CCIE Security Trinet or IPWB???

sec_guy · March 2006

hi guys!!!

Being new on this..would need valuable advise of all you people who are preparing ccie sec labs.

After doing lods of research for the rigth lab study material i found that Trinet is best for security labs and after that Ipexpert. If im anywhere wrong plz do correct me. I have my labs approaching so im going to attend a bootcamp and now have copy of both trinet and ipexpert.

The time is going full with studies as im also appearing for my cissp exams,so i wish if anyone needs my any kind of help then they can contact me.. i will feel glad to help them.

regards,
sec guy

mikej412 · March 2006

sec_guy wrote:

After doing lods of research for the rigth lab study material i found that Trinet is best for security labs and after that Ipexpert. If im anywhere wrong plz do correct me. I have my labs approaching so im going to attend a bootcamp and now have copy of both trinet and ipexpert.

I hadn't heard of Trinet -- but I figured I'd pass the written exam first, study a bunch, and then get a workbook to see if I'm ready for the lab. I've added them to my list to check out when I'm ready.

Most people recommend IP Expert -- but they seem to have a problem hitting their promised shipping dates for some of their updated products.

Once you get a chance to go through both lab books -- you should post a quick review here. Do they overlap? Do they compliment each other? Does the workbook include the solutions? Or do you have to buy the solutions separately?

And I guess the ultimate question -- with all the $$$$ spent for equipment, books, the lab exam itself, travel, rack rental, and those darn Lab Workbooks -- which one of the 2 workbooks gives the "most Bang for the Buck?" If you were on a budget and could only buy one - which would it be?

I guess I'll mention the Lab workbook folks on my list -- so someone can let me know if I'm missing someone good. This is who I have so far:
IE Expert
NLI (ccbootcamp)
NetMastersClass
Internetwork Experts
Enablemode
TriNet

Anyone else have reviews? Either R&S or Security or <other>

sec_guy · March 2006

Dear Frnzs,

Writing this post regarding my intense search for ccie security material. Thanx to those members who helped to get whatever stuff which was possible for them to get me going but unfortunately it was too old for the new syllabus. After running from every pillar to post at last there was no other option than to put a purchase order with the respective vendors. Being working for a local network portfolio company its not easy for an individual to go for such expensive products, thanx to almighty god that two friend of mine are also preparing for security and so the expenses got three times down.

The moral of the story at last, now I have following two material for lab preparation. Thanx again to all the forum members.

1) CCIE TRINET SECURITY WORKBOOK & VIDEO SOLUTIONS:
Lab 1:
Switching Security Basic

Lab 1.1: Port Security

Lab 1.2: Telnet Management

Lab 1.3: Storm Control

Lab 2:
Switching Security Advanced

Lab 2.1: Dot1X Authentication

Lab 2.2: VMPS Server

Lab 2.3: QOS with CoS

Lab 2.4: Ether Channel

Lab 2.5: SPAN

Lab 2.6: Remote SPAN (RSPAN)

Lab 3:
IGP Basic

3.1: RIP Authentication

3.2: EIGRP Authentication

3.3: OSPF Authentication

Lab 4:
IGP Advanced

Lab 4.1: Route redistribution

Lab 4.2: Route filtering

Lab 4.3: OSPF Multi area

Lab 4.4: Controlling Updates

Lab 5:
PIX Basic

Lab 5.1: Getting PIX Up and Running

Lab 5.2: Static Routing

Lab 5.3: RIP

Lab 5.4: Translations

Lab 5.5: No NAT

Lab 5.6: PIX management

Lab 5.7: ACLs

Lab 6:
PIX Advanced

Lab 6.1: OSPF

Lab 6.2: Route redistribution

Lab 6.3: Virtual LANs (VLANs)

Lab 6.4: PIX Device Manager (PDM)

Lab 6.5: Object groups

Lab 6.6: Alias

Lab 6.7: Authentication proxy

Lab 6.8: Policy NAT

Lab 6.9: Destination NAT

Lab 6.10: BGP through PIX

Lab 6.11: Advanced filtering for Java, activeX and URL filtering

Lab 7:
BGP Basic

Lab 7.1: IBGP

Lab 7.2: EBGP

Lab 7.3: Route reflectors

Lab 7.4: Next hop self

Lab 7.5: Maximum prefixes

Lab 8:
BGP Advanced

Lab 8.1: Confederations

Lab 8.2: BGP Dampening

Lab 8.3: BGP Route filtering using ACL

Lab 8.4: BGP Route filtering using prefix list

Lab 8.5: BGP route filtering using AS PATH filter list

Lab 8.6: AS PATH Prepend

Lab 8.7: Local AS

Lab 8.8: BGP attributes manipulation

Lab 8.9: Route aggregation

Lab 9:
IOS Features Basic

Lab 9.1: DHCP

Lab 9.2: NTP

Lab 9.3: HTTP authentication

Lab 9.4: Telnet management

Lab 9.5: NAT and PAT

Lab 9.6: HSRP

Lab 10:
IOS Features Advanced

Lab 10.1: TCP intercept

Lab 10.2: Memory **** using RCP

Lab 10.3: Memory **** using TFTP

Lab 10.4: Memory **** using FTP

Lab 10.5: Authentication proxy

Lab 10.6: HTTPS configuration

Lab 10.7: SSH configuration

Lab 10.8: Advanced telnet management

Lab 10.9: Port redirection

Lab 11:
AAA Basic

Lab 11.1: Telnet authentication using local database

Lab 11.2: Telnet authentication using TACACS

Lab 11.3: Telnet authentication using RADIUS

Lab 11.4: Exec authorization using local database

Lab 11.5: Exec authorization using TACACS

Lab 11.6: Accounting using TACACS

Lab 11.7: Accounting using RADIUS

Lab 12:
AAA Advanced

Lab 12.1: PIX authentication using TACACS

Lab 12.2: PIX authentication using RADIUS

Lab 12.3: PIX downloadable ACLs

Lab 12.4: Managing ACS server

Lab 13:
VPN Basic

Lab 13.1: Router to router IPSEC using pre shared keys

Lab 13.2: Router to router GRE tunnel over IPSEC using pre shared keys

Lab 13.3: Router to PIX IPSEC using pre shared keys

Lab 13.4: VPN concentrator CLI basic configuration

Lab 13.5: VPN concentrator GUI basic configuration

Lab 13.6: Static routes on VPN concentrator

Lab 13.7: RIP on VPN concentrator

Lab 13.8: OSPF on VPN concentrator

Lab 13.9: Controlling admin access to the VPN concentrator

Lab 13.10: Remote access VPN between VPN concentrator and VPN software client 4.x using pre shared keys

Lab 13.11: Remote access VPN between VPN concentrator and Microsoft Windows client using PPTP

Lab 13.12: IPSEC LAN-to-LAN between VPN concentrator and router using pre shared keys

Lab 13.13: IPSEC LAN-to-LAN between VPn concentrator and PIX using pre shared keys.

Lab 14:
VPN Advanced

Lab 14.1: Router to router IPSEC using certificate authority (CA)

Lab 14.2: Router to router IPSEC without using NAT-T

Lab 14.3: Router to PIX IPSEC using certificate authority (CA)

Lab 14.4: EZVPN with router as a server and router as a client.

Lab 14.5: EZVPN with PIX as a server and router as a client.

Lab 14.6: EZVPN with router as a server and software VPN client.

Lab 14.7: EZVPN with PIX as a server and software VPN client.

Lab 14.8: Configuring event messages on the VPN concentrator.

Lab 14.9: IPSEC LAN-to-LAN between VPN concentrator and router using certificate authority (CA).

Lab 14.10: Remote access VPN between VPN concentrator and VPN software client with split tunneling.

Lab 14.11: Reverse route injection (RRI) on VPN concentrator.

Lab 14.12: EZVPN with VPN concentrator as a server and router as a client in client mode.

Lab 14.13: EZVPN with VPN concentrator as a server and router as a client in network extension mode.

Lab 14.14: WebVPN (SSL VPN) on VPN concentrator with port forwarding.

Lab 14.15: QOS on concetrator.Lab 16.16: DMVPN on routers.

Lab 14.17: NAT on VPN concentrator.

Lab 14.18: IPSEC between router to router with duplicate subnets on either side.

Lab 14.19: High availability VPN using HSRP and IPSEC.

Lab 15:
CBAC Basic

Lab 15.1: IOS CBAC basic configuration.

Lab 15.2: CBAC parameter optimization.

Lab 16:
CBAC Advanced

Lab 16.1: CBAC with three interfaces.

Lab 16.2: Java filtering

Lab 16.3: URL filtering

Lab 17:
Network Attacks Basic

Lab 17.1: Standard and Extended Access Control Lists (ACLs).

Lab 17.2: Time based ACLs.

Lab 17.3: Reflexive ACLs.

Lab 17.4: Dynamic (Lock and Key) ACLs.

Lab 18:
Network Attacks Advanced

Lab 18.1: Blocking attacks using policy based routing (PBR).Lab 20.2: Configuring Network Based Application Recognition (NBAR) to block attacks.

Lab 18.3: Configuring Network Based Application Recognition (NBAR) to control bandwidth.

Lab 18.4: Configuring Committed Access Rate (CAR) to control bandwidth.

Lab 18.5: ICMP rate limiting.

Lab 18.6: NAT rate limiting.

Lab 19:
IDS Basic

Lab 19.1: IOS IDS basic configuration.

Lab 19.2: PIX IDS basic configuration.

Lab 19.3: IDS sensor basic CLI configuration.

Lab 19.4: IDS sensor basic GUI configuration.

Lab 19.5: IDS sensor admin access.

Lab 19.6: IDS event viewer (IEV) connectivity.

Lab 20:
IDS Advanced

Lab 20.1: IOS IDS advanced configuration.

Lab 20.2: PIX IDS advanced configuration.

Lab 20.3: IDS sensor signature tuning.

Lab 20.4: IDS sensor custom string signature.

Lab 20.5: IDS sensor custom HTTP signature.

Lab 20.6: IDS sensor custom packet signature.

Lab 20.7: IDS sensor blocking on the router.

Lab 20.8: IDS sensor shunning on the PIX.

Lab 20.9: IDS sensor advanced tuning.

Lab 20.10: IDS sensor event filtering.

Each of the 100 points super labs contains the following sections,

Section 1: Switching Security

Section 2: IGP Basic

Section 3: IGP Advanced

Section 4: PIX Basic

Section 5: PIX Advanced

Section 6: BGP Basic

Section 7: BGP Advanced

Section 8: IOS Features

Section 9: AAA

Section 10: VPN Basic

Section 11: VPN Advanced

Section 12: CBAC

Section 13: Network Attacks

Section 14: Network Attacks

Section 15: IDS Basic

Section 16: IDS Advanced

Lab 21:
Super Lab [100 Points]

Lab 22:

Super Lab [100 Points]

Lab 23:
Super Lab [100 Points]

Lab 24:
Super Lab [100 Points]

Lab 25:

Super Lab [100 Points]

Lab 26:

Super Lab [100 Points]

2) IPexpert's Security Workbook & Proctor guide version 3.0

Features:

With over 18 LAB SCENARIOS, (13 Protocol / Technology Focused and 5 1-Day Mock Labs), re-written to match the current CCIE Security lab blueprint and objectives (as of Jan 1, 2006).

Both Products are best to their terms but the most rated product for CCIE Sec is TRINET Only thats what icame to know after councelling tons of people. If any member want help for it they are welcome.

Thanx

Sec guy

CCIE Security Trinet or IPWB???

Comments