32310 Network Security Appliances
Warning: The information on this page is indicative. The subject outline for a
particular session, location and mode of offering is the authoritative source
of all information about the subject for that offering. Required texts, recommended texts and references in particular are likely to change. Students will be provided with a subject outline once they enrol in the subject.
Subject handbook information prior to 2025 is available in the Archives.
Credit points: 6 cp
Subject level:
Postgraduate
Result type: Grade and marksRequisite(s): 32524 LANS and Routing
Recommended studies: understanding of the principles and objectives of network security and of the fundamentals of network security technologies; CCNA-level networking concepts and skills, in particular CCNA-level routing and switching skills
Description
This is a practice-based subject, using material based on the Cisco Network Security course. Learning is laboratory-based. The emphasis is on network security appliances, in particular:
- security technologies, products and solutions
- firewall and secure router design, installation, configuration and maintenance
- AAA implementation using routers and firewalls
- VPN implementation using routers and firewalls.
-
Types of encryption, hashes, and digital signatures work together to provide confidentiality, integrity, and authentication.
Subject learning objectives (SLOs)
Upon successful completion of this subject students should be able to:
1. | Describe the theoretical aspects of computer security with an in-depth focus on modern network security threats. (B.1) |
---|---|
2. | Design, configure, test, manage, monitor and support network security infrastructure devices. (C.1) |
3. | Apply network security theory into practice using industry based techniques, processes and standards. (D.1) |
4. | Demonstrate practical skills on real-world commercial networking equipment. (D.1) |
Course intended learning outcomes (CILOs)
This subject also contributes specifically to the development of the following Course Intended Learning Outcomes (CILOs):
- Socially Responsible: FEIT graduates identify, engage, and influence stakeholders, and apply expert judgment establishing and managing constraints, conflicts and uncertainties within a hazards and risk framework to define system requirements and interactivity. (B.1)
- Design Oriented: FEIT graduates apply problem solving, design thinking and decision-making methodologies in new contexts or to novel problems, to explore, test, analyse and synthesise complex ideas, theories or concepts. (C.1)
- Technically Proficient: FEIT graduates apply theoretical, conceptual, software and physical tools and advanced discipline knowledge to research, evaluate and predict future performance of systems characterised by complexity. (D.1)
Teaching and learning strategies
This subject is a hands-on, career-oriented e-learning solution that emphasizes practical experience. It is a blended curriculum with both online and classroom learning.
Students attend an internetworking lab class for 4 hours/week. It consists of a one-hour online lecture and three hours of combined tutorial and laboratory sessions in the lab.
The lecture material is available online. Students are required to study this material in their own time before the class.
Students work collaboratively throughout the Session. From week 1 students form groups and all lab work becomes a shared experience. All additional activities, such as researching concepts, exploring networking challenges and building the required networks are achieved by students working cooperatively together.
Groups are also encouraged to share their findings with other groups, and whilst most assessments are individual, this shared knowledge contributes positively to the whole learning experience.
Content (topics)
This subject aims to develop an in-depth understanding of network security principles as well as the tools and configurations available. The following tools are covered:
- Protocol sniffers/analyzers
- TCP/IP and common desktop utilities
- Cisco IOS Software
- Cisco VPN client
- Packet Tracer (PT)
- Web-based resources
The predominant lab types are procedural, skills integration challenges, troubleshooting, and model building.
At the completion of this course student will understand the basic requirements for securing a network, and to secure data sent over the Internetwork between sites by building a secure VPN tunnel between them.
Upon completion of the CCNA Security course, students will be able to perform the following tasks:
- Describe the security threats facing modern network infrastructures
- Secure network device access
- Implement AAA on network devices
- Mitigate threats to networks using ACLs
- Implement secure network management and reporting
- Mitigate common Layer 2 attacks
- Implement the Cisco IOS firewall feature set
- Implement the Cisco IOS IPS feature set
- Implement site-to-site IPSec VPNs
- Explain the types of encryption, hashes, and digital signatures
- Explain how a public key infrastructure is used to ensure data confidentiality and provide authentication
Assessment
Assessment task 1: Combined Module Online Tests
Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1 and 2 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): B.1 and C.1 |
---|---|
Type: | Exercises |
Groupwork: | Individual |
Weight: | 25% |
Assessment task 2: Skills Based Assessment
Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 2, 3 and 4 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
---|---|
Type: | Laboratory/practical |
Groupwork: | Individual |
Weight: | 35% |
Assessment task 3: End-of-session Quiz
Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1 and 2 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
---|---|
Type: | Quiz/test |
Groupwork: | Individual |
Weight: | 40% |
Minimum requirements
In order to pass the subject, a student must achieve an overall mark of 50% or more.
Required texts
Online Curriculum, Network Security V1.0, Cisco Academy (Notes: access to the online materials is provided by the subject coordinator during the semester).
Other resources
Cisco Academy and Examination Website - https://www.netacad.com
Online support for this subject will be provided through Canvas: https://canvas.uts.edu.au/