A great way to start the Cisco Certified Network Professional Security (SIMOS) preparation is to begin by properly appreciating the role that syllabus and study guide play in the Cisco 300-209 certification exam. This study guide is an instrument to get you on the same page with Cisco and understand the nature of the Cisco CCNP Security exam.
Our team of experts has composed this Cisco 300-209 exam preparation guide to provide the overview about Cisco Implementing Cisco Secure Mobility Solutions exam, study material, sample questions, practice exam and ways to interpret the exam objectives to help you assess your readiness for the Cisco SIMOS exam by identifying prerequisite areas of knowledge. We recommend you to refer the simulation questions and practice test listed in this guide to determine what type of questions will be asked and the level of difficulty that could be tested in the Cisco CCNP Security certification exam.
Cisco 300-209 Exam Overview:
|
Exam Name
|
Implementing Cisco Secure Mobility Solutions |
| Exam Number | 300-209 SIMOS |
| Exam Price | $300 USD |
| Duration | 90 minutes |
| Number of Questions | 65-75 |
| Passing Score | Variable (750-850 / 1000 Approx.) |
| Recommended Training | Implementing Cisco Secure Mobility Solutions - (SIMOS) |
| Exam Registration | PEARSON VUE |
| Sample Questions | Cisco 300-209 Sample Questions |
| Practice Exam | Cisco Certified Network Professional Security Practice Test |
Cisco 300-209 Exam Topics:
| Section | Weight | Objectives |
|---|---|---|
| Secure Communications | 32% |
1 Site-to-site VPNs on routers and firewalls
a) Describe GETVPN
b) Implement IPsec (with IKEv1 and IKEv2 for both IPV4 & IPV6)
c) Implement DMVPN (hub-Spoke and spoke-spoke on both IPV4 & IPV6)
d) Implement FlexVPN (hub-Spoke on both IPV4 & IPV6) using local AAA
2 Implement remote access VPNs
a) Implement AnyConnect IKEv2 VPNs on ASA and routers
b) Implement AnyConnect SSLVPN on ASA and routers
c) Implement clientless SSLVPN on ASA and routers
d) Implement FLEX VPN on routers
|
| Troubleshooting, Monitoring and Reporting Tools | 38% |
1 Troubleshoot VPN using ASDM & CLI
a) Troubleshoot IPsec
b) Troubleshoot DMVPN
c) Troubleshoot FlexVPN
d) Troubleshoot AnyConnect IKEv2 and SSL VPNs on ASA and routers
e) Troubleshoot clientless SSLVPN on ASA and routers
|
| Secure Communications Architectures | 30% |
1 Design site-to-site VPN solutions
a) Identify functional components of GETVPN, FlexVPN, DMVPN, and IPsec
b) VPN technology considerations based on functional requirements
c) High availability considerations
d) Identify VPN technology based on configuration output
2 Design remote access VPN solutions
a) Identify functional components of FlexVPN, IPsec, and Clientless SSL
b) VPN technology considerations based on functional requirements
c) High availability considerations
d) Identify VPN technology based on configuration output
e) Identify AnyConnect client requirements
f) Clientless SSL browser and client considerations/requirements
g) Identify split tunneling requirements
3 Describe encryption, hashing, and Next Generation Encryption (NGE)
a) Compare and contrast Symmetric and asymmetric key algorithms
b) Identify and describe the cryptographic process in VPNs – Diffie-Hellman, IPsec – ESP, AH, IKEv1, IKEv2, hashing algorithms MD5 and SHA, and authentication methods
c) Describe PKI components and protection methods
d) Describe Elliptic Curve Cryptography (ECC)
e) Compare and contrast SSL, DTLS, and TLS
|
Cisco SIMOS Exam Description:
The Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam tests a network security engineer on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms.