Course Syllabus

Firewalls and Network Security

ITSY 2401

Semester with Course Reference Number (CRN)

Summer 2019

Instructor contact information (phone number and email address)

Pham Dai Xuan

Tel.: (84-28) 37155033, ext. 1551

Email: xuanpd@saigontech.edu.vn

Website: http://www.saigontech.edu.vn/faculty/XuanPD/

 

Office Location and Hours

Office: Room 605, SaigonTech Tower, Quang Trung Software City

Office Hours: 7:30 – 16:30

Course Location/Times

Lecture:

    Room 702, SaigonTech Tower, Quang Trung Software City

    Tuesday, 13:00 - 15:00

    Thursday, 13:00 - 15:00

Lab:

    Room 702, SaigonTech Tower, Quang Trung Software City

    Tuesday, 15:15 - 17:15

    Thursday, 15:15 - 17:15

Course Semester Credit Hours (SCH) (lecture, lab) If applicable

Credit Hours:

4

 

Lecture Hours:

2

 

Laboratory Hours:

4

 

External Hours:

 

 

Total Course Contact Hours

96

Course Length (number of weeks)

12

Type of Instruction

Lecture/Lab

Course Description:

Identify elements of firewall design, types of security threats and responses to security attacks. Use best practices to design, implement, and monitor a network security plan. Examine security incident postmortem reporting and ongoing network security activities.

Course Prerequisite(s)

PREREQUISITE(S): 

  • ITCC 1414 – CCNA1: Introduction to Networks


  FREQUENT REQUISITES

  • College Level Reading
  • College Level Mathematics
  • College Level Writing

Academic Discipline/CTE Program Learning Outcomes (PLO)

1. Install, configure, upgrade, and troubleshoot personal computer operating systems

2. Install, configure and troubleshoot networking hardware, protocols and services

3. Manage and maintain network Infrastructure

4. Demonstrate knowledge in general security concepts, communication security, infrastructure security, and unified communications

Course Student Learning Outcomes (SLO): 4 to 7

1. Understanding and configure the core ASA firewall features.

2. Thread detection: Identity, understand, and stop attacks.

3. Understand and configure VPN using IPSec protocol standard.

4. Firewall redundancy: Configure firewall failover.

Learning Objectives (Numbering system should be linked to SLO - e.g., 1.1, 1.2, 1.3, etc.)

1. Understanding and configure the core ASA firewall features.

    1.1. Getting started with Cisco firewalls

    1.2. Configure network address translation

    1.3. Using access control lists

    1.4. Configuring VLANs and subinterfaces

    1.5. Advanced features of device configuration

2. Thread detection: Identity, understand, and stop attacks.

    2.1. Basic thread detection

    2.2. Advanced thread detection

    2.3. Scanning thread detection

3. Understand and configure VPN using IPSec protocol standard.

    3.1. How IPSec works

    3.2. Site-to-site VPN using IKEv1 IPSec

    3.3. Site-to-site VPN using IKEv2 IPSec

    3.5. Remote access IPSec VPNs

4. Firewall redundancy: Configure firewall failover.

    4.1. ASA models supporting failover

    4.2. Understanding active/standby failover

    4.3. Configuring active/standby failover

Instructional Methods

Face to Face

Instructor's Requirements

As a student wanting to learn the course, it is your responsibility to read the textbook and the supplemental materials posted in the blackboard, complete assignments in time, participate in the classroom exercises and activities, and attend class regularly.

 

As I believe that engaging the students in the learning is essential for teaching to be effective, you will spend the majority of class time involved in collaborative activities. You will be involved in class exercises, collaborate with your classmates and your instructor.  As you will want to contribute to these discussions, you will need to come to class prepared to discuss, analyze and evaluate information from your text and other assigned readings.

Cheating and Plagiarism

http://www.saigontech.edu.vn/en/academic-dishonesty-policy.html

1. Cheating

a)    Copy tests, works, reports etc. from computers, database, programs of other students and people.

b)    Use study materials or electronic devices during examinations, tests without instructor’s permission.

c)     Collaborate with other students during examinations, tests, or assignments without instructor’s permission.

d)    Use or submit the same work for different classes without instructors’ permission.

e)    Use, buy, sell, steal, spread out, ask for a part or a whole of unpublished tests.

f)      Take the test for someone else or have someone take the test for you or help or ask someone to do your homework.

g)    Bribe to get unpublished tests.

h)    Bribe students, instructors, or school staff to change grades.

2. Plagiarism

a)    Submit other people’s works to get points.

b)    Copy words or ideas without citing source and author’s name.

c)     Do not use quotation marks for direct citation.

d)    Cite the wrong source.

e)    Change the wording but sentence structure without citing author’s name.

f)      Borrow words/ phrases from a source without using quotation marks or with making negligible change.

g)    Copy too many words or ideas that make up the most of personal work, regardless of whether source and author’s name are cited.

h)    Copy information from Internet such as company information, market information etc.

i)      Use Google Translation to write up papers, regardless of whether you use your own ideas or borrow ideas.

Use Google Translation to write up papers by translating Vietnamese from existing Vietnamese study materials/ sources into English.

Course Policies on Make-up Exams, Late Assignments, Tardiness

Students are expected to take each exam on the scheduled dates.

 

Make-up exams are not guaranteed, but are granted at the discretion of the instructor. If make-up exams are allowed, it is necessary to make arrangements with the instructor prior to exam date.

 

Students will not be able to submit assignments, projects after the due/closing date.

Grading Scheme

A = 100- 90

B = 89 – 80

C = 79 – 70

D = 69 – 60

F = 59 and below

The passing grade of this course is D.

Instructor Grading Criteria

Homework Assignments, Projects:      50%

Mid-term Exam:                                   25%

Final Exam:                                          25%

Instructional Materials

Andrea, H.. Cisco ASA Firewall Fundamentals: Step-By-Step Practical Configuration Guide Using the CLI for ASA v8.x and v9.x, 3rd Edition, CreateSpace Independent Publishing Platform, 2014.

Santos, O., and Stuppi, J., CCNA Security 210-260 Official Cert Guide, Cisco Press, 2015.

 

Course Calendar

 

Week

Date

Topics

Note

1

Tue Jun 4, 2019

Getting Started with Cisco Firewalls

Chapter 1

Tue Jun 4, 2019

Tutor session

 

Thu Jun 6, 2019

Configuring Network Address Translation

Chapter 2

Thu Jun 6, 2019

Tutor session

 

2

Tue Jun 11, 2019

Configuring Network Address Translation

Chapter 2

Tue Jun 11, 2019

Tutor session

 

Thu Jun 13, 2019

Using Access Control Lists (ACL)

Chapter 3

Thu Jun 13, 2019

Tutor session

 

3

Tue Jun 18, 2019

Using Access Control Lists (ACL)

Chapter 3

Tue Jun 18, 2019

Tutor session

 

Thu Jun 20, 2019

Configuring VLANs and Subinterfaces

Chapter 4

Thu Jun 20, 2019

Tutor session

 

4

Tue Jun 25, 2019

Configuring VLANs and Subinterfaces

Chapter 4

Tue Jun 25, 2019

Tutor session

 

Thu Jun 27, 2019

Configuring Thread Detection

Chapter 5

Thu Jun 27, 2019

Tutor session

 

5

Tue Jul 2, 2019

NO CLASS

 

Tue Jul 2, 2019

NO CLASS

 

Thu Jul 4, 2019

NO CLASS

 

Thu Jul 4, 2019

NO CLASS

 

6

Tue Jul 9, 2019

Configuring Thread Detection

Chapter 5

Tue Jul 9, 2019

Tutor session

 

Thu Jul 11, 2019

IPSec VPNs

Chapter 6

Thu Jul 11, 2019

Tutor session

 

7

Tue Jul 16, 2019

IPSec VPNs

Chapter 6

Tue Jul 16, 2019

Tutor session

 

Thu Jul 18, 2019

Midterm exam

 

Thu Jul 18, 2019

Midterm exam correction

 

8

Tue Jul 23, 2019

Configuring Firewall Failover

Chapter 8

Tue Jul 23, 2019

Tutor session

 

Thu Jul 25, 2019

Configuring Firewall Failover

Chapter 8

Thu Jul 25, 2019

Tutor session

 

9

Tue Jul 30, 2019

Configuring Firewall Failover

Chapter 8

Tue Jul 30, 2019

Tutor session

 

Thu Aug 1, 2019

Advanced Features of Device Configuration

Chapter 9

Thu Aug 1, 2019

Tutor session

 

10

Tue Aug 6, 2019

Advanced Features of Device Configuration

Chapter 9

Tue Aug 6, 2019

Tutor session

 

Thu Aug 8, 2019

Routing Protocol Support

Chapter 12

Thu Aug 8, 2019

Tutor session

 

11

Tue Aug 13, 2019

Routing Protocol Support

Chapter 12

Tue Aug 13, 2019

Tutor session

 

Thu Aug 15, 2019

Modular Policy Framework Configuration

Chapter 13

Thu Aug 15, 2019

Tutor session

 

12

Tue Aug 20, 2019

Modular Policy Framework Configuration

Chapter 13

Tue Aug 20, 2019

Tutor session

 

Thu Aug 22, 2019

Final exam

 

Thu Aug 22, 2019

Exam correction

 

13

Tue Aug 27, 2019

Quality of Service (QoS) Configuration

Chapter 14

Tue Aug 27, 2019

Tutor session

 

Thu Aug 29, 2019

Quality of Service (QoS) Configuration

Chapter 14

Thu Aug 29, 2019

Tutor session

 

 

Exam Format

 

Exam

Exam Type

Open/Close Book

Number of Questions

Duration (min.)

Points

Chapters

Mid-term

Theory

Close

30

15

30

1, 2, 3, 4, 5, 6

Practice

Close

4

90

70

1, 2, 3, 4, 5, 6

Final

Theory

Close

30

15

30

8, 9, 12, 13, 14

Practice

Close

4

90

70

8, 9, 12, 13, 14