Course Outline


  • Review TCP/IP and the fields in the IP Header.
  • Describe the fields and headers in the ISAKMP Protocol.
  • Describe Main Mode negotiation to set up Phase 1 of a VPN
  • Describe Aggressive Mode negotiation to set up Phase 1 of a VPN.
  • Describe Quick Mode negotiation to set up Phase 2 of a VPN.
  • Compare IKEv1 and IKEv2 protocols.
  • Describe Symmetric and Public/Private Key encryption.
  • Describe ISAKMP Security Associations.
  • Describe IPSec Security Associations.
  • Describe IPSec AH Protocol.
  • Describe IPSec ESP Protocol.
  • Describe and Explain Diffie-Hellman Key Exchange.
  • Describe prime and primitive root of a prime number.
  • Describe, explain and configure site to site VPN’s using Cisco Routers and/or ASA Firewalls.
  • Describe Remote Access VPN’s using ADSL and Dial-up.
  • Use debug commands in Cisco CLI and wireshark to demonstrate and troubleshoot VPN negotiation.

Practical Exercises:

  • Lab Exercise 1: IPSec using manual, symmetric encryption keys.
  • Lab Exercise 2: IPSec using IKE and shared secret
  • Lab Exercise 3: IPSec using IKE and certificate authentication.


Knowledge of TCP/IP and Cisco IOS would be an advantage.

  14 Hours


Related Courses

AI Awareness for Telecom

 14 hours

AI is a collection of technologies for building intelligent systems capable of understanding data and the activities surrounding the data to make "intelligent decisions". For Telecom providers, building applications and services that make

Blockchain for Telecom

 7 hours

Blockchain is a technology for building decentralized systems. For Telecom providers, this technology could open the door for improved service offerings in areas such as billing and fraud detection, to name just two. In this instructor-led,


 21 hours

BSS Course Contents : This course is primarily aimed at managers in Telecom operation who need to have 360 view of a) legacy BSS in eTOM b) emerging BSS in NGOSS c) Billing system including mediation, rating and CDR in details. This course also

Deep Learning for Telecom (with Python)

 28 hours

Machine learning is a branch of Artificial Intelligence wherein computers have the ability to learn without being explicitly programmed. Deep learning is a subfield of machine learning which uses methods based on learning data representations and

OSS ( Operation Support System ) for Telecom

 21 hours

Introduction: OSS/BSS is at the heart of operation of any Telecom operator. Given growth of Big Data in recent time, area of OSS/BSS has undergone disruptive changes specially with virtualization of the OSS/BSS and given the fact, many of the

Linux for Network Engineers

 14 hours

Linux is an essential operating system for SDN (software-defined networking) tools. Setting up Linux services for networking enables features like automated network maintenance, configuring and testing servers, and more. This instructor-led, live

ONAP for Network Orchestration and Automation

 28 hours

ONAP (Open Networking Automation Platform) is an open source platform for orchestrating and automating physical and virtual network elements. ONAP originated from OpenECOMP and Open-Orchestrator (Open-O) and is managed by The Linux

ONAP for Automating Telecommunication Systems and Operations

 21 hours

Open Network Automation Platform (ONAP) is an open-source software solution that automates network components for various big data services. ONAP comprises subsystems, such as design and run-time frameworks, that open virtualization opportunities

OpenStack Architecture and Troubleshooting

 14 hours

The aim of this course is twofold - gain solid knowledge about OpenStack architecture and acquire profound troubleshooting skills. In the architecture part you will learn how to design the hardware for the public and private cloud, prepare

OpenStack Bootcamp

 28 hours

The course is a comprehensive training on OpenStack. It starts with the introduction to the system, then through hands-on workshops it gives practical knowledge on managing private clouds based on OpenStack, finally troubleshooting and advanced,

OpenStack Bootcamp Extended

 35 hours

The course is a comprehensive training on OpenStack, extended version of the OpenStack Bootcamp course includes extra excercises, troubleshooting and sample examination tasks. Extended content is highlited in bold in the course outline. It

OpenStack and NFV (with OVN and OpenFlow)

 21 hours

The course is a profound training on OpenStack networking. It starts with the introduction to OpenStack and its architecture, then clarifies core OpenStack projects as Identity service (Keystone), Image service (Glance), Compute service (Nova),

OpenStack Security

 14 hours

The course is providing practical knowledge on OpenStack and private cloud security. It starts from the introduction to the system, then the participants are getting practical knowledge on security in private clouds and securing OpenStack

Software-Defined Networking

 28 hours

Software-Defined Networking (SDN) is a software-based approach to networking that uses programmatic methods to manage, control, and optimize network resources in a centralized system. This instructor-led, live training (online or onsite) is aimed

P4 Programming

 21 hours

P4 is an open source programming language that provides a top-down solution to network operations. P4 lets users tell data plane devices how to process packets for convenient management of network systems. This instructor-led, live training