Explore the concept of a network as a fully interconnected group of devices, including computers, servers, switches, routers, and firewalls, with internet connectivity, and LAN, MAN, WAN types.

Define a local area network as a small geographical area, like a department, and list its components—PCs, switches, NIC, cables, printers, scanners—plus sizing with 48-port switches.

Define the metropolitan area network as a city-scale network interconnecting users with resources across an area larger than a LAN but smaller than a WAN, with a cable operator backbone.

This lecture explains wide area networks, enabling long distance data, voice, image, and video transmission between sites, with routers, firewalls, address translation, and proxies coordinating secure connectivity.

Explain campus area networks and storage area networks, showing how CAN connects users within buildings and SAN maps block-level storage to servers while the OS sees it as local.

Explore how an enterprise network securely carries voice, video, data, and management traffic over a single network infrastructure, with firewalls, distribution and access switches, and integrated security.

Explore how small office home office networks emerged with personal computers and the internet, enabling work from home. Learn the data center concept, redundancy, and secure, powered networking infrastructure.

Explore networking basics, including peer-to-peer workgroups with no centralized management and server-based networks with centralized control, policies, redundancy, and domain controllers using Active Directory.

This lecture introduces networking devices and cables, including connectors, firewalls, and proxy servers, and covers straight, cross, rolled-over cables and fiber optic links between routers and switches.

Study switches and routers, including layer 2 and layer 3 concepts, and review Cisco security devices such as firewalls, proxy servers, and identity service engine.

Learn to configure peer-to-peer networking on Windows XP, assign IP addresses, configure firewall and sharing, and access shared data between two PCs.

Configure server-based networking on Windows XP and Windows Server 2003. Promote the server to a domain controller, set IP and DNS, join clients, and manage user accounts and policies.

Configure peer-to-peer networking between two Windows 7 PCs, set IP, disable firewall, and share a folder to test file access.

Configure server-based networking with Windows 7 and Windows Server 2008 by setting IP addresses, creating a new forest domain, enabling DNS, and joining PCs to the domain.

Explore firewalls as network security devices that monitor traffic, enforce rules to allow or block data, and manage inside, outside, and DMZ with 0–100 security levels.

Explore packet filtering essentials, including stateless vs. stateful filtering, and master standard, extended, and named access lists with time-based and reflexive options.

Explore how a proxy server acts as an intermediate between inside users and the internet, enforcing category-based access to block gaming sites.

Track the state of each connection in a state table within a stateful firewall, recording source and destination ip addresses and ports, then forward valid packets and drop non-matching replies.

Learn how a transparent firewall functions as a layer 2 device, a bump in the wire not seen as a router, filtering by destination and using inside and outside interfaces.

Cisco Talos engineers maintain a web server reputation database to classify servers as bad or good and enforce actions on next-generation firewalls.

Learn how identity firewalls enable granular access control by applying policies to usernames and user groups rather than IP addresses, using Active Directory integration and external AD agents.

explore proxy firewalls, stateful inspection, utm, and next-generation and threat-focused firewalls, highlighting application visibility, malware protection, intrusion prevention system, cloud management, and data loss prevention.

Explore Cisco ASA firewall introduction, comparing first and second generation devices with stateful firewall, vpn, ssl, content inspection, and application visibility and control.

Learn the basics of configuring a Cisco ASA 8.2 device in a lab. Set IP addresses in the 192.168.x.x range, name interfaces, and configure enable passwords.

Explore Cisco iOS firewall features such as NAT address translation, CBAC stateful and application-aware filtering, and application mapping with custom ports. Learn how DCP intercept and logging support security monitoring.

Explore IOS access-list concepts, including standard and extended lists, named and time-based filters, dynamic and reflexive ACLs, and DCP established access list controls to manage traffic.

Explore how to configure standard access-lists on Cisco IOS, apply them to interfaces, deny specific hosts while permitting others, and verify connectivity and telnet access in a multi-router lab.

Learn to configure IOS extended access lists to control traffic between hosts, denying ICMP while permitting other protocols, and verify with ping tests across PC1, PC3, and FTB.

Explore IOS named access-list by creating extended lists, applying them to interfaces, and building rules to permit ICMP and selected traffic while denying the rest.

Learn to configure time based access lists on IOS using time ranges, clock settings, and weekday schedules to control traffic during specific hours.

Learn to configure an extended dynamic access list on IOS, apply it to an interface, and validate dynamic entries with telnet tests and show commands.

Explore reflexive access-lists in an iOS lab, using extended dynamic access lists to control traffic from inside trusted networks to outside and reflect UDP, ICMP, and TCAP with session tracking.

Discover how to configure reflexive access lists on ios using the tcp established keyword, building extended ip access-lists to match from any source to any destination and apply deny.

Master NAT concepts, mapping private IPs to public IPs, using static NAT, dynamic NAT, and port address translation (PAT), to allow private networks to access the internet.

Configure iOS static NAT lab to map a private internal IP to a public IP in a bidirectional one-to-one translation, verify PC connectivity to internet and to Google.

Configure IOS dynamic NAT by defining an inside and outside interface, creating an ACL and an IP NAT pool, and mapping inside hosts to the pool for internet access.

Configure ip nat inside source with an access-list to translate inside addresses to a single public ip, overload using port numbers, and verify translations with show ip nat translation.

Learn IOS static NAT with port forwarding, mapping internal addresses to a public IP for ports like 21 and 23, and verify with telnet and show ip nat translation.

Configure static PAT on a router with non standard ports, translating inside ports to public IPs across inside and outside interfaces, using mappings like 21:21, 23:23, and 80:80.

Learn IOS zone-based firewall basics by defining inside, DMZ, and outside zones, attaching them to interfaces, and enforcing policies with class maps and policy maps, including stateful packet inspection.

Configure a two-zone ios zone-based firewall with inside and outside zones, assign interfaces and ip addresses, and implement class map, policy map, and inspect rules to control traffic.

Set up a three-zone IOS zone-based firewall and configure inside, outside, and DMZ interfaces; define policy maps and class maps with inspect, apply access-control lists, and verify inter-zone connectivity.

Explore a four-zone IOS zone-based firewall lab, configure DMZ1 and DMZ2 interfaces, assign IP addresses, and implement class-map and policy-map-based inspection to secure traffic between inside, DMZ1, DMZ2, and outside.

Explore how network address translation enables private to public address mapping, covering static, dynamic, identity, and twice NAT, along with private vs public IP ranges and examples in ASA environments.

Configure ASA 9.x static NAT using object networks to map inside hosts to public IPs, set up interfaces and ACLs, and test connectivity with ping and telnet.

Configure dynamic NAT on an ASA 9.x: define object networks for inside and DMZ, create a dynamic pool, map inside to outside, and verify translations.

Learn to configure dynamic NAT and port address translation on ASA 9.x by defining object networks, mapping inside and dmz interfaces to the outside, and applying access rules.

Configure static port address translation on ASA 9.x using object networks and access-lists to map inside hosts to a public IP and verify connectivity.

Learn how to configure inside to outside dynamic and static nat using object networks in asa 9.x, including dmz, destination matching, and icmp translation, with practical lab steps.

Explore configuring identity NAT in ASA 9.x by creating object networks, translating inside to outside, and implementing site-to-site and SSL VPN scenarios to observe NAT effects.

Configure ios rip authentication between two routers using md5 and a key chain. Verify updates with show ip rip and troubleshoot with debug ip rip.

Configure eigrp authentication on both routers using a key chain to enable neighbor adjacency, verify with show commands and debug outputs until authentication succeeds.

Participate in an IOS OSPF authentication lab, configuring interface authentication from plain text to MD5, and verify neighbors with show ip ospf neighbor and debug outputs.

Configure IS-IS authentication between intermediate systems by building an authentication key chain, applying md5 on interfaces, and verifying with show history and debugging to secure neighbor communications.

Configure BGP authentication between two routers, define networks and neighbors, set the password Shivah, and verify the peering with show commands to ensure an established session.

Learn how to configure IPv6 EIGRP authentication on Cisco IOS, including IPv6 address setup, EIGRPv6 enablement, key chains, and applying authentication on interfaces.

Configure OSPFv3 authentication on IPv6 interfaces using MD5 or SHA, and set matching passwords. Verify neighbor adjacency and reachability after enabling authentication.

Learn to configure ios is-is v6 authentication in a lab, setting up interface authentication, neighbor trust, and keys for ipv6 interfaces.

Configure rip authentication on interfaces, assign correct IP addresses, enable passive interfaces, and create key chains with proper key IDs to secure updates; verify with show and debug commands.

Configure EIGRP authentication on ASA in this lab, including setting authentication mode and key chain ABC, enabling passive interfaces, advertising networks, and verifying neighbor reachability with show commands and debugging.

Practice configuring OSPF authentication in a lab, establish neighbor relationships, troubleshoot authentication mismatches, and implement message-digest authentication to secure OSPF on a Cisco ASA environment.

Explore how authentication, authorization, and accounting (AAA) govern access to routers, switches, and firewalls, using RADIUS, TACACS+, and proxy-based authentication in large networks.

Install Active Directory on Windows Server 2008 by creating a new forest, setting a domain name, and configuring a complex password, then complete the setup and reboot to finalize activation.

Learn to install Cisco ACS 5.8 on a virtual machine, configure network settings, and activate the license through the GUI using admin login.

Install Cisco ISE on a VM using Red Hat 6 64-bit Linux, configuring memory, disks, and network, then set hostname, IP, DNS, and credentials; expect a lengthy installation and reboot.

Learn to install Cisco ISE 1.4.0 on a virtual machine, from creating the VM and installing Red Hat Linux to configuring network, DNS, gateway, and initial ISE setup.

Explore how to install Cisco ISE 2.0.0 on a virtual machine by downloading from Cisco, importing the image, configuring IP settings, domain, and admin credentials, and verifying all services run.

Learn to join an Active Directory domain to Cisco ACS 5.8.0, configure an identity store sequence, and create groups to manage access, verify and test membership.

Learn how to integrate Active Directory with Cisco ISE 1.1.4, join Active Directory to ISE, add groups, configure identity source sequence, and verify authentication using local and directory data.

Discover how to integrate active directory with Cisco ISE 1.4.0, join ISE to AD, configure identity sources and identity source sequences, and apply policy to use AD identities.

Learn to integrate Active Directory with Cisco ISE 2.0 by adding Active Directory as an identity source, joining the domain, and configuring identity groups, identity sequences, and policies.

Configure cut-through proxy using ACS 5.8 TACACS+ across dmz networks, set up IP addresses and static dmz mappings, and verify ftp, http, udp, and icmp access with tacacs+ authentication.

Learn to configure CTP lab with radius using ACS 5.8, establish DMZ and internet access, and verify authentication and connectivity across inside and external hosts.

Explore the IINSv3 CTP lab with ISE 2.0 and Radius, configuring ice 2.0 protocol, DMZ access, static routes, and identity-based administration for secure internet access.

Explain site-to-site IPsec VPN concepts between branches, comparing leased lines and broadband, and show how IKE negotiates encryption, integrity, and authentication using pre-shared keys or certificates.

Explore IPsec concepts, IKE modes and phases, including main mode, aggressive mode, quick mode, phase 1.5, and phase 2, with initiator-responder exchanges, proposals, keys, and security associations.

Explore ipsec basics, including diffie-hellman key exchange, key protection, and symmetric algorithms such as des, 3des, and aes for confidentiality, integrity, and peer authentication via PKI certificates.

Learn how ipsec secures data with encryption and integrity hashing, handles nat traversal with udp headers, and navigates ike negotiations across vpn deployments.