


Purpose: Hub-and-Spoke Dynamic IPsec and RRI.
Note: Doesn't work with 8.0(2) due to bug CSCsu08061. Corrected in 8.0(5).

Dynamips .net file and configurations


IPSEC-19



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel and RSA Keys.

Dynamips .net file and configurations


IPSEC-20



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel and ISAKMP Aggressive Mode with hostname as IKE ID.

Dynamips .net file and configurations


IPSEC-21



Topology:


Purpose: GRE over IPsec.

Dynamips .net file and configurations


IPSEC-22



Topology:


Purpose: GRE over IPsec with NAT.

Dynamips .net file and configurations


EZVPN-1



Topology:


Purpose: IOS-to-IOS LAN-to-LAN IPsec Tunnel.

Dynamips .net file and configurations


DMVPN-1



Topology:


Purpose: DMVPN (mGRE,NHRP,IPsec) with RIP.

Dynamips .net file and configurations


DMVPN-2



Topology:


Purpose: DMVPN (mGRE,NHRP,IPsec) with OSPF.

Dynamips .net file and configurations


DMVPN-3



Topology:


Purpose: DMVPN (mGRE,NHRP,IPsec) with EIGRP.

Dynamips .net file and configurations


IPS-1



Topology:


Purpose: Inline Interface Pair IPS Configuration.

Dynamips .net file and configurations


IPS-2



Topology:


Purpose: Inline Vlan Pair IPS Configuration.

Dynamips .net file and configurations


5.1


6.1


7.1


8.1


Last Updated: 14-JANUARY-2011