Options
CCNP Security - SIMOS Exam, easyvpn gone?
chrisone
Member Posts: 2,278 ■■■■■■■■■□
Just curious if anyone can help chime in on this. Based on the exam topics, it looks like Easy VPN is gone and FlexVPN is in. Am I missing something here? or am I correct to say that Easy VPN is truly gone and not a topic? I am using the latest VPN book, as well as PDFs on flex vpn (here is a great one by the way: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ike2vpn/configuration/xe-3s/sec-flex-vpn-xe-3s-book.pdf ) There is about 200pgs on the VPN book covering easy vpn and I would hate to spend a couple weeks reading/lab work for easyvpn only for it NOT be on the SIMOS exam. Thanks
[h=3]Exam Description[/h]
The Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam tests a network security engineer on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms. This 90-minute exam consists of 65–75 questions and assesses the knowledge necessary to properly implement highly secure remote communications through VPN technology, such as remote access SSL VPN and site-to-site VPN (DMVPN, FlexVPN). Candidates can prepare for this exam by taking the Implementing Cisco Secure Mobility Solutions (SIMOS) course.
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
[h=3]1.0 Secure Communications[/h]
[h=3]32%[/h]
[h=3]Hide Details[/h]
1.1 Implement site-to-site VPNs on routers and firewalls
[h=3]2.0 Troubleshooting, Monitoring and Reporting Tools[/h]
[h=3]38%[/h]
[h=3]Hide Details[/h]
2.1 Analyze syslog and VPN debug logs using ASDM
[h=3]3.0 Secure Communications Architectures[/h]
[h=3]30%[/h]
[h=3]Hide Details[/h]
3.1 Design site-to-site VPN solution
3.2 Design remote access VPN solution
3.3 Describe encryption, hashing, NGE
[h=3]Exam Description[/h]
The Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam tests a network security engineer on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms. This 90-minute exam consists of 65–75 questions and assesses the knowledge necessary to properly implement highly secure remote communications through VPN technology, such as remote access SSL VPN and site-to-site VPN (DMVPN, FlexVPN). Candidates can prepare for this exam by taking the Implementing Cisco Secure Mobility Solutions (SIMOS) course.
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
[h=3]1.0 Secure Communications[/h]
[h=3]32%[/h]
[h=3]Hide Details[/h]
1.1 Implement site-to-site VPNs on routers and firewalls
- 1.1.a Describe GETVPN
- 1.1.b Implement IPsec (with IKEv1 and IKEv2)
- 1.1.c Implement DMVPN (Hub-Spoke and spoke-spoke)
- 1.2.a Implement AnyConnect IKEv2 VPNs
- 1.2.b Implement SSLVPN: client and clientless
- 1.3.a Implement FlexVPN
- 1.4.a Implement SSLVPN: client and clientless
- 1.4.b Implement FLEX VPN
[h=3]2.0 Troubleshooting, Monitoring and Reporting Tools[/h]
[h=3]38%[/h]
[h=3]Hide Details[/h]
2.1 Analyze syslog and VPN debug logs using ASDM
[h=3]3.0 Secure Communications Architectures[/h]
[h=3]30%[/h]
[h=3]Hide Details[/h]
3.1 Design site-to-site VPN solution
3.2 Design remote access VPN solution
3.3 Describe encryption, hashing, NGE
Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
2023 Cert Goals: SC-100, eCPTX
2023 Cert Goals: SC-100, eCPTX
Comments
-
Optionschrisone
Member Posts: 2,278 ■■■■■■■■■□
I have been reviewing many course outlines from cisco and 3rd party vendors and it seems like Easy VPN and the VPN Client software are no longer part of the exam.
Cisco: Cisco Learning Locator
Course Objectives
Upon completing this course, the learner will be able to meet these overall objectives:- Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.
- Implement and maintain Cisco site-to-site VPN solutions.
- Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs.
- Implement and maintain Cisco clientless SSL VPNs.
- Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
- Implement and maintain endpoint security and dynamic access policies (DAP).
- Course Introduction
- Fundamentals of VPN Technologies and Cryptography
- Deploying Secure Site-to-Site Connectivity Solutions
- Deploying Cisco IOS Site-to-Site FlexVPN Solutions
- Deploying Clientless SSL VPN -Deploying AnyConnect VPN for Remote Access
- Deploying Endpoint Security and Dynamic Access Policies & #61550; Lab Guide
Course Outline
1. Fundamentals of VPN Technologies and Cryptography
2. Deploying Secure Site-to-Site Connectivity Solutions
3. Deploying Cisco IOS Site-to-Site FlexVPN Solutions
4. Lesson 2: Deploying Basic Cisco Clientless SSL VPN
5. Deploying Cisco AnyConnect VPNs
6. Deploying Endpoint Security and Dynamic Access Policies
Labs
Lab 1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
Lab 2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
Lab 3: Implement DMVPN
Lab 4: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
Lab 5: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Lab 6: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
Lab 7: Implement ASA Basic Clientless SSL VPN
Lab 8: Application Access Clientless SSL
Lab 9: Advanced AAA Clientless SSL
Lab 10: Implement ASA Basic AnyConnect SSL VPN
Lab 11: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
Lab 12: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
Lab 13: Configure Advanced Authentication for Cisco AnyConnect VPN on Cisco ASA
Some Sunset Learning Institute vendor:
Implementing Cisco Secure Mobility Solutions (SIMOS) | Sunset Learning Institute
Module 1: Fundamentals of VPN Technologies and Cryptography- Lesson 1: The Role of VPNs in Network Security
- Lesson 2: VPNs and Cryptography
- Lesson 1: Introducing Cisco Secure Site-to-Site Connectivity Solutions
- Lesson 2: Deploying Point-to-Point IPsec VPNs on the Cisco ASA
- Lesson 3: Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
- Lesson 4: Deploying Cisco IOS DMVPNs
- Lesson 1: Introducing Cisco FlexVPN Solution
- Lesson 2: Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 3: Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 4: Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
- Lesson 1: Clientless SSL VPN Overview
- Lesson 2: Deploying Basic Cisco Clientless SSL VPN
- Lesson 3: Deploying Application Access in Clientless SSL VPN
- Lesson 4: Deploying Advanced Authentication in Clientless SSL VPN
- Lesson 1 Overview of Cisco AnyConnect VPNs
- Lesson 2 Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 3 Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
- Lesson 4: Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
- Lesson 5: Deploying Advanced Authentication, Authorization, and Accounting in Cisco
- Lesson 1: Implementing Host Scan
- Lesson 2: Implementing DAP for SSL VPNs
Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
2023 Cert Goals: SC-100, eCPTX
