| 思科安全的虚拟专用网 |
Exam 642-511:
Cisco Secure Virtual Private Networks (CSVPN) |
 |
| |
| 基础介绍 |
CCSP认证的必要组成部分,内容包括描述、配置、校验和管理在思科安全VPN产品系列PIX防火墙和路由器中的IP
SEC特性。
* Cisco Secure 3000 VPN Concentrator & Cisco VPN 3000
Client V2.5
* Cisco IDS 12.0 IPSec 软件特性
* Cisco Secure Pix Firewall V5.2 IP See 的特性
* 在Cisco 产品中对CA Server的支持
本科目是 CCSP的五门必考科目之一. |
考试摘要 |
| |
|
|
| The Cisco Secure Virtual Private Networks exam (CSVPN
642-511) is one of the exams associated with the Cisco
Certified Security Professional and the Cisco VPN Specialist
certifications. Candidates can prepare for this exam by
taking the CSVPN 3.1 course. This exam includes simulations
and tests a candidate's knowledge and ability to describe,
configure, verify, and manage the Cisco VPN 3000 Concentrator,
Cisco VPN Software Client, and Cisco VPN 3002 Hardware
Client feature set. CCNA or CCDA recertification candidates
who pass the 642-511 CSVPN exam will be considered recertified
at the CCNA or CCDA level. |
| |
| 考试目标 |
* 了解Cisco Secure VPN 产品
* 了解在Cisco Secure VPN产品上IPsec技术的组件
* 配置和校验Cisco Secure VPN3000家族的远程访问
* 安装,配置Cisco Secure VPN3000 Client
* 在Cisco Secure Pix Firewall 和IDS软件上,在站点到站点的拓扑情况下,配置和校验IPsec
* 配置Cisco Secure Pix Fine进行扩展
|
| |
| |
| 考试范围 |
Overview of Virtual Private Networks and
IPSec Technologies
Cisco products enable a secure VPN
IPSec overview
IPSec protocol framework
How IPSec works
Cisco Virtual Private Network 3000 Concentrator
Series Hardware
Overview of the Cisco VPN 3000 Concentrator Series
Cisco VPN 3000 Concentrator
Cisco VPN 3000 Concentrator Series Client support
Configuring the Cisco VPN 3000 Series Concentrator
for Remote Access Using Pre-shared Keys
Overview of remote access using pre-shared keys
Initial configuration of the Cisco VPN 3000 Concentrator
Series for remote access
Browser configuration of the Cisco VPN 3000 Series Concentrator
Configure users and groups
More in-depth configuration information
Configure the Cisco Windows VPN Software Client
Configure Cisco Virtual Private Network 3000
Series Concentrator for Remote Access Using
Digital Certificates
CA support overview
Certificate generation
Validating certificates
Configuring the Cisco VPN 3000 Concentrator Series for
CA support
Configure the Cisco Virtual Private Network
Firewall Feature for IPSec Software Client
Overview of software client's firewall feature
Software Client's Are You There feature
Software Client's Central Policy Protection feature
Software Client's firewall statistics
Customizing firewall policy
Configure the Cisco Virtual Private Network Client Auto-Initiation
Feature
Overview of the Cisco VPN Software Client auto-initiation
Configure the Cisco VPN Software Client auto-initiation
Monitor and Administer Cisco VPN 3000 Remote Access
Networks
Monitoring
Administration
Bandwidth Management
Configure the Cisco VPN 3002 Hardware Client
for Remote Access
Cisco VPN 3002 Hardware client remote access with pre-shared
keys
Configure the Cisco Virtual Private Network
3002 Hardware Client
Overview of the Hardware Client interactive unit and
user authentication features
Configuring the Hardware Client interactive unit authentication
feature
Configuring the Hardware Client user authentication
feature
Monitoring the Hardware Client user statistics
Configure the Cisco Virtual Private Network
Client Backup Server and Load Balancing
Configuring the Cisco VPN Client backup server feature
Configuring the Cisco VPN Client load balancing feature
Overview of the Cisco VPN Client Reverse Route Injection
feature
Configure the Virtual Private Network 3002 Hardware
Client for Software Auto-Update
Overview and configuration of the VPN 3002 Hardware
Client software auto-update feature
Monitoring the Cisco VPN 3002 Hardware Client software
auto-update feature
Configure the Cisco Virtual Private Network 3000 Series
Concentrator for the IPSec Over UDP and IPSec
Over TCP
Overview of Port Address Translation
Configuring IPSec over UDP
Configuring NAT-Transversal
Configuring IPSec over TCP
Cisco Virtual Private Network 3000 Series Concentrator
LAN-to-LAN with Pre-Shared Keys
Cisco VPN 3000 Series Concentrator IPSec LAN-to-LAN
LAN-to-LAN configuration
Cisco Virtual Private Network 3000 Series Concentrator
LAN-to-LAN with NAT
LAN-to-LAN overview
Configuring the Concentrator LAN-LAN NAT feature
Cisco Virtual Private Network 3000 Series Concentrator
LAN-to-LAN using Digital
Certificates
Root certificate installation
Identify certificate installation |
| |
| |
|
|
|
|
Login |
|
