June 29, 2009

IPS Fundamentals

Just finished reading IPS Fundamentals by Earl Carter. Good read. I'm looking forward to reading his IPS Exam Guide next. I took a look at the beginning of the book and didn't see where he specified which version of the IPS exam the guide would cover. Once I get through that, I'll debate reading the Sybex CCSP Study guide. The Sybex covers the old exams. I'm not sure how useful that will be - and may just be more of a hinderance than an assistance. I still have the SkillSoft online instructor-led course materials to go through, but I wanted to do that last. This way the material is the freshest in my mind.

So far, it seems like I'm on my target for the end of July to finish this course of study and sit for the exam. And it also looks like I am going to easily reach my other goal - more pages read than in 2003...

[--edit-- Just found where it said this book was prep for exam 642-532]

Posted by BlueWolf on June 29, 2009

June 25, 2009

New CCNA Security

I took the test again today and slammed it! I got a 988 out of 1000. Wow. But at the same time, I was pretty surprised when I clicked finish last time and -didn't- get that score.

Okay...so to be honest - I did put a lot more study into it over the last week. However, I realized from thinking about the test that I need to become more comfortable with the SDM interface and not stumble around it --- that way I have enough time and don't feel rushed through the ACLs. Yeah - attention to detail.

I tried to load the SDM on the routers I have in my makeshift home lab. Well, that didn't work. Apparently the hardware I have isn't supported. Dang. So then I got the bright idea of loading it at work on one of the 3800s that happens to be sitting around waiting for implementation. Well, that sorta worked. It loaded and I was able to use it to familiarize myself with -some- of the screens, but the IOS version on the router didn't support much. But, I did what I could and went home. Then I got out the duct tape had the bright idea of seeing what was available at the PEC [Partner E-Learning Connection]. Well, they didn't have diddly. But that didn't stop me. I found a training module on DHCP - how to configure DHCP on a router using SDM. I cranked up the module and come to find out -- the 'sim' was pretty full-featured. I was able to configure stuff on there that had nothing to do with the training module. I really think that working with those two interfaces made the difference.

Since I knew a bit more about how to navigate the interface, I was able to diligently click my way from screen to screen and answer all the questions. The sims didn't take more than 5-10 min each. And I knew that I would have time and didn't rush. Before I clicked NEXT, I checked that I had the correct number of replies for each question. And when I hit any question about an ACL, I slowed down and triple-checked it before moving on. Attention to detail.

So now I'm CCNA Security certified. I already got my email notifying me that my certificate is on its way (and would I please verify my profile on the site). What surprised me is that I received TWO emails. Apparently when you pass this test, you also demonstrate proficiency in Infosec - and therefore receive a 4011 Recognition Certificate.

So now it's onto the next one... yeah. IPS is the next exam. Again with the duct tape. The Cisco Press exam guide doesn't exist. So I will have to cobble together my own materials and training for it. I guess since it worked for this test, it might not be such a bad idea...

Posted by BlueWolf on June 25, 2009

June 21, 2009

Doh!

Well, I'm sure thousands of people are checking this site to see how I did. Yeah. But anyway, I guess I should finally post that I blew that exam. There goes $250...

It actually came as quite a surprise. I knew the material thoroughly. I was a little short in the area of the SDM, but that didn't matter. I sucessfully navigated the simulations and found the screens that I needed to answer the questions. Navigating it was a bit rough at first, but I got it. I know I got those answers - and the little printout at the end of the test confiirmed it. I did reasonably well on that section. However, I took so long on navigating the SDM that I know I was falling behind on time. But I put a move on it and finished all the questions. I clicked next on the last question and was very disappointed. I thought I had passed. There was no material on the exam that I hadn't gone over before. I've even read the recommended reading books before I saw the recommendation. It was a heartbreaker.

Fortunately, they resumed the performance report section of the exam report. I did very well on knowing the security threats, securing Cisco routers, and mitigating common Layer 2 attacks. That was expected. I did reasonably well on the * - using SDM sections. Where I tanked the test was in the area of ACLs.

??? What ??? ACLs? I've been working with (and testing on) ACLs since 1998. How could that have possibly been a show-stopper? So then I sat and thought about it for a while. Yeah. Rushing. That's never good when looking at an ACL.

I went over the SkillSoft Express Guide for the exam. The Express Guide is actually a slideshow of all the slides used in the instructor-led class. I didn't see anything in there that I hadn't already digested while reading the Cisco Press book. And at least I know there's not an overwhelming amount of sims, testlets and drag and drop questions. I think that now knowing how to navigate the SDM - it won't take me so long on that part and I can slow down a bit and look at the questions more closely. I'm going to wait my 5 days and go for it again. I should be fine with a bit more time for each question.

Speaking of SkillSoft Express Guides... I started looking for materials for the next test. Out of the 4 exams it would take to get the CCSP, the next one I'm shooting at is the IPS exam [642-533]. This was a bit discomforting.... The book doesn't exist. Luckily the Express Guide for the exam is on the SkillSoft site. The class is $3000. Not an option. I guess the 533 version of the test is the newest one and they haven't written the Study Guide yet. My next step was to look for the 642-532 Study Guide. Well, hells bells - it's out of print! The closest I could find was a book on Intrusion Prevention Fundamentals - and the only one of those I could find was through a B&N reseller. However, in my search I ran across an online copy of the Fundamentals book -- on Safari. And dontcha know - that's the only place the 532 study guide is available too...

Safari was a very big expense last time I subscribed. Then again, I also had an aversion to reading a book online at that time. Since then I've devoured quite a few. I rejoined - but at the lower rate. Granted, I'm limited to 5 books a month - but with the huge books that I'm reading... well, how many of those can you really read cover-to-cover in a month anyway? And I think the $9.99 is much more reasonable than the $40-50 a month that the full Library subscription requires. And the good news is : I don't have to deal with a ton of heavy books piling up on me and the hassle of getting rid of them.

Posted by BlueWolf on June 21, 2009

June 07, 2009

Next Challenge

And so for my next feat of magic... well, sometimes it seems that way. What I actually did was complete the Implementing Cisco IOS Network Security Self-Study Guide. It was a good read and a well-written book. However, what it wasn't was challenging. That's not a criticism of the book, just a note that it wasn't challenging to me. I'm hoping it's a good thing.

I took notes while I read - and I have about a half a notebook of handwritten notes. As I went through the book, I went over my previous notes. The exam [640-553] is scheduled for the 18th. In addition to that, I fortunately have access to SkillSoft CBTs which cover the same material. I went through about half of the CBTs. My plan for the next two weeks is to go over my notes at least once per day and then go through all the CBTs to review the material again thoroughly.

As I said, the book wasn't challenging. It was a lot of material I have been through before. I took notes anyway. What gave me great comfort was that the references to 'further reading' on various topics were books that I have already read. And it is a test that covers CCNA-level security. Of course, it's a prerequisite to other courses that I want to take, so off to the testing center I go...


Posted by BlueWolf on June 07, 2009

May 05, 2009

Moving Target

I woke up this morning to the wonderful news that Cisco is upgrading the R&S Lab Exam...

Oh, yeah me. That means that I'm now trying to hit a moving target. Ugh.

At least the written exam is done and over. I've been working towards this for so long that I had the original Exam Cert Guide, version 2, and version 3. At least I don't have to worry about getting version 4 for the written exam.

I took a look at the topics and subtopics on the PDF file. I really like the new format. It's a lot more clear-cut for studying purposes. The new version of the lab goes into effect on October 18, 2009. I have to be realistic. The only way I would be ready to take the lab before then would be to lock myself in a room and not come out until the exam. I'm already having a hard time getting it through anyone's head that I still need to study - yes, even after I have passed that really hard exam. Yes - there's one that's even harder and I need to take it within a limited amount of time. And no, it's not coming up soon (next week), but it takes a monumental effort to prepare. I can't wait until it's close and *then* study. They just don't get it....

So realistically speaking, I will be taking the exam after October. Which means I really should orient my studies towards the version 4 syllabus. Good thing there's a PDF with the topics and sub-topics. Because after every exam change, there's always some lag time between when the exam changes and when the study materials are updated for the new version. This also means that it's going to be a while before I can get my hands on good study materials -- ie practice labs.

Don't panic.

Frame Relay is still Frame Relay. It's on version 3 and version 4. There are also a lot of topics that remain the same - that's some comfort. I noticed that there seems to be a lot stronger emphasis on Security in version 4. Methinks the little CCNA Security detour may be more of a help than a distraction... Another interesting difference is the Troubleshooting section. From what I read, it seems that you're going to get a separate troubleshooting scenario that you have to work through. You get a few trouble tickets and you have to 'work' them.... This may make the test so very much harder for some people. But that's what I do. That's all I do is troubleshooting, troubleshooting, and more troubleshooting. Granted, I may not get the range and scope of issues that you would see at the TAC or working at a NOC, but the mindset is the same. You get informed that something is broken. You figure out what exactly is broken, how it broke, and how to fix it. You want to make sure that you fix the cause and not just eliminate the symptoms. And then you test it to make sure that it is indeed fixed. I think I'm really liking this part - it's more like what we do rather than an academic exercise.

And yeah, it's more like what you would really need to expect from an expert. Bring it on!

Posted by BlueWolf on May 05, 2009



BlueWolf Spirit


webmaster@bluewolfspirit.com

BlueWolf's Howl (343)
Chess (4)
Comics and Art (15)
Higher Level (26)
Letterboxing (1)
Photography (81)
Poetry and Stories (178)

[Previous Blogs]


2003 Blogathon Archive (53)
2005 Blogathon Archive (51)
8th Layer Archive (47)
Blue702 Archive (22)

Total Posts (821)



My Feed Reader


Morning News (Geek Stuff)
Evening News (Blog Stuff)


Mensa Member

Blue Wolf


Reading Stats


config t

Computer Books Read -- 2003
Computer Books Read -- 2004
Computer Books Read -- 2005
Computer Books Read -- 2006
Computer Books Read -- 2007
Computer Books Read -- 2008
Computer Books Read -- 2009

Pages Devoured since 21JAN03:
Chomp Chomp Chomp 33,756

Read in 2003: 8,355
Read in 2004: 3,307
Read in 2005: 3,421
Read in 2006: 6,131
Read in 2007: 1,954
Read in 2008: 3,996
Read in 2009: 6,592

Preparing For:


Implementing Cisco Intrusion Prevention Systems [642-533 IPS]

Currently Reading:



Cisco Network Security
Managing Cisco Network Security


Cert Battle Status


Certification Done To Go
CCIE R&S Written Lab
CCSP 0 4
CCNA Security 1 DONE
CCNP 4 DONE
MCSA 2003 1 DONE
MCSE:Security 2 DONE
MCSE 2K 5 DONE
MCSE NT 6 DONE
CCNA 1 DONE

MCSE : Security


CCNP

CCNA Security

CompTIA Security+

ITIL.jpg


Search This Site






Off-Site Links


Eagle Eye View
Time For Your Meds
Muffy
Penny Farthing
Jet's Place
Mad Bull
Dr. D
Fox Vox
The Ugly Green Chair
Brain Log
Awasu
Cert Coordination Center
Elegant Hack
Scriptygoddess
batgrl
#!/usr/bin/girl
Sydney Morning Herald
Reuter's Oddly Enough
ABC's Offbeat News
Candy's Pet Sitting
O'Reilly Network Weblogs
National Public Radio
Washington Post
The Providence Journal
Cape Cod Times
Business 2.0
Digital Web
Angry Little Girls
The Joy of Tech
Monkey Law

Howl Archives


Last 10 Posts

Show all archives

IPS Fundamentals
New CCNA Security
Doh!
Next Challenge
Moving Target
And there's more
Next Step
Oh, that Spanning Tree
What a test!
CCIE Written - Done
Powered by
Movable Type 3.2