Overview of the CCIE Security Written Exam 350-018

Ways to Prepare for the CCIE Written Exam 350-018

Am I Ready for CCIE?

Watch This Out

SavvyEngine CCIE Security #350-018 is the only practice exam simulator you need to pass the CCIE Security exam. With coverage of all question types on the actual exam and 250+ highly realistic questions, SavvyEngine will greatly increase your chance of passing the CCIE Security exam, the first time!

SavvyEngine is also full featured with a state-of-the-art exam simulation interface. The following are features of SavvyEngine CCIE Security 350-018:

• Multiple choices
• Study Mode, Exam Mode, and Custom Mode
• Randomize questions and answers
• Select questions from category
• Jmp to questions
• Review incorrect and incomplete answers
• Breakdown of category scores
• Detailed explanations
• References to Cisco approved study guides
• Coverage of the latest Cisco exam curriculum / test objectives
• Unlimited test question bank updates (subject to our discretion)

The 7 exam categories of SavvyEngine CCIE Security 350-018 are divided into:

SavvyEngine covers all the question types in the actual Cisco exam environment. The following are comparison of SavvyEngine with the actual exam to justify your purchasing decision.

There are several different ways to prepare and pass the exam, depending on how much bugdet you have access to:

• Leader-led courses, through Cisco Learning Partners
• CCIE Practice Labs, through authorized Cisco Learning Partners
• Cisco Interactive Mentor Expert Labs, through the CIM Program
• CCIE Development Series, published by Cisco Press
• Don't risk your chance of passing the CCIE Written exam by not getting SavvyEngine #350-018. You will not regret this important decision!
• If you have any doubts and want to have a bit of chat with us regarding every aspects of this exam, you can contact us at consult@certsavvy.com This is a free non-obligatory exam consulation line that we provide to all customers who purchase our products. Even if you have not purchased any of our products yet, it may pay to drop us a line or two, and when we had time, you will probably get a reply.

Cisco recommends you to posses the following if you want to be a successful CCIE candidate:

• At least two years of experience implementing, deploying, operating, and troubleshooting complex Cisco networks
• Familiarity with Cisco hardware and Cisco networking solutions
• Extensive knowledge of LAN and WAN technologies, including TCP/IP and client-server architectures
• The ability to use the Cisco show and debug commands and to perform packet-level diagnostics
• An in-depth understanding of the protocols used on routers, switches, bridges, and security devices
• The ingenuity to develop innovative network designs and find creative solutions to problems
• The persistence to work on difficult design or troubleshooting issues until you have found not just an acceptable solution, but the best solution
• A willingness to lead the way in evaluating and introducing new internetworking technologies and designs that better meet users' needs

The following topics are general guidelines for the content likely to be included on the new CCIE Security exam. However, other related topics may also appear on any specific delivery of the exam (excerpts from Cisco Certification web site).

1. Security Protocols
2. Application Protocols
3. General Networking
4. Security Technologies
5. Cisco Security Applications
6. Security General
7. Cisco General

Security Written Exam (350-018) Blueprint

1. Security Protocols
1.1. Remote Authentication Dial In User Service (RADIUS)
1.2. Terminal Access Controller Access Control System Plus (TACACS+)
1.3. AES
1.4. EAP peap tkip tls
1.5. Data Encryption Standard (DES)
1.6. Triple DES (DES3)
1.7. IP Secure (IPSec)
1.8. Internet Key Exchange (IKE)
1.9. Certificate Enrollment Protocol (CEP)
1.10. Point to Point Tunneling Protocol (PPTP)
1.11. Layer 2 Tunneling Protocol (L2TP)

2. Application Protocols
2.1. Domain Name System (DNS)
2.2. Trivial File Transfer Protocol (TFTP)
2.3. File Transfer Protocol (FTP)
2.4. Hypertext Transfer Protocol (HTTP)
2.5. Secure Socket Layer (SSL)
2.6. Simple Mail Transfer Protocol (SMTP)
2.7. Network Time Protocol (NTP)
2.8. IOS SSH
2.9. Lightweight Directory Access Protocol (LDAP)
2.10. Active Directory
2.11. RDEP Remote Data Exchange Protocol

3. General Networking
3.1. Networking Basics
3.2. TCP/IP
3.3. Switching and Bridging (including: VLANs, Spanning Tree, etc.)
3.4. Routed Protocols
3.5. Routing Protocols (including: RIP, EIGRP, OSPF, BGP)
3.6. Point to Point Protocol (PPP)
3.7. IP Multicast
3.8. Integrated Services Digital Network (ISDN)
3.9. Async
3.10. Access Devices (for example: Cisco AS 5300 series)
3.11. Telephony best practices
3.12. Wireless best practices

4. Security Technologies
4.1. Concepts - security best practices
4.2. Packet Filtering
4.3. PIX and IOS authentication proxies
4.4. Port Address Translation (PAT)
4.5. Network Address Translation (NAT)
4.6. Firewalls
4.7. Content Filters
4.8. Public Key Infrastructure (PKI)
4.9. Authentication Technologies
4.10. Authorization technologies
4.11. Virtual Private Networks (VPN)
4.12. Network IDS anomaly, signature, passive, inline
4.13. Host Intrusion Prevention
4.14. Cisco Threat Response

5. Cisco Security Applications
5.1. Cisco Secure NT
5.2. Cisco Secure PIX Firewall
5.3. VMS
5.4. Cisco Secure Intrusion Detection System (formerly NetRanger)
5.5. IOS® Firewall Feature Set
5.6. VPN 3000
5.7. Client side VPN
5.8. CAT Service Modules
5.9. IOS IDS (in line)
5.10. Cisco Secure ACS
5.11. Security Information Monitoring System (event correlation, basic forensics)

6. Security General
6.1. Policies - Security Policy Best Practices
6.2. Standards Bodies - IETF
6.3. Vulnerability discussions
6.4. Attacks and Common Exploits - recon, priv escalation, penetration, cleanup, backdoor

7. Cisco General
7.1. IOS Specifics
7.2. Routing and switching security features: IE mac address controls, port security, dhcp snoop
7.3. Security Policy best practices