Home | Skip to Content | Skip to Search | Skip to Navigation | Skip to Footer |
Worldwide [change] |Register |About Cisco
Guest

Hierarchical Navigation

Government and Industry Support

Securing Cisco Routers Online Training
Untitled Document

Securing Cisco Routers - Computer Based Training

Securing Cisco Routers (SECR) v1.0 teaches the top ten steps to improving Cisco router security. It combines an updated version of the popular Cisco Router Security (CRS) course with the new Advanced Cisco Router Security (ACRS) course.

Based on industry best practices and the newest in Cisco IOS security features, SECR contains tutorials, animations, and configuration examples that teach you how to configure Cisco routers to ensure maximum device security. Practice what you learn in a safe training environment through e-lab simulations of the Cisco IOS software command-line interface. Finally, test your knowledge using the built-in assessment quizzes.

Are you certain that you have completed the "top ten" security steps on every Cisco router under your control? Complete the SECR course and learn how!

Course Information - SECR v1.0

SECR is an eight hour computer-based training (CBT) course covering the top ten best practices system administrators should follow with every Cisco router under their control to make sure they are as secure as possible. The SECR course consists of two units: Cisco Router Security (CRS) and Advanced Cisco Router Security (ACRS). SECR contains hands-on tutorials, animated graphics, e-labs, and extensive web links for additional information for network administrators and their managers. Unit One, CRS, was initially released as a standalone course in August of 2003. If you previously completed CRS, you may wish to focus on Unit Two, ACRS.

The training was developed by Cisco's Critical Infrastructure Assurance Group (CIAG) to help raise awareness of the need to ensure that Cisco routers used in critical infrastructure networks are configured securely based on industry best practices and Cisco IOS software features.

Unit One: CRS v1.1

As unit one of the SECR course, CRS focuses on the first five of the "top ten" steps every system administrator should take to improve router security. CRS is based on best industry practices and Cisco IOS security features, such as Auto Secure and the Security Device Manager.

First Five Recommended Steps:

  1. Secure router remote access
  2. Disable unneeded servers
  3. Disable unneeded IP services
  4. Configure basic access lists
  5. Enable logging

CRS 1.1 Unit Objectives

Upon completion of this unit, you will be able to perform the following tasks:

  • Identify why Cisco routers should be audited to ensure they are securely configured
  • Configure router access controls, and set secure passwords accounts and privilege levels
  • Identify how to harden a router by disabling unneeded servers
  • Identify how to improve router security by disabling unneeded network services
  • Configure access control lists to control access to a router
  • Enable a router to log events by configuring the router clock and Syslog
  • Identify additional steps you can take to ensure router security and to locate additional router security resources

Unit Two: ACRS v1.0

ACRS, which is unit two of the SECR course, completes the top ten steps every system administrator should take to improve router security. ACRS is based on industry best practices and Cisco IOS security features such as secure management access and the Cisco IOS Intrusion Protection System. This unit is designed primarily for students who have completed SECR Unit One or the CRS course and want to further develop their router security expertise.

Second Five Recommended Steps:

  1. Secure management access
  2. Enable Authentication Authorization and Accounting
  3. Configure traffic filtering
  4. Enable routing security
  5. Perform router maintenance and testing

ACRS 1.0 Unit Objectives

Upon completion of this unit, you will be able to perform the following tasks:

  • Utilize encrypted protocols and applications to securely manage local or remote routers
  • Utilize Authentication Authorization and Accounting services to improve identity control
  • Identify techniques to use traffic filtering with access control lists to mitigate common attacks
  • Identify methods to improve routing protocol management
  • Understand the importance of performance management, maintenance, and security validation of all routers
  • Identify additional router security enhancements contained in the Cisco IOS Firewall

Audience

  • SECR has been developed for network system administrators with the following assumed background:
  • Has basic knowledge and skill set that permits the user to log into a router and enter configuration commands (working knowledge of Cisco IOS command syntax)
  • Is not a security expert per se, but sees the need to learn how to secure the router infrastructure under their control
  • Has a basic knowledge of the Windows or Unix operating system

A secondary audience of Executives/Managers can benefit from this course as they develop policy and training for their staff. Prerequisites include knowledge of how Cisco routers are deployed in existing infrastructure networks.

For More Information

If you would like more information about the Securing Cisco Routers training, please contact the Training Manager at ciag-training@cisco.com
Related Items
Securing Cisco Routers

Course Delivery Mechanisms

  1. Free online at:
    SECR v1.0 Training
  1. Order a CD-ROM from the Cisco Company Store at www.cisco.com/go/ marketplace
    • Log into cisco.com with your username and password. -or-
      Sign up for a Free Guest Account for cisco.com
    • At Marketplace home page, click on: "Collateral & Subscription Store"
    • Search for SECR
    • Place the order
  2. Free online for Partners at:
    SECR v1.0 Training
    (Requires PEC login)