Archive for February, 2016

Course Description
CCNA Security Training in Faisalabad by Saeed Ahmad CCSP Instructor with  a hands-on, career-oriented e-learning solution with an emphasis on practical experience to help students develop specialized security skills to advance their careers. The curriculum prepare students for entry-level security career opportunities Implementing Cisco Network Security (IINS) certification exam (210-260) leading to the Cisco CCNA Security certification.
CCNA Security can be delivered as an independent curriculum or integrated into a broader course of study, such as technology or continuing education programs. All hands-on labs in the course can be completed on actual physical equipment or in conjunction with the NDG NETLAB solution, which provides remote access to equipment over the Internet.

1. Modern Network Security Threats
2. Modern Network Security Threats
3. Authentication, Authorization and Accounting
4. Implementing Firewall Technologies
5. Implementing Intrusion Prevention
6. Securing the Local Area Network
7. Cryptographic Systems
8. Implementing Virtual Private Networks (VPNs)
9. Implementing Cisco the Adaptive Security Appliance (ASA)
10. Advanced Cisco Adaptive Security Appliance
11. Managing a Secure Network

Universal IOS Image

One of the major differences between IOS releases prior to 15 and IOS 15 releases is the concept of a Universal Image.  A universal image contains all of the features capable on the specific device, but may not be activated by default.  Additional features may require the purchase of additional licenses to activate.

What is a Universal Image?

  • Universal IOS Image contains all Cisco IOS features.
  • Single universal IOS Image is shipped with the ISR G2 devices.
  • IOS functionality is determined by the specific licenses applied to the devices.
  • Only two IOS images for each release:

universalk9: This universal image offers all the Cisco IOS features including strong crypto features such as VPN payload, Secure UC, etc.

universalk9_npe (no payload encryption): This universal image satisfies requirements of import restricted countries. It does not support any strong payload encryption, such as VPN payload, secure voice, etc.

  • Examples:



Cuba, Iran, North Korea, Sudan, and Syria.  These are Embargoed.  Cisco doesn’t ship at all to these Countries.

These are the “Restriction Free” Countries.  If you aren’t in this list, Cisco may not be allowed to ship Strong Encryption:

Austria, Australia,

Belgium, Bulgaria, Canada, Cyprus, Czech Republic, Denmark, Estonia, Finland, France,

Germany, Greece, Hungary, Iceland, Ireland, Italy, Japan, Latvia, Lithuania,

Luxembourg, Malta, Netherlands, New Zealand, Norway, Poland, Portugal, Romania,

Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey, United Kingdom, United States.

Universalk9_npe: npe (no payload encryption)

Include the Short List of Countries Impacted by npe code.

Universal IOS Images

IOS 15.0 universal image aims to reduce the complexity when trying to determine the right license, for the right job.

Features not supported from IOS Release 15 onward:


Cisco Service Selection Gateway (SSG)

SSG is a switching solution for Service Providers who offer Intranet, Extranet and Internet connections to subscribers using broadband access technology such as DSL, cable modems, or wireless LAN

  • Includes all the available features in a model.
  • Four technology packages available: IP Base, Security, UC and Data

IP Base Technology Package is enabled by default.

Security, UC and Data Technology Package licenses activate more features.


Cisco IOS 15



IOS Release 15 Timeline

  • Feature inheritance and platform support from 12.4T and 12.4 Mainline
  • Two major maintenance releases for IOS 15:

M Release (Extended)

T Release (Standard)

IOS 15 Release Timeline

What are the Maintenance Releases?

T will most likely be used by those who want the latest features (resellers, vendors, students etc.)

M however will most likely be used in production networks, will lag behind T train releases, so hopefully the resellers, vendors and students can learn about the new features prior to deployment.

The New IOS 15 Naming Convention


The New IOS 15 Naming Convention

The New IOS 15 Naming Convention


Comparing Broadband Solutions

Posted: February 1, 2016 in Cisco
  • Cable– Bandwidth is shared by many users.
  • DSL– Limited bandwidth that is distance-sensitive.
  • Fiber-to-the-Home– Requires fiber-access network overlay.
  • Cellular/Mobile– Coverage is often an issue, bandwidth relatively limited.
  • Wi-Fi Mesh– Many municipalities do not have a mesh network deployed.
  • WiMAX– Bit rate is limited to 2 Mb/s per subscriber; cell size is 1.25 miles (1 to 2 km.)
  • Satellite– Expensive; limited capacity per subscriber.