Franske ITC-2830 Assignments: Difference between revisions

From ITCwiki
Jump to navigation Jump to search
 
(21 intermediate revisions by the same user not shown)
Line 2: Line 2:
You are responsible for completing ALL of these labs. You must submit a [[Franske Lab Report Format|lab report]] about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.
You are responsible for completing ALL of these labs. You must submit a [[Franske Lab Report Format|lab report]] about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.


* Chapter 0 CCP Setup Lab
* CCNA 2 SBA Review Lab
* Chapter 2 Lab A
* Lab 2.6.1.2: Securing the Router for Administrative Access
* Chapter 3 Lab A
** Note: It is very important that you make certain that IOS Image Resilience is disabled before you leave the lab! See part 4, task 1, steps 5 & 6 for instructions.
** Note: This lab (Part 4, Task 2) suggests downloading and installing WinRadius which is no longer available. You may use another RADIUS server instead. One example of a fairly easy to use one for Windows is TekRADIUS LT available for [http://tekradius.com/release/tekradiuslt.zip download here]. If you prefer a simpler (and faster) text-only configuration file you can try the Windows version of [http://freeradius.net/Downloads.html FreeRADIUS].
** Note: This lab uses the OSPF routing protocol. If you are not comfortable configuring the OSPF routing protocol you can use another routing protocol such as RIP to complete the lab instead.
* Chapter 4 Lab A
* Lab 3.6.1.1: Securing Administrative Access Using AAA and RADIUS
** Note: This lab utilizes the nmap program to run some port scans. Unfortunately nmap does not run very well in Windows. It is suggested that you download a copy of Linux (Debian is my preferred version), install it to a VM and run nmap from there. If you need some further help with this you can check out [http://www.professormesser.com/nmap/using-nmap-in-a-live-cd-distribution/ this video] or talk to your instructor about it.
** Note: The WinRadius software used in this lab can be difficult to locate online. A local copy is available on the D drive of your lab systems in the D:\CNT Files\CCNA Security Materials folder and a link is in the Student Resources page of the introductory module to the course in NetSpace.
** Note: The auto-secure configuration may fail to apply the configuration changes to your router, this is likely due to a bug in the current IOS 15 version. If your auto-secuure configuration does not apply copy the generated autosecure configuration commands into notepad, remove the offending line (look at your output from the failed application) and paste the configuration back in to global config mode.
* Lab 4.4.1.2: Configuring Zone-Based Policy Firewalls
* Chapter 5 Lab A
** Note: You should attempt the "Challenge" section located at the end of this lab. You must also complete the "Appendix - Multiple Interfaces under the Same Zone" section at the end of the lab.
* Chapter 6 Lab A
* Lab 5.4.1.1: Configure an Intrusion Prevention System (IPS)
* Chapter 8 Lab A
** Note: Support files for this lab including the IPS signature files can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
* Chapter 8 Lab B
* Lab 6.3.1.1: Securing Layer 2 Switches
* Chapter 9 Lab A
* Lab 8.4.1.3: Configuring a Site-to-Site VPN Using Cisco IOS
** Note: Cisco Security Policy Builder tool is no longer available, skip that part of the lab.
* Lab 9.3.1.2: Configuring ASA Basic Settings and Firewall Using CLI
* Chapter 10 Lab A
** Note: If you have problems connecting to the ASA with a web browser and receive errors such as a "cipher mismatch" it's likely that the 3DES/AES license has not been activated yet on your ASA. This is a free process where you can request a license key from Cisco by entering the serial number of your ASA (from the ''show version'' output which can also verify that the VPN-3DES-AES feature is not active) into a web form on the Cisco site and then entering the resulting activation key into your ASA. Instructions for doing this can be found [[Cisco ASA Documentation|on the Cisco ASA Documentation wiki page]].
* Chapter 10 Lab B
* Lab 10.1.4.8: Configuring ASA Basic Settings and Firewall Using ASDM
* Chapter 10 Lab C
** Note: You may need to adjust your Java security settings in order to run ASDM from the ASA's webpage. Recent versions of Java have restricted the ability to run unsigned Java applets from websites due to the possible security issues of running untrusted code from a website locally on your system. Java security settings can be found in the Java section of your system's control panel.
* Chapter 10 Lab D
* Lab 10.2.1.9: Configure a Site-to-Site IPsec VPN between an ISR and an ASA
* Lab 10.3.1.1: Configure Clientless Remote Access SSL VPNs Using ASDM
* Lab 10.3.1.2: Configure AnyConnect Remote Access SSL VPN Using ASDM
* Lab 11.3.1.2: CCNA Security Comprehensive Lab


=Homework=
=Homework=
Any homework assigned in the course will go here. This falls into the Labs/Homework category of your course grade. Remember, for homework assignments turn in the actual pages from your lab book or printouts from the curriculum and not a lab report.
Any homework assigned in the course will go here. This falls into the Labs/Homework category of your course grade. Remember, for homework assignments turn in the actual pages from your lab book or printouts from the curriculum and not a lab report.
* A written chapter summary assignment must be turned in for each chapter (up to 10 points each)
* Participate in an online forum discussion (typically 3 quality posts or more) of each chapter on the NetSpace site. See [[Franske Forum Posting Format|forum posting page]] for details. (up to 10 points each chapter based on quality)


=Participation Activities=
=Participation Activities=
Line 28: Line 31:
* Complete the online course feedback form (5 points for completing)
* Complete the online course feedback form (5 points for completing)
* Complete a practice CCNA Security exam (10 points for attempting)
* Complete a practice CCNA Security exam (10 points for attempting)
* Complete practice online final exam (10 points for attempting)
* Complete online pretest (10 points for attempting)
* Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)
* Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)


Line 42: Line 47:
* Chapter 9
* Chapter 9
* Chapter 10
* Chapter 10
* Chapter 11


=Other=
=Other=
Line 49: Line 55:


=Skills Final Exam=
=Skills Final Exam=
The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios.
The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios. There are two parts to this portion of your grade.
 
* Half of your grade in this category will be based on successfully completing all parts of the online Packet Tracer Practice Skills Exam at home. You grade will be based on correctly completing all parts of the activity. You will be able to use outside resources for this part of the exam.
=Online Competitions=
* Half of your grade in this category will be based on completing an in-class skills exam. You will not be able to use any resources other than those specified by your instructor on this part of the exam.
You must sign up for and participate in the following competitions. After the conclusion of each competition you must turn in a reflection paper which describes your experience with the competition including what you learned from it.
* [https://online.cyberaces.org/ Cyber Aces]
* [http://www.academynetriders.com Cisco NetRiders]




[[Franske ITC-2830|Return to ITC-2830 Homepage]]
[[Franske ITC-2830|Return to ITC-2830 Homepage]]

Latest revision as of 20:29, 4 May 2020

Labs

You are responsible for completing ALL of these labs. You must submit a lab report about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.

  • CCNA 2 SBA Review Lab
  • Lab 2.6.1.2: Securing the Router for Administrative Access
    • Note: It is very important that you make certain that IOS Image Resilience is disabled before you leave the lab! See part 4, task 1, steps 5 & 6 for instructions.
    • Note: This lab uses the OSPF routing protocol. If you are not comfortable configuring the OSPF routing protocol you can use another routing protocol such as RIP to complete the lab instead.
  • Lab 3.6.1.1: Securing Administrative Access Using AAA and RADIUS
    • Note: The WinRadius software used in this lab can be difficult to locate online. A local copy is available on the D drive of your lab systems in the D:\CNT Files\CCNA Security Materials folder and a link is in the Student Resources page of the introductory module to the course in NetSpace.
  • Lab 4.4.1.2: Configuring Zone-Based Policy Firewalls
    • Note: You should attempt the "Challenge" section located at the end of this lab. You must also complete the "Appendix - Multiple Interfaces under the Same Zone" section at the end of the lab.
  • Lab 5.4.1.1: Configure an Intrusion Prevention System (IPS)
    • Note: Support files for this lab including the IPS signature files can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
  • Lab 6.3.1.1: Securing Layer 2 Switches
  • Lab 8.4.1.3: Configuring a Site-to-Site VPN Using Cisco IOS
  • Lab 9.3.1.2: Configuring ASA Basic Settings and Firewall Using CLI
    • Note: If you have problems connecting to the ASA with a web browser and receive errors such as a "cipher mismatch" it's likely that the 3DES/AES license has not been activated yet on your ASA. This is a free process where you can request a license key from Cisco by entering the serial number of your ASA (from the show version output which can also verify that the VPN-3DES-AES feature is not active) into a web form on the Cisco site and then entering the resulting activation key into your ASA. Instructions for doing this can be found on the Cisco ASA Documentation wiki page.
  • Lab 10.1.4.8: Configuring ASA Basic Settings and Firewall Using ASDM
    • Note: You may need to adjust your Java security settings in order to run ASDM from the ASA's webpage. Recent versions of Java have restricted the ability to run unsigned Java applets from websites due to the possible security issues of running untrusted code from a website locally on your system. Java security settings can be found in the Java section of your system's control panel.
  • Lab 10.2.1.9: Configure a Site-to-Site IPsec VPN between an ISR and an ASA
  • Lab 10.3.1.1: Configure Clientless Remote Access SSL VPNs Using ASDM
  • Lab 10.3.1.2: Configure AnyConnect Remote Access SSL VPN Using ASDM
  • Lab 11.3.1.2: CCNA Security Comprehensive Lab

Homework

Any homework assigned in the course will go here. This falls into the Labs/Homework category of your course grade. Remember, for homework assignments turn in the actual pages from your lab book or printouts from the curriculum and not a lab report.

  • Participate in an online forum discussion (typically 3 quality posts or more) of each chapter on the NetSpace site. See forum posting page for details. (up to 10 points each chapter based on quality)

Participation Activities

Any participation activities completed in the course will go here. This falls into the participation category of your course grade.

  • Complete the online course feedback form (5 points for completing)
  • Complete a practice CCNA Security exam (10 points for attempting)
  • Complete practice online final exam (10 points for attempting)
  • Complete online pretest (10 points for attempting)
  • Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)

Unit Assessments

You are responsible for completing all of the online unit assessments listed below. These fall into the online assessments category of your course grade. You and your lab partner will work with the instructor to set a due date for each exam.

  • Chapter 1
  • Chapter 2
  • Chapter 3
  • Chapter 4
  • Chapter 5
  • Chapter 6
  • Chapter 7
  • Chapter 8
  • Chapter 9
  • Chapter 10
  • Chapter 11

Other

You are also responsible for completing these things, see the course syllabus for category and weighting information.

  • Online Final Exam
  • Skills Final Exam

Skills Final Exam

The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios. There are two parts to this portion of your grade.

  • Half of your grade in this category will be based on successfully completing all parts of the online Packet Tracer Practice Skills Exam at home. You grade will be based on correctly completing all parts of the activity. You will be able to use outside resources for this part of the exam.
  • Half of your grade in this category will be based on completing an in-class skills exam. You will not be able to use any resources other than those specified by your instructor on this part of the exam.


Return to ITC-2830 Homepage