Re: CCIE security advice!

Only SSL VPN is what u will miss on for not having ASA.
PIX 80x is almost the same (including commands) as ASA 80x. PIX does do
site2site.

On Thu, Dec 1, 2011 at 8:01 AM, Joe Astorino <joeastorino1982_at_gmail.com>wrote:

> Seriously? I would think that the various VPN technologies alone would be
> something you would need a ton of hands on practice with on the ASA
> (GETVPN, L2L VPN, SSL VPN, IPSEC Remote access VPN, etc). I am not a
> security expert, but I'm sure all those topics are on the BP.
>
>
> On Wed, Nov 30, 2011 at 3:50 PM, Radioactive Frog <pbhatkoti_at_gmail.com>wrote:
>
>> Just get 2xpix515 and 5x2600 xm.
>> U will miss 3 points worth for not having ASA. There is an IPS sim or use
>> a VM that is floating on the net. A few online rack rentals for ASA and IPS
>> shud be more than enuf IMHO
>>
>>
>> On Wednesday, November 30, 2011, Alexei Monastyrnyi <alexeim73_at_gmail.com>
>> wrote:
>> > Joe,
>> > home lab is something we all would love to have. :-) With security track
>> > we still have a luxury of using emulation. I recon Qemu with ASA 8.0.2
>> > and IPS covers most of ASA and IPS related topics. Or at least it is so
>> > for small technology labs.
>> >
>> > It may end soon since next version of lab blue-print is underway and it
>> > may well have ASA code 8.2 or above and some more recent IPS code too.
>> >
>> > I do hate it when the Qemu crashes or hangs on me when labbing. So I
>> > would definitely go for a rental rack should I start practicing full 8hr
>> > labs.
>> >
>> > Cheers
>> > A.
>> >
>> > On 11/30/2011 2:08 AM, Joe Astorino wrote:
>> >> My excuse is I have flat out not committed...yet. I'll do that
>> tomorrow :
>> >> ) But seriously, when I did R&S having my own home lab made all the
>> >> difference for me because I have a very obsessive type personality and
>> >> wanted to lab at all hours of the night or whenever I had a nagging
>> >> question. Converting my existing RS lab (which is built around IPX)
>> to an
>> >> IPX security lab is "simple" enough -- but requires 2x 5510 ASAs, the
>> IPS
>> >> and an ACS server...and an XP workstation. The ASAs and IPS are just
>> not
>> >> "in the budget" at home right now.
>> >>
>> >> I may have to just suck it up and<gasp> rent rack time ....
>> >>
>> >> On Tue, Nov 29, 2011 at 10:04 AM, Joseph L. Brunner<
>> joe_at_affirmedsystems.com
>> >>> wrote:
>> >>> Damn it!****
>> >>>
>> >>> ** **
>> >>>
>> >>> I knew there was a reason I haven t passed YET!****
>> >>>
>> >>> ** **
>> >>>
>> >>> *From:* Joe Astorino [mailto:joeastorino1982_at_gmail.com]
>> >>> *Sent:* Tuesday, November 29, 2011 10:04 AM
>> >>> *To:* Joseph L. Brunner
>> >>> *Cc:* Usama Pervaiz; Cisco certification
>> >>> *Subject:* Re: CCIE security advice!****
>> >>>
>> >>> ** **
>> >>>
>> >>> Hell, that isn't my issue -- You forgot the 4200 series IPS that costs
>> >>> thousands of dollars even on ebay : )****
>> >>>
>> >>> On Mon, Nov 28, 2011 at 6:16 PM, Joseph L. Brunner<
>> >>> joe_at_affirmedsystems.com> wrote:****
>> >>>
>> >>>> I am however finding that there aren't as many resources available
>> for
>> >>> the security track as there are for R&S.****
>> >>>
>> >>> You mean other than 4 3750's, 2 ASA's, 4 IOS ROUTERS with ADVANCED
>> >>> SECURITY IOS, 1 Cisco Secure ACS Server and cisco.com?****
>> >>>
>> >>>
>> >>> -----Original Message-----
>> >>> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf
>> Of
>> >>> Usama Pervaiz****
>> >>>
>> >>> Sent: Monday, November 28, 2011 1:43 PM
>> >>> To: Cisco certification
>> >>> Subject: OT: CCIE security advice!
>> >>>
>> >>> Hello all,
>> >>>
>> >>> I write to you a bit frustrated and seeking your advice. I got my
>> CCIE R&S
>> >>> in 2009 and I would now like to pursue my CCIE security. I am however
>> >>> finding that there aren't as many resources available for the security
>> >>> track as there are for R&S. I have realised I am not quite there for a
>> >>> bootcamp yet. I have the books for the recommended reading but I find,
>> >>> unless I have the equipment I get nowhere. (short attention span
>> maybe)
>> >>>
>> >>> I have looked around and I see a lot of Video on Demands offered by
>> >>> vendors. I wanted to know, in your respective opinions, how good
>> these VOD
>> >>> are? which vendor's VOD would give me the most knowledge, take me from
>> >>> basic concepts and dive into more complex ones.
>> >>>
>> >>> I know this is a very controversial topic at times as there are many
>> >>> vendors present on this mailing list. The intent of this e-mail is
>> not to
>> >>> cause any "drama"
>> >>>
>> >>> As always your advice is much appreciated.
>> >>>
>> >>> Thank you,
>> >>> Usama
>> >>>
>> >>>
>> >>> Blogs and organic groups at http://www.ccie.net
>> >>>
>> >>>
>> _______________________________________________________________________
>> >>> Subscription information may be found at:
>> >>> http://www.groupstudy.com/list/CCIELab.html
>> >>>
>> >>>
>> >>> Blogs and organic groups at http://www.ccie.net
>> >>>
>> >>>
>> _______________________________________________________________________
>> >>> Subscription information may be found at:
>> >>> http://www.groupstudy.com/list/CCIELab.html
>> >
>>
>
>
>
> --
> Regards,
>
> Joe Astorino
> CCIE #24347
> Blog: http://astorinonetworks.com
>
> "He not busy being born is busy dying" - Dylan

Blogs and organic groups at http://www.ccie.net
Received on Thu Dec 01 2011 - 09:21:11 ART