Sheet1S.No.Topics IncludeStatusS.No.Topics IncludeStatus1- IOS
Firewall2- ASA Firewall1Access-Lists1Interfaces and VLANs2Basic and
Time-Based2Access-Lists Before and After 8.33Dynamic and
Reflexive3Routing4Context Based Access Control4Static and Dynamic
Routing5Transparent and Routed Modes5Multicast Routing6Advanced
Inspection and Firewall Tuning6Network Address Translation7High
Availability7Old NAT before 8.38Zone-Based Policy Firewall8New NAT
after 8.39Transparent and Routed Modes9Firewall Functional
Modes10Advanced Inspection and Firewall Tuning10Transparent and
Routed11High Availability and Asymmetric Routing11Single and
Multiple Context12User-Based Firewall12High Availability and
Failover13Secure Group Firewall13Interface Level14Network Address
Translation14Active-Standby and Active-Active15Inside-Outside
NAT15Asymmetric Routing16NVI NAT16Modular Policy Framework and
Advanced Inspection17Policy Routing17Other Advanced
Features18Quality of ServiceS.No.Topics IncludeStatusS.No.Topics
IncludeStatus3- Virtual Private Networks4- Identity
Management1IKEv1 and IKEv21AAA Protocols and Attributes2IPv4 and
IPv62RADIUS3ASA and IOS PKI3TACACS+4IPsec LAN-to-LAN on ASA and
IOS4LDAP5IPsec EzVPN Server on ASA and IOS5ACS vs. ISE
Architecture6IPsec EzVPN Client SW and HW6LDAP and AD
Integration7Crypto Map-Based VPN7Certificate Services8Static Crypto
Map8IOS and ASA Local AAA9Dynamic Crypto Map9IOS and ASA Remote
AAA10IPsec Profile-Based VPN10IOS Authentication Proxy11GRE over
IPsec11ASA Cut-Through Proxy12Static VTI12MAB and 802.1x13Dynamic
VTI13EAP Types14IPsec VRF Aware14Local Web Authentication15ISAKMP
Profiles15Central Web Authentication16IKEv1 DMVPN16NEAT17IKEv1 GET
VPN17ISE Specific18Client-Based SSL VPN on ASA and IOS18Device
Profiling19Clientless SSL VPN on ASA and IOS19IOS Sensor20IKEv2
FlexVPN20CPP and Posture Assessment21LAN-to-LAN21Guest
Services22Remote Access22MACsec23VPN High Availability24Advanced
VPN FeaturesS.No.Topics IncludeStatusS.No.Topics IncludeStatus5-
Wireless Security6- Intrusion Prevention System1Cisco UWN
Architecture1IPS Architecture2LWAPP and CAPWAP2Promiscuous Mode3LAP
Local Mode3SPAN and RSPAN4LAP FlexConnect Mode4VLAN-Groups5TACACS
and RADIUS Integration5Inline Mode6Control-Plane Security6Inline
Interfaces7LAP Authentication/Authorization7Inline VLAN Pair8Rogue
Management8Inline VLAN-Group9Layer2 vs. Layer3 Security9Device
Blocking, Rate Limiting, TCP Resets10MAB and 802.1x10Virtual
Sensors11WPA/WPA211Signature Tuning12LWA/CWA12Custom
Signatures13ISE Integration13Event Processing and
Summarization1414Other Advanced FeaturesS.No.Topics
IncludeStatusS.No.Topics IncludeStatus7- Content Security8-
Advanced Security1WSA Architecture1Routing Protocol Security2Proxy
Deployments2Control-Plane Security3Explicit Forward
Mode3Management-Plane Security4Transparent Mode4Private VLANs and
Port Security5WCCP on ASA and IOS5MAC ACL, VLAN ACL and Port
ACL6Layer2 Mode6DHCP Security7Layer3 Mode7Protecting STP: BPDU
Guard, BPDU Filter, Root Guard, Loop Guard8Identities and Access
Policies8Packet Classification and Marking9Decryption
Policies9Rate-Limiting10URL Filtering and
WBRS10Policing11Application Visibility and Control11Shaping12WSA
Active Directory Integration12S.No.Topics IncludeStatusS.No.Topics
IncludeStatus9- Network Attacks1Layer2 Attacks: MAC Flooding,
ARP/MAC Spoofing, VLAN Hopping, Storm2IPv6 First Hop Security3Layer
3 Attacks: Fragmentation, IP Spoofing, IP Options, ICMP,
Smurf4Layer 4 Attacks: SYN Flooding, TCP Hijacking, Port
Redirection, MitM5Layer7 Attacks: DNS poisoning, Vulnerability
Exploitation6Network Reconnaissance7DoS and DDoS Attacks: RTBH
Mitigation
