1-877-224-8987 | Contact Us

CCIE Security Bootcamp

Learn More

Limited Time Offer!

Buy a CCIE 10-Day Security Bootcamp, Bring a Friend FREE!

CCIE Security Bootcamp

v5For 10 full days you can join expert instructors with real-world experience for comprehensive CCIE Security v4 lab exam training. This Bootcamp will help candidates who are nearing their CCIE lab dates to refine and consolidate their technical knowledge into an organized and effective strategy for passing their lab exams.

INE’s CCIE Security 10-Day Bootcamp is part lecture, part hands-on, and focuses both on developing a structured approach to CCIE lab strategy and advanced hands-on scenarios. Every student will have access to a dedicated rack of Cisco equipment that consists of the latest CCIE Security equipment and platforms as outlined by the CCIE lab blueprint v4.

The goal of this Bootcamp is for students to finish fully prepared to take and pass their CCIE Security lab exam within four weeks of completing the course. While ultimate success is up to each individual, our instructors will ensure that every participant has the tools and information necessary for success.

CCIE Security 10-Day Bootcamp Overview

The following is a condensed list of the topics that will be covered during this Bootcamp, including both theoretical and practical aspects of each technology. Note that this list is only an overview and does not include all technologies covered.

Topics Include

  • IOS Firewall

    • Access-Lists
      • Basic and Time-Based
      • Dynamic and Reflexive
    • Context –Based Access Control
      • Transparent and Routed Modes
      • Advanced Inspection and Firewall Tuning
      • High Availability
    • Zone-Based Policy Firewall
      • Transparent and Routed Modes
      • Advanced Inspection and Firewall Tuning
      • High Availability and Asymmetric Routing
      • User-Based Firewall
      • Secure Group Firewall
    • Network Address Translation
      • Inside-Outside NAT
      • NVI NAT
    • Policy Routing
  • ASA Firewall

    • Interfaces and VLANs
    • Access-Lists Before and After 8.3
    • Routing
      • Static and Dynamic Routing
      • Multicast Routing
    • Network Address Translation
      • Old NAT before 8.3
      • New NAT after 8.3
    • Firewall Functional Modes
      • Transparent and Routed
      • Single and Multiple Context
    • High Availability and Failover
      • Interface Level
      • Active-Standby and Active-Active
      • Asymmetric Routing
    • Modular Policy Framework and Advanced Inspection
    • Other Advanced Features
    • Quality of Service
  • Virtual Private Networks

    • IKEv1 and IKEv2
      • IPv4 and IPv6
    • ASA and IOS PKI
    • IPsec LAN-to-LAN on ASA and IOS
    • IPsec EzVPN Server on ASA and IOS
    • IPsec EzVPN Client SW and HW
    • Crypto Map-Based VPN
      • Static Crypto Map
      • Dynamic Crypto Map
    • IPsec Profile-Based VPN
      • GRE over IPsec
      • Static VTI
      • Dynamic VTI
    • IPsec VRF Aware
      • ISAKMP Profiles
    • IKEv1 DMVPN
    • IKEv1 GET VPN
    • Client-Based SSL VPN on ASA and IOS
    • Clientless SSL VPN on ASA and IOS
    • IKEv2 FlexVPN
      • LAN-to-LAN
      • Remote Access
    • VPN High Availability
    • Advanced VPN Features
  • Identity Management

    • AAA Protocols and Attributes
      • RADIUS
      • TACACS+
      • LDAP
    • ACS vs. ISE Architecture
      • LDAP and AD Integration
      • Certificate Services
    • IOS and ASA Local AAA
    • IOS and ASA Remote AAA
    • IOS Authentication Proxy
    • ASA Cut-Through Proxy
    • MAB and 802.1x
      • EAP Types
    • Local Web Authentication
    • Central Web Authentication
    • NEAT
    • ISE Specific
      • Device Profiling
      • IOS Sensor
      • CPP and Posture Assessment
      • Guest Services
      • MACsec
  • Wireless Security

    • Cisco UWN Architecture
      • LWAPP and CAPWAP
      • LAP Local Mode
      • LAP FlexConnect Mode
    • TACACS and RADIUS Integration
    • Control-Plane Security
      • LAP Authentication/Authorization
      • Rogue Management
    • Layer2 vs. Layer3 Security
      • MAB and 802.1x
      • WPA/WPA2
      • LWA/CWA
    • ISE Integration
  • Intrusion Prevention System

    • IPS Architecture
    • Promiscuous Mode
      • SPAN and RSPAN
      • VLAN-Groups
    • Inline Mode
      • Inline Interfaces
      • Inline VLAN Pair
      • Inline VLAN-Group
    • Device Blocking, Rate Limiting, TCP Resets
    • Virtual Sensors
    • Signature Tuning
    • Custom Signatures
    • Event Processing and Summarization
    • Other Advanced Features
  • Content Security

    • WSA Architecture
    • Proxy Deployments
      • Explicit Forward Mode
      • Transparent Mode
    • WCCP on ASA and IOS
      • Layer2 Mode
      • Layer3 Mode
    • Identities and Access Policies
    • Decryption Policies
    • URL Filtering and WBRS
    • Application Visibility and Control
    • WSA Active Directory Integration
  • Advanced Security

    • Routing Protocol Security
    • Control-Plane Security
    • Management-Plane Security
    • Private VLANs and Port Security
    • MAC ACL, VLAN ACL and Port ACL
    • DHCP Security
    • Protecting STP: BPDU Guard, BPDU Filter, Root Guard, Loop Guard
    • Packet Classification and Marking
      • Rate-Limiting
      • Policing
      • Shaping
  • Network Attacks

    • Layer2 Attacks: MAC Flooding, ARP/MAC Spoofing, VLAN Hopping, Storm
      • IPv6 First Hop Security
    • Layer 3 Attacks:  Fragmentation, IP Spoofing, IP Options, ICMP, Smurf
    • Layer 4 Attacks: SYN Flooding, TCP Hijacking, Port Redirection, MitM
    • Layer7 Attacks: DNS poisoning, Vulnerability Exploitation
    • Network Reconnaissance
    • DoS and DDoS Attacks: RTBH Mitigation


Intended Audience
CCIE Security candidates with a firm understanding of the technologies covered on the CCIE Security lab exam blueprint. Candidates must have already completed the CCIE Security Advanced Technologies video course and be comfortable performing at least the first five labs in the CCIE Security Workbook Volume II.

Introductory CCIE Security material is not covered in the 10-Day Bootcamp.

CCIE Security 10-Day Bootcamps

After you have registered for a Bootcamp:
We will contact you via email 30 days before the first day of your Bootcamp with final
details regarding location, start time, instructor, and other pertinent information.

Reserve your seat today
for as low as $1,247.50!

Learn More About
Our Payment Plans »

Jan 19 – Jan 30, 2015

London, United Kingdom »
London Marriott Hotel Kensington »
147 Cromwell Road
London, SW5 0TH
United Kingdom


Add To Cart

Choose one of the following optional Bootcamp add-ons at check-out!

2-Year All Access Pass + All CCIE Workbooks + 500 Rack Rental Tokens – $1,000 ($999 savings)
Lab Exam Voucher – $1,600
Travel Per Diem – $1,500
3,000 Rack Rental Tokens- $1,500 ($1,500 savings)

Purchase on a Payment Plan

Reserve your seat today for as low as $1,247.50. To purchase this Bootcamp using a payment plan, select the date you would like to attend and then click Add to Cart. When you check out through our online store, select Payment Plan as the payment option. You will have the option to choose from a variety of payment plan schedules.

Learn More

Bootcamp Retake Policy

INE invites all students to retake a Bootcamp course for only a $500-per-week rack rental fee. Routing & Switching Bootcamps are excluded from the fee and are free of charge. How do you know whether seats are available for a Bootcamp retake? It’s simple! As long as the Bootcamp is not labeled “Sold Out” on our website, you can retake it. Unlike other training companies, we do not limit the number of seats for students retaking a course.

New Courses from the Industry Leader in Network Training: Check Them Out!
For a limited time – 2-Year All Access Pass for just $1,499! Purchase Now!