Cisco Security Reseller Update – November 9, 2001
IN THIS ISSUE:
Products and Solutions
 Price Reduced on Cisco 806 Broadband Gateway!
 Upgrade Your 7100 and 7200 Routers for Blazing VPN Performance!
 Cisco to Introduce VPN/Security Services Specialization November 5
 Featured AVVID Security Partner of the Month – Websense
 Announcing FIPS (Federal Information Processing Standard) 140 Kit
Promotions
 Host IDS 90-Day Evaluation Copy Now Available for Download!
 Announcing the Availability of the Cisco IDSM Not-For-Resale Promotion in EMEA and AsiaPAC and Japan
 Announcing Availability of the Cisco IDS-4210 Not-For-Resale Promotion
 Promotional Blast on SAFE Blueprint and Cisco PIX 501, Cisco 1710, and Cisco 806 Solutions
 VPN/Security Specialized Partners Get Extra Discounts on VPN 3000 and VPN 5000 – Extended through
January 25, 2002!
 VPN 3002 Hardware Client – Not-for-resale Promotion – Extended through January 25, 2002!
Sales Tools
 Cisco IDS Wins Network World Review
 Cisco Enhances its Managed Security Services Initiative
Training
 New From Cisco Press: Cisco Secure Intrusion Detection System
 Cisco Host Intrusion Detection for Resellers – Tele Track Web Seminar – Sponsored by Comstor – December 6,
2001
 Cisco Security and VPN Reseller e-Seminar – Co-sponsored by Solsoft - December 12, 2001 10:00am PST
 Cisco Security Training Update – Several New Offerings!
Products and Solutions
Price Reduced on Cisco 806 Broadband Gateway!
New pricing for the Cisco IOS images for the Cisco 806 Broadband Gateway Router is now available. The solution price
of a VPN and Firewall-enabled Cisco 806 router is now US$799. The Cisco 806 router is ideal for small offices and
teleworkers who want to provide integrated Firewall and VPN functionality in an IOS router-based solution when
connecting to a broadband modem.
Cisco 806 (List US$649) + SEC-806-VPN-M (FW/PLUS/3DES New List US$150) includes:
- IOS FW/Plus/3DES image
- required additional 4MB DRAM (for 20MB total)
- PPPoE for DSL connections, Host name entry for Cable connections
- Stateful IOS Firewall for split tunneling
- Cisco Router Web Set Up tool
For more information on the Cisco 806 go to:
www.cisco.com/go/800
Upgrade Your 7100 and 7200 Routers for Blazing VPN Performance!
The Cisco VPN Acceleration Module (VAM) for Cisco 7200 and 7100 Series routers is the next generation in highperformance, hardware-assisted IPSec encryption acceleration. Customers can take advantage of the VAM for increased
site-to-site VPN performance by upgrading their existing Integrated Services Adapter/Module (ISA/ISM) in their Cisco
7100 and 7200 VPN Routers. Benefits of upgrading include:
 VAM provides 60% improvement in VPN performance, up to 145 Mbps, over the ISA and ISM
 VAM supports hardware-accelerated layer 3 IPPCP compression for bandwidth conservation
 VAM provides Diffie-Hellman and RSA signature acceleration for faster tunnel setup time
The upgrading process to a VAM is simple. Since the configuration of the router does not have to be modified, the
ISA/ISM card can just be replaced with a VAM card.
The VAM has the same list price as the ISA/ISM, which is $5000. The current customers of ISA/ISM can take advantage
of the benefits provided by the VAM and ease-of-upgrade opportunity by utilizing Cisco’s standard Technology Migration
Path (TMP) program.
For more information go to:
www.cisco.com/go/evpn
Cisco Introduces VPN/Security Services Specialization November 5
On November 5, 2001, Cisco introduced the VPN/Security Services Specialization, the second in a series of Services
Specialization releases available through the Cisco Channel Partner Program.
The VPN/Security Services Specialization recognizes partners for their professional services expertise related to Cisco
Security solutions. The VPN/Security Services Specialization focuses on a partner's demonstrated capabilities in the
delivery of planning, design, and implementation services related to Cisco Security solutions for large and complex
customer environments.
The VPN/Security Technology Specialization is the prerequisite to achieving this Services Specialization. By choosing a
Services Specialized partner, customers know the partner has the core knowledge and skills, services experience, and
high customer satisfaction in the specific technology for delivering on the toughest jobs.
VPN/Security Services Site
http://www.cisco.com/warp/public/765/partner_programs/specialization/services/vpnsecurity/
VPN/Security Services Specialization Q&A:
http://www.cisco.com/warp/public/765/partner_programs/specialization/services/vpnsecurity/qa.pdf
Featured AVVID Security Partner of the Month – Websense
Used by more than 15,000 organizations worldwide, including over half of the Fortune 500, Websense Enterprise is the
leading employee Internet management (EIM) software solution.
Websense Enterprise v4.3, Cisco PIX Firewall Edition and Websense Enterprise v4.3, Cisco Content Engine Edition, both
Cisco Verified, allow you to transparently monitor, manage and report on traffic flowing from your internal networks to the
Internet.
Using pass-through technology, Websense is the only filtering software tightly integrated with the Cisco PIX Firewall 500
series and the Cisco Content Engine, giving you the most accurate, reliable and scalable Internet filtering solution
available.
Websense Enterprise is also easy to install and administer. Websense Enterprise is Cisco Verified with PIX v5 and is
completely supported and interoperable with PIX v4.4 through v6.x.
Find out how Websense can help you sell more Cisco Secure PIX Firewalls and Cisco Cache Engines/Content Engines
by visiting:
www.websense.com
The fusion of Cisco and Cisco AVVID partner security and VPN solutions provides a powerful way to secure
Cisco customers' valuable corporate assets and fortify their e-business networks.
www.cisco.com/go/securitypartners
Announcing FIPS (Federal Information Processing Standard) 140 Kit
WHAT IS IT? An accessory kit containing information and materials needed to configure your FIPS 140 certified VPN
product into the FIPS 140 mode of operation.
PURPOSE: The FIPS 140 cryptographic certification for a product describes a FIPS mode of operation where a certified
crypto module is loaded with the certified version of software, configured according to the FIPS 140 approved security
policy and physically secured with approved tamper-indicating seals. This kit provides all the information and materials
needed to perform this configuration.
TARGET MARKET: US and Canadian Federal Government customers, as well as others who require FIPS 140
certification.
AVAILABILITY:
Part Numbers and Pricing Information ($200.00 per KIT) can be found in the Cisco pricing tool under SPARES &
ACCESSORIES
CVPN7100FIPS/KIT= (orderable as of 10-09-01)
CVPN7200FIPS/KIT= (orderable as of 10-09-01)
FIPS/KITS for the 2600 and 3600 will be available in November
FIPS/KIT for the 3000 Concentrator will be available in December
KEY FEATURES: An easy to order solution to configure your FIPS 140 certified VPN product for FIPS 140 mode of
operation.
WHAT IS FIPS 140?
The Federal Information Processing Standard (FIPS) 140 is a US and Canadian government standard that specifies
security requirements for cryptographic modules.
WHO HAS TESTED THE FIPS 140?
FIPS 140 testing have been certified by independent vendor laboratories, and the results of product certification testing
are submitted to the National Institute of Standards and Technology (NIST) in the US, and the Canadian Security
Establishment (CSE) in Canada for independent validation.
WHY USE CERTIFIED/EVALUATED PRODUCTS?
Security certification and evaluation provide customers with a higher level of confidence about the quality of commercial
security products. Securing information systems is all about managing risk, and the use of certified or evaluated products
reduces the number of unknowns for overall security
functionality. Cisco is committed to FIPS 140 certification
and continues to submit a variety of our crypto products through this rigorous process.
Promotions
Host IDS 90-Day Evaluation Copy Now Available for Download!
Here is the link for downloading or ordering the Host Sensor Evaluation software/CD. Note that you will be required to
enter your CCO login/password to gain access due to the fact that the product has 3DES encryption.
http://www.cisco.com/kobayashi/sw-center/ciscosecure/ids.shtml
You can also download the Evaluation Copy of the Host Sensor using the following steps:
Go to Software Center on the Cisco.com main page and click on the Cisco Secure Software link under "Software Products
and downloads".
Because the product has 3DES Encryption, you have to login to CCO.
Once logged in, you will see a link for "Cisco IDS (Network and Host)". There you will find the link to download the
Evaluation software. Again, because it has 3DES in it, you have to fill out an application to access. Once that has been
submitted and approved, you will be able to download the product.
The Evaluation is for a 90 day period. You will get an active Console and three of each type of agent (3 Standard Solaris,
3 Standard Windows, 3 Web Windows and 3 Web Solaris). At the end of the 90 day period, if not licensed, the agents will
uninstall themselves. Also, during the evaluation period, you will not able to update agent signatures.
Announcing the Availability of the Cisco IDSM Not-For-Resale Promotion in EMEA and
AsiaPAC and Japan
Demand for higher network performance is driving the migration of traditionally shared networks to switched networks. As
we start deploying more and more content aware services in the switched infrastructure, the need for security and
intrusion detection is greater than ever to ensure reliability for Internet commerce and Web applications. With most of the
Intrusion Detection System (IDS) products on the market today, devices must be placed on the Switched Port Analyzer
(SPAN) port to monitor network traffic. Although the SPAN port can provide access to network traffic, it does have certain
limitations (for example, limited number of SPAN sessions, trunked traffic). The Catalyst® 6000 IDS module is designed
specifically to address switched environments by integrating the IDS functionality directly into the switch and taking traffic
right off the switch back- plane, thus bringing both switching and security functionality into the same chassis.
The IDS Module is optimized to monitor up to 120 Mbps of traffic in a switched environment.
The IDS module can be deployed in any Catalyst 6000 family chassis; it offers the following benefits:
 Part of a Cisco end-to-end solution
 Integrated solution
 Transparent operation
 Investment protection
 Real-time intrusion detection
 Comprehensive attack recognition/signature coverage
 Ability to monitor multiple VLANs simultaneously
 Low cost of ownership
Version 3.0 is the latest release of the Cisco IDS application software for the IDS Module. It delivers the latest in
innovative IDS features, including Active Response capabilities and auto-signature updater.
Now through May 31, 2002, resellers in AsiaPAC, Japan, and EMEA can purchase the IDSM through their distributor or
by ordering direct from Cisco for a Direct VAR for US$5000. Limit one NFR per reseller (per country or state) at this price.
Part Number
WS-X6381-IDS-NFR=
Product Description
Cisco IDSM (Intrusion Detection System Module)
NFR Price
US$ 5000 (List - US $14,995)
For complete details of this promotion, refer to the Partners and Resellers Promotions page and search for PROMO000701 WS-X6381-IDS-NFR : http://www.cisco.com/partner/WWChannels/marketing_promotions/promotions/
Data sheet for the IDSM: http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/prodlit/6kids_ds.htm
Data sheet for IDS products: http://www.cisco.com/warp/public/cc/pd/sqsw/sqidsz/prodlit/index.shtml
Documentation for IDSM: http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/idsm/index.htm
To subscribe to IDS Active Updates: http://www.cisco.com/warp/public/779/largeent/it/ids_news/subscribe.html
Announcing Availability of the Cisco IDS-4210 Not-For-Resale Promotion
The Cisco Secure IDS-4210 Sensor is a robust network security "appliance" on a 1 RU rack-mounted chassis, which
detects unauthorized network activity by analyzing traffic in real-time, enabling users to quickly respond to security
breaches. The IDS-4210 addresses attacks that firewalls and VPNs cannot detect. It is optimized to monitor up to 45Mbps
environments and is ideally suited for monitoring multiple T-1/E-1, T-3, and Ethernet environments. The IDS 4210 now
ships with version 3.0 sensor software. Version 3.0 is the latest release of the Cisco IDS application software for the 4200
Series appliances. It delivers the latest in innovative IDS features, including customizable signature language, extensions
to the Active Response capabilities, and secure administration.
Now through March 31, 2002, resellers can purchase the IDS-4210 through their distributor or by ordering direct from
Cisco for a Direct VAR for US$2000. Limit one NFR per reseller (per country or state) at this price.
Part Number
IDS-4210
Product Description
4210 Sensor
NFR Price
US$2000 (List - US$8000)
For complete details of this promotion, refer to the Partners and Resellers Promotions page and search for the IDS-4210
NFR:
http://www.cisco.com/partner/WWChannels/marketing_promotions/promotions/
Promotional Blast on SAFE Blueprint and Cisco PIX 501, Cisco 1710, and Cisco 806 Solutions
VSEC BU and PCG Marketing Teams joined forces to co-promote SAFE direct marketing program October 17th. This
blast addresses SAFE and the specific security capabilities of the Cisco 1710 Security Access Router, Cisco 806
Broadband Gateway Router, and Cisco PIX 501 Firewall. The campaign will reach 165,000 enterprise, small-tomedium business and channel customers to educate them on Cisco's Dual Ethernet security offerings and the SAFE
Blueprint for small- to medium-sized networks.
The campaign is designed to 1) communicate the importance of network security through the SAFE Blueprint, and 2) to
educate customers on the specific Cisco product best suited to protect their network. Recipients will be able to order the
SAFE Blueprint poster and white papers. Responses are directed to a dedicated website where Cisco will capture leads
that will be shared with partners.
View a SAMPLE of the Dual Ethernet Secure Access Solutions campaign website:
http://www.cisco.com/offer/safe/V1225-700-XA.
VPN/Security Specialized Partners Get Extra Discounts on VPN 3000 and VPN 5000 Through
US Distributors – Until January 25, 2002
Here’s an extra incentive to get your VPN/Security Specialization! Through January 25, 2002, VPN/Security Specialized
resellers will be able to purchase VPN 3000 and VPN 5000 family products through US Distributors at an additional 7%
discount!
For more details on this program, refer to the following URL:
http://www.cisco.com/warp/partner/synchronicd/cc/serv/mkt/pr/rpromo/us/00634_po.htm
For details on how to become VPN/Security Specialized, check out the URL below:
http://www.cisco.com/warp/public/765/partner_programs/specialization/vpn_security/
VPN 3002 Hardware Client – Not-for-resale Promotion – Extended through January 25, 2002
Cisco is pleased to announce that the Cisco VPN 3002 Hardware Client Not-for-Resale Promotion has been extended to
January 25, 2002!
The VPN 3002 is a hardware version of the new Cisco VPN Client Release 3.0. It emulates a software client in hardware.
Customers like to use this solution because it allows simple, highly scalable and reliable VPN deployment in a variety of
applications, across all operating systems without altering the workstation or PC. It also dramatically reduces support
expenditures for VPN environments.
One NFR VPN 3002 Hardware Client will be offered to resellers at the NFR price for the qualifying period (June 15, 2001
– January 25, 2002). Resellers are eligible to buy one of each model of the 3002 – the dual Ethernet model (CVPN3002BUN-K9) and the 8 port switch model (CVPN3002-8E-BUN-K9).
PRICING
CVPN3002-BUN-K9
List Price - $995
Reseller NFR Price - $400
Cisco VPN 3002 Hardware Client includes hardware, software and US power cord
CVPN3002-8E-BUN-K9
List Price - $1195
Reseller NFR Price - $486
Cisco VPN 3002 Hardware Client with 8 port switch includes hardware, software and US power cord
HOW TO ORDER
Orders Through US Distribution:
To order the Not-for-Resale Kit, the reseller will contact one of our US distribution partners. The Authorized Distribution
partners in the US are Comstor, Ingram, and TechData. When contacting the distributor, the reseller will reference the
promotion bulletin, Promo-000564, to receive the Not-For-Resale discount.
For Purchases Direct from Cisco
1. Customer must clearly note (CVPNNFR-584) on the Purchase Order
2. Place the order with your Cisco Customer Service Representative.
Purchases Direct from Cisco via Cisco's Networking Products MarketPlace (NPM)
1. Select Order Type as “Trade-In/Promotional Order” and fill in basic order Info then Click Continue
2. Select “Header Details” tab and select "Promotional Program" as the type of program
3. Enter (CVPNNFR-584) in the "CTMP Quote#/Promotional Program Name " field
4. Enter the total net credit per the program details in the "Credit Amount" field.
5. Click Save Order and then continue to enter per standard ordering procedures.
Sales Tools
Cisco IDS Wins Network World Review
Network World published the results of their annual IDS review comparing commercial products from Cisco, ISS,
Enterasys (Dragon), Computer Associates, and Intrusion.com. Cisco IDS took top honors with a score of 4.25 securing
the "Blue Ribbon Winner" award.
Scorecard: http://www.nwfusion.com/reviews/2001/1008revnetr.html
Full Report: http://www.nwfusion.com/reviews/2001/1008rev.html
This review confirms Cisco's leadership position in the IDS market as highlighted in the recent Network Computing review.
However, in contrast to the NWC review, Cisco IDS took top position over Enterasys' Dragon product by a sizable margin
For more information regarding IDS products:
www.cisco.com/go/ids
Cisco Enhances its Managed Security Services Initiative
Available in the U.S. currently - EMEA and AsiaPAC's programs is scheduled to be implemented in the next 3- 6
months
Corporations of all sizes are increasingly concerned with the challenges of managing a security and VPN
infrastructure. Many organizations are looking for comprehensive and reliable outsourced security solutions. The
US market for managed security services is estimated to grow at a CAGR of 44.3% through 2007 and reach $2.1
billion [Frost & Sullivan, 2001]. In order to take advantage of this growing opportunity, Cisco is enhancing its
Managed Security Services initiative to add more value to service provider partners and their enterprise end
customers. Commercial services for managed firewall, VPN, and intrusion detection are becoming readily
available on a worldwide basis and Cisco has partnered with the top providers to offer enterprises the best
outsourced security solutions available today.
Cisco’s goal is to accelerate the adoption of security solutions and e-business applications by building and
strengthening relationships with key security providers in the industry. For recent examples of commercially
available services and providers, please visit: http://www.cisco.com/go/managedsecurity
Providers who offer these services may be traditional carriers, tier 1 ISPs, tier 2 and 3 ISPs, CLECs, specialty players, or
the new breed of managed service providers (MSP). Cisco is adapting to the evolving service delivery requirements of
each of these constituencies by offering two enhanced programs and business unit support from the VPN and Security
Business Unit (VSEC).
MANAGED SECURITY SERVICES PROGRAMS
Cisco Powered Network, Managed Security Services Designation
The popular Cisco Powered Network (CPN) program was extended in March 2001 to recognize partners who offer
managed security services based on Cisco Systems’ industry-leading firewall and intrusion detection products. This
program is now expanded to include managed CPE-based VPN solutions using best-in-class Cisco VPN products.
Current CPN providers that support this initiative include: Broadwing, Exodus, Cervalis, Inflow, Genuity, SBC, Sprint,
Exenet and XO Communications. Additional providers will be added to this list in the near future.
Cisco AVVID Partner Program, Security and VPN Solutions Set
The Security and VPN Solutions category under the AVVID Partner Program is of particular interest to providers who
deliver managed security and VPN services.
The Security and VPN Services category highlights providers who offer a wide-variety of complementary network security
services.
The Outsourced Security Monitoring and Management Services category within this program is designed to help
partners provide best-in-class managed security services to enterprise end-customers. Services in this category can
range from simple alarm and incident tracking to complete turnkey services for deployment, management and
maintenance of the customer’s security and VPN infrastructure.
Current AVVID Partners that support this initiative include: Counterpane, NetSolve RipTech, Ubizen and Veritect. Many of
these providers have recently undergone a verification process whereby their outsourced management service has been
verified and approved. This offers interested enterprise customers an increased level of confidence in outsourcing their
security needs. Please refer to the Cisco AVVID Partner web pages for the latest verification status on security service
providers:
http://www.cisco.com/go/securityservices
ADDITIONAL RESOURCES: The VPN and Security Business Unit (VSEC)
The VSEC Service Provider Marketing team can assist account teams and all types of providers in their efforts to design
and deploy managed security services. This assistance can be especially helpful while prospective partners are in the
early stages of service definition or pursuing entry into one of the established ecosystem programs.
Contact our team: managedsecurity@cisco.com when you or your account needs:
If your enterprise customers require managed security services or your service providers are looking to expand their
revenue-generating service offerings, please consider the above services programs.
New service providers have been recently added to these programs. Additionally, other providers are being added to the
above programs on an on-going basis, so please check partner listings for up to date information. For general information
and links to additional resources, please visit:
http://www.cisco.com/go/managedsecurity
When searching for partners that offer Managed Security Services to enterprise customers visit:
Managed Security Services Overview and Recently Announced Services
http://www.cisco.com/go/managedsecurity
Cisco AVVID Partner Program, Security and VPN Solutions
http://www.cisco.com/go/securitypartners
Cisco Powered Network Program, Managed Security Services
http://www.cisco.com/go/cpn
Training
New From Cisco Press: Cisco Secure Intrusion Detection System
We are proud to announce the newest member of the Cisco Press security family, Cisco Secure Intrusion Detection
System, edited by Earl Carter. This Cisco Press book joins Managing Cisco Network Security (MCNS) by Mike
Wenstrom, which was published January 2001. Both are available at your local bookstores, computer stores, and online
booksellers. Other books soon to be published include Cisco Secure PIX Firewall Advanced and Cisco Secure Virtual
Private Networks.
Implement network surveillance system for 24-hour security with the official CSIDS Coursebook. Cisco Secure Intrusion
Detection System (CSIDS) provides a clear explanation of why network security is crucial in today's converged networking
environment, how CSIDS improves the security on a network and how to install and configure CSIDS. CSIDS is a realtime, network-based IDS designed to detect, report, and terminate unauthorized activity throughout a network. The
industry's first, and now the market-leading IDS, CSIDS is the dynamic security component of Cisco's end-to-end security
product line. It is the only book that concentrates solely on implementing CSIDS. Full of configuration techniques and
security management details And based on officially developed course materials from Cisco Systems, this book provides
the recommended training materials for Cisco security specialization certification.
Cisco Host Intrusion Detection for Resellers – Tele Track Web Seminar – Sponsored by
Comstor – December 6, 2001
If you’ve heard of Nimda or Code Red, you’ll want to join Cisco Systems and Comstor on December 6, 2001 for a FREE
Tele Track web conference focusing on Host-based Intrusion Detection.
Recent security breaches such as Nimda and Code Red affected millions of network servers and workstations around the
world, costing billions of dollars in recovery costs. These types of aggressive attacks are not thwarted even by properly
configured firewalls! Their nasty code is embedded in HTTP packets which are passed transparently through firewalls.
In order to stop these kind of attacks, there is a new family of products from Cisco Systems call Host Intrusion Detection
Systems (HIDS).
To learn about these products and how they can protect against damaging viruses and worms join Doug Waggle, Cisco
Product Manager for Host Intrusion Detection on Thursday, December 6, 2001 for this PlaceWare Web Seminar.
More information on how to register for this event will be posted on the following url within the next few days:
http://www.comstor.com/security/teletrack_preregister.asp
Cisco Security and VPN Reseller e-Seminar – Co-sponsored by Solsoft - December 12, 2001
10:00am PST
The Cisco Security and VPN Business Unit in conjunction with Solsoft, an AVVID Security Partner, will be
holding an e-Seminar for Resellers on Wednesday, December 12, 2001 at 10:00am Pacific Time.
Please join us for this Based-based seminar where Cisco and Solsoft will present the following topics:
-
The New PIX Firewall 501 – industrial-strength security at a consumer price
-
New Host Intrusion Detection Family – defend your servers against viruses and worms like Nimda
and Code Red!
-
Update on the Cisco AVVID Security Partner Program
-
Learn how Solsoft NP can speed up the adoption and implementation of security projects and
shortens sales cycles
-
Integration of Solsoft NP into the SAFE architecture
-
Migration features from competitive installations to Cisco PIX and Cisco IOS
-
How to generate more revenue from the combination of Cisco and Solsoft solutions
The presentation will include both a product overview and a live product demonstration.
Who is Solsoft?
Solsoft provides policy management solutions for network security, offering visual definition of policies and
automated generation and deployment of configurations on devices.
The company's flagship product, Solsoft NP, solves a complex and costly network security problem by offering
a centralized platform that automates the provisioning of security rules on multi-vendor routers, switches,
firewalls, and VPNs.
As part of the Cisco AVVID Partner Program, Solsoft NP 4.2 has been verified to provide advanced security management
capabilities for the latest versions of Cisco PIX® Firewalls and routers based on Cisco IOS software.
We will be sending out information on how to register for this e-Seminar in the next two weeks! Stay tuned.
Cisco Security Training Update - Several New Offerings!
New Cisco Secure Policy Manager Training
Cisco Secure Policy Manager (CSPM) is a one-day, leader-led, lab-intensive course which will be delivered by Cisco
Learning Partners around the world. This task-oriented course teaches the knowledge and skills needed to describe,
configure, verify, and use CSPM 2.3f to manage Cisco VPN routers and the PIX Firewall. Cisco Learning Partners will
begin delivering CSPM to customers starting November 2001.
New Cisco Secure IDS Host Sensor Training
Cisco Secure IDS Host Sensor (CSIHS) is a two-day, leader-led, lab-intensive course which will be delivered by Cisco
Learning Partners around the world. This task-oriented course teaches the knowledge and skills needed to describe,
configure, and manage the Cisco IDS Host Sensor. The course focuses on a defense-in-depth IDS security solution.
Cisco Learning Partners are attending Train-the-Trainer sessions in Beijing, Austin, and Brussels and will begin delivering
CSIHS to customers starting November 2001.
Cisco Security Training Classes
Cisco has developed uniquely tailored training courses designed to help users secure, monitor, test, and improve their
network security. Security training is available worldwide through Cisco's network of Learning Partners. Training is
delivered in many formats including classroom, web-based, and LIVE E-Learning. To find training in your region, use
Cisco's Learning Locator tool to search for any of the following security courses:
-Managing Cisco Network Security 2.0 (MCNS)
-Cisco Secure Virtual Private Networks 1.01 (CSVPN)
-Cisco Secure PIX Firewall Advanced 2.0 (CSPFA)
-Cisco Secure Intrusion Detection System 2.1(CSIDS)
-Cisco Secure Intrusion Detection System Host Sensor 1.0 (CSIHS)
-Cisco Secure Policy Manager 1.1 (CSPM)
Cisco Security Training on CD-ROM
Security training for VPNs, PIX Firewalls, and intrusion detection systems is now available on CD-ROM through the
Learning Store. These CDs are computer-based training modules, and include graphics, interactive syntax labs, and
written labs that students can perform off-line. These modules allow students to complete practice lab situations, without
having access to the equipment. The modules also include quizzes for each chapter and help students prepare for the
Cisco Security Specialist 1 certification. Product numbers for the CDROMs are as follows: CSPFA 2.0 TRNG-800238,
CSVPN 1.01 TRNG-800200, CSIDS 2.1 TRNG-800237.
Cisco Security Training from Cisco Press
Cisco is proud to announce the newest member of the Cisco Press security family, Cisco Secure Intrusion Detection
System, edited by Earl Carter. This Cisco Press book joins Managing Cisco Network Security (MCNS) by Mike Wenstrom,
which was published January 2001. Both are available at your local bookstores, computer stores, and online booksellers.
Other books soon to be published include Cisco Secure PIX Firewall Advanced and Cisco Secure Virtual Private
Networks.
Cisco Security Specialist 1 (CSS1) Certification
The Cisco Security Specialist 1 designation validates skills and knowledge in three key areas of network security:
firewalls, intrusion detection systems, and virtual private networks. Because these specialists understand major
networking protocols and procedures and how to integrate security devices with the underlying network, they are uniquely
positioned to design secure business solutions. For more info visit www.cisco.com/go/securitytrng and download the
datasheet.
SUBSCRIBE: Send an email to "mailer@cisco.com" and include "subscribe sam-resellers 'your email address'" in the
body of the message.
UNSUBSCRIBE: Send an email to "mailer@cisco.com" and include "unsubscribe sam-resellers 'your email address'"
in the body of the message.