Implementing Cisco IOS Network Security exam, 640-554

Author: Tyler H Spencer

IINS, Implementing Cisco IOS Network Security exam is part of the CCNA security certifications. As the name of the exam suggests, the 640-554 tests a candidate’s knowledge about the securing of Cisco associated networks with Cisco routers and switches. The Implementing Cisco IOS Network Security exam comes in four languages: English, Japanese, Chinese, and Russian. The exam is of duration of 90 minutes having 50-65 questions.

The questions in the 640-554 exam are related to the following topics:

Cisco Routers and Security:

It deals with the implementation of security on Cisco routers, description of IPv4 and IPv6 transition, Cisco Security Manager, securing the data, control and management plane.

AAA (authentication, authorization, and accounting):

Implementation of AAA (accounting, authorization, and authentication), verification of AAA functionality, description of AAA, TACACS+ and RADIUS.

Access Control Lists (ACCs):

Description of different types of IP IOS ACCS; named, extended, and standard, their usage in filtering packets, building of ACLs and description of the considerations whilst building them, implementation of IP ACLs for the mitigation of threats in a network.

Reporting and Secure Network Management:

Involves the description and implementation of secure management network.

Layer 2 Common Attacks:

Layer 2 security description, usage of Cisco security switches in Layer 2 security, description of VLAN security, implementation of VLANs and trunking.

Firewall technologies:

Description of Cisco Firewall technologies and the description of its operational strengths and weaknesses, knowledge and description of stateful firewalls, implement zone-based firewall policy using CCP, description of the types of NAT (Network Address Translation), implementation of NAT, implementation of ASA- Cisco Adaptive Security Appliance, implementation of PAT (Port Address Translation).

Intrusion Prevention System (IPS):

Description of IPS (Intrusion Prevention System) and deployment considerations, description of IPS technologies, configuration of Cisco IOS IPS using CCP.

VPN Technologies:

Description of VPN technologies, building blocks of IPSec, description of different methods of cryptography, usage of pre-shared authentication key with VPN, implementation of SSL (Secure Sockets Layer) VPN using ASA-Adaptive Security Appliance device, and verification of VPN verifications.

Common Security Threats:

Description of common security threats.

The content that will be included will be related to the Cisco Network Security system, and apart from the above mentioned topics and sub-topics, other related topics may also be given question from in the Implementing Cisco IOS Network Security exam.

The candidates applying for the 640-554 exam must have sound knowledge of network security system, its application, troubleshooting, and architecture. The installation skills, along with the maintenance of system integrity and confidentiality and monitoring of any peculiarities in the security issues are a must-have. Therefore, at hand knowledge of all the above mentioned skills is necessary to pass the exam.

ExamKill gladly offers 15% discount coupon 134184599H for 640-554 and 810-420 and other IT exams preparation stuff with instant download and 30 days money back guarantee.