This lab should assist you in your final preparation for the CCIE Security lab exam.
Sample solutions are provided here, but you need to research other various solutions on your own. Feel free to modify the questions to suit any design scenario and discover new IOS commands by using the Cisco Universe CD-ROM. This lab is not the only tool you should use; rather, it is provided here to demonstrate the minimum level of difficulty you will encounter when attempting the CCIE Security lab exam.
This lab builds on the sample Routing and Switching labs presented in Appendixes C and D. This is intentional because the CCIE Security lab exam builds on your routing skills and requires you to build a secure IP network. The CCIE Security lab exam is a difficult exam because the routing and switching topics are assumed knowledge. You can think of the CCIE Security lab exam as two lab exams built into one difficult security exam.
The end goal of any CCIE lab is a working solution, although you might be restricted by certain parameters. Candidates often ask me how best to prepare for the CCIE Security lab exam. My answer is to practice and configure every feature available and then practice some more. Of course, not every feature will be tested, and you are encouraged to read the most up-to-date information at http://www.cisco.com/en/US/learning/le3/ccie/security/index.html for the latest information regarding the CCIE Security certification. In particular, always look for new details on new Cisco IOS technologies and hardware.
NOTE The CCIE Security lab doesn't require you to configure any Token Ring devices or Token Ring interfaces, nor any non-IP protocols, such as IPX or DLSW.
Effective November 4, 2002, CCIE labs worldwide employ Catalyst 3550 with Cisco IOS v12.1 using the Enhanced Multilayer Image.
Was this article helpful?