Franske ITC-2830 Assignments: Difference between revisions

From ITCwiki
Jump to navigation Jump to search
No edit summary
 
(16 intermediate revisions by the same user not shown)
Line 2: Line 2:
You are responsible for completing ALL of these labs. You must submit a [[Franske Lab Report Format|lab report]] about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.
You are responsible for completing ALL of these labs. You must submit a [[Franske Lab Report Format|lab report]] about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.


* Chapter 0 CCP Setup Lab
* CCNA 2 SBA Review Lab
* Lab 2.5.1.1 (Chapter 2 Lab A): Securing the Router for Administrative Access
* Lab 2.6.1.2: Securing the Router for Administrative Access
* Lab 3.6.1.1 (Chapter 3 Lab A): Securing Administrative Access Using AAA and RADIUS
** Note: It is very important that you make certain that IOS Image Resilience is disabled before you leave the lab! See part 4, task 1, steps 5 & 6 for instructions.
** Note: The WinRadius software used in this lab can be difficult to locate online. A local copy is available on the D drive of your lab systems in the D:\CNT Files\CCNA Security Materials folder.
** Note: This lab uses the OSPF routing protocol. If you are not comfortable configuring the OSPF routing protocol you can use another routing protocol such as RIP to complete the lab instead.
* Lab 4.4.1.1 (Chapter 4 Lab A): Configuring Zone-Based Policy Firewalls
* Lab 3.6.1.1: Securing Administrative Access Using AAA and RADIUS
** Note: This lab utilizes the nmap program to run some port scans. Unfortunately nmap does not run very well in Windows. It is suggested that you download a copy of Linux (Debian is my preferred version), install it to a VM and run nmap from there. If you need some further help with this you can check out [http://www.professormesser.com/nmap/using-nmap-in-a-live-cd-distribution/ this video] or talk to your instructor about it.
** Note: The WinRadius software used in this lab can be difficult to locate online. A local copy is available on the D drive of your lab systems in the D:\CNT Files\CCNA Security Materials folder and a link is in the Student Resources page of the introductory module to the course in NetSpace.
** Note: The auto-secure configuration may fail to apply the configuration changes to your router, this is likely due to a bug in the current IOS 15 version. If your auto-secuure configuration does not apply copy the generated autosecure configuration commands into notepad, remove the offending line (look at your output from the failed application) and paste the configuration back in to global config mode.
* Lab 4.4.1.2: Configuring Zone-Based Policy Firewalls
* Lab 5.5.1.1 (Chapter 5 Lab A): Configuring an Intrusion Prevention System (IPS) Using the CLI and CCP
** Note: You should attempt the "Challenge" section located at the end of this lab. You must also complete the "Appendix - Multiple Interfaces under the Same Zone" section at the end of the lab.
* Lab 5.4.1.1: Configure an Intrusion Prevention System (IPS)
** Note: Support files for this lab including the IPS signature files can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
** Note: Support files for this lab including the IPS signature files can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
* Lab 6.5.1.1 (Chapter 6 Lab A): Securing Layer 2 Switches
* Lab 6.3.1.1: Securing Layer 2 Switches
* Lab 8.7.1.1 (Chapter 8 Lab A): Configuring a Site-to-Site VPN Using Cisco IOS and CCP
* Lab 8.4.1.3: Configuring a Site-to-Site VPN Using Cisco IOS
* Lab 8.7.1.2 (Chapter 8 Lab B): Configuring a Remote Access VPN Server and Client
* Lab 9.3.1.2: Configuring ASA Basic Settings and Firewall Using CLI
** Note: Support files for this lab including the Cisco VPN client can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
** Note: If you have problems connecting to the ASA with a web browser and receive errors such as a "cipher mismatch" it's likely that the 3DES/AES license has not been activated yet on your ASA. This is a free process where you can request a license key from Cisco by entering the serial number of your ASA (from the ''show version'' output which can also verify that the VPN-3DES-AES feature is not active) into a web form on the Cisco site and then entering the resulting activation key into your ASA. Instructions for doing this can be found [[Cisco ASA Documentation|on the Cisco ASA Documentation wiki page]].
* Lab 9.4.1.1: Configuring ASA Basic Settings and Firewall Using CLI
* Lab 10.1.4.8: Configuring ASA Basic Settings and Firewall Using ASDM
* Lab 9.4.1.2: Configuring ASA Basic Settings and Firewall Using ASDM
** Note: You may need to adjust your Java security settings in order to run ASDM from the ASA's webpage. Recent versions of Java have restricted the ability to run unsigned Java applets from websites due to the possible security issues of running untrusted code from a website locally on your system. Java security settings can be found in the Java section of your system's control panel.
** Note: You may need to adjust your Java security settings in order to run ASDM from the ASA's webpage. Recent versions of Java have restricted the ability to run unsigned Java applets from websites due to the possible security issues of running untrusted code from a website locally on your system. Java security settings can be found in the Java section of your system's control panel.
* Lab 9.4.1.3: Configuring Clientless and AnyConnect Remote Access SSL VPNs Using ASDM
* Lab 10.2.1.9: Configure a Site-to-Site IPsec VPN between an ISR and an ASA
* Lab 9.4.1.4: Configuring a Site-to-Site IPSec VPN Using CCP and ASDM
* Lab 10.3.1.1: Configure Clientless Remote Access SSL VPNs Using ASDM
* Lab 10.8.1.1: CCNA Security Comprehensive Lab
* Lab 10.3.1.2: Configure AnyConnect Remote Access SSL VPN Using ASDM
** Note: There are a few errors in the network diagram and addressing table of this lab
* Lab 11.3.1.2: CCNA Security Comprehensive Lab
*** The network between the ASA and R1 should be 209.165.200.8/29
*** S1's management address should be on VLAN 3
*** S3's default gateway address should be 172.16.1.1
*** E0/2 on the ASA should be in VLAN 3


=Homework=
=Homework=
Line 35: Line 31:
* Complete the online course feedback form (5 points for completing)
* Complete the online course feedback form (5 points for completing)
* Complete a practice CCNA Security exam (10 points for attempting)
* Complete a practice CCNA Security exam (10 points for attempting)
* Complete practice online final exam (10 points for attempting)
* Complete online pretest (10 points for attempting)
* Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)
* Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)


Line 49: Line 47:
* Chapter 9
* Chapter 9
* Chapter 10
* Chapter 10
* Chapter 11


=Other=
=Other=
Line 56: Line 55:


=Skills Final Exam=
=Skills Final Exam=
The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios.
The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios. There are two parts to this portion of your grade.
* Half of your grade in this category will be based on successfully completing all parts of the online Packet Tracer Practice Skills Exam at home. You grade will be based on correctly completing all parts of the activity. You will be able to use outside resources for this part of the exam.
* Half of your grade in this category will be based on completing an in-class skills exam. You will not be able to use any resources other than those specified by your instructor on this part of the exam.


=Technical Presentation=
In this class you and a partner will need to give a technical presentation on a topic of your choice related to the course. Your brief 15 minute presentation will be given towards the end of the course, see the course calendar for details. Additional details will be provided as the course progresses.
You MUST document your presentation on an e-folio site which will be checked again before you graduate to make certain you have achieved all of the workplace competencies skills which are required. See http://www.efoliominnesota.com for details on setting up an efolio site.


[[Franske ITC-2830|Return to ITC-2830 Homepage]]
[[Franske ITC-2830|Return to ITC-2830 Homepage]]

Latest revision as of 20:29, 4 May 2020

Labs

You are responsible for completing ALL of these labs. You must submit a lab report about each lab you do. If you work with a partner on a lab you only need to submit a single lab report for the two of you but it must have both your names on it. Each lab is worth 20 points. This falls into the Labs/Homework category of your course grade.

  • CCNA 2 SBA Review Lab
  • Lab 2.6.1.2: Securing the Router for Administrative Access
    • Note: It is very important that you make certain that IOS Image Resilience is disabled before you leave the lab! See part 4, task 1, steps 5 & 6 for instructions.
    • Note: This lab uses the OSPF routing protocol. If you are not comfortable configuring the OSPF routing protocol you can use another routing protocol such as RIP to complete the lab instead.
  • Lab 3.6.1.1: Securing Administrative Access Using AAA and RADIUS
    • Note: The WinRadius software used in this lab can be difficult to locate online. A local copy is available on the D drive of your lab systems in the D:\CNT Files\CCNA Security Materials folder and a link is in the Student Resources page of the introductory module to the course in NetSpace.
  • Lab 4.4.1.2: Configuring Zone-Based Policy Firewalls
    • Note: You should attempt the "Challenge" section located at the end of this lab. You must also complete the "Appendix - Multiple Interfaces under the Same Zone" section at the end of the lab.
  • Lab 5.4.1.1: Configure an Intrusion Prevention System (IPS)
    • Note: Support files for this lab including the IPS signature files can be found in the D:\CNT Files\CCNA Security Materials folder on your lab computer.
  • Lab 6.3.1.1: Securing Layer 2 Switches
  • Lab 8.4.1.3: Configuring a Site-to-Site VPN Using Cisco IOS
  • Lab 9.3.1.2: Configuring ASA Basic Settings and Firewall Using CLI
    • Note: If you have problems connecting to the ASA with a web browser and receive errors such as a "cipher mismatch" it's likely that the 3DES/AES license has not been activated yet on your ASA. This is a free process where you can request a license key from Cisco by entering the serial number of your ASA (from the show version output which can also verify that the VPN-3DES-AES feature is not active) into a web form on the Cisco site and then entering the resulting activation key into your ASA. Instructions for doing this can be found on the Cisco ASA Documentation wiki page.
  • Lab 10.1.4.8: Configuring ASA Basic Settings and Firewall Using ASDM
    • Note: You may need to adjust your Java security settings in order to run ASDM from the ASA's webpage. Recent versions of Java have restricted the ability to run unsigned Java applets from websites due to the possible security issues of running untrusted code from a website locally on your system. Java security settings can be found in the Java section of your system's control panel.
  • Lab 10.2.1.9: Configure a Site-to-Site IPsec VPN between an ISR and an ASA
  • Lab 10.3.1.1: Configure Clientless Remote Access SSL VPNs Using ASDM
  • Lab 10.3.1.2: Configure AnyConnect Remote Access SSL VPN Using ASDM
  • Lab 11.3.1.2: CCNA Security Comprehensive Lab

Homework

Any homework assigned in the course will go here. This falls into the Labs/Homework category of your course grade. Remember, for homework assignments turn in the actual pages from your lab book or printouts from the curriculum and not a lab report.

  • Participate in an online forum discussion (typically 3 quality posts or more) of each chapter on the NetSpace site. See forum posting page for details. (up to 10 points each chapter based on quality)

Participation Activities

Any participation activities completed in the course will go here. This falls into the participation category of your course grade.

  • Complete the online course feedback form (5 points for completing)
  • Complete a practice CCNA Security exam (10 points for attempting)
  • Complete practice online final exam (10 points for attempting)
  • Complete online pretest (10 points for attempting)
  • Meet with the instructor once per week to discuss course progress and ask questions (up to 10 points each based on progress)

Unit Assessments

You are responsible for completing all of the online unit assessments listed below. These fall into the online assessments category of your course grade. You and your lab partner will work with the instructor to set a due date for each exam.

  • Chapter 1
  • Chapter 2
  • Chapter 3
  • Chapter 4
  • Chapter 5
  • Chapter 6
  • Chapter 7
  • Chapter 8
  • Chapter 9
  • Chapter 10
  • Chapter 11

Other

You are also responsible for completing these things, see the course syllabus for category and weighting information.

  • Online Final Exam
  • Skills Final Exam

Skills Final Exam

The Skills Final Exam is designed to test your ability to apply the concepts learned in this class and practiced in labs to common, real-world scenarios. There are two parts to this portion of your grade.

  • Half of your grade in this category will be based on successfully completing all parts of the online Packet Tracer Practice Skills Exam at home. You grade will be based on correctly completing all parts of the activity. You will be able to use outside resources for this part of the exam.
  • Half of your grade in this category will be based on completing an in-class skills exam. You will not be able to use any resources other than those specified by your instructor on this part of the exam.


Return to ITC-2830 Homepage

Retrieved from "https://wiki.ihitc.net/mediawiki/index.php?title=Franske_ITC-2830_Assignments&oldid=8065"