CCIE Practical Studies: Security (CCIE Self-Study)

This is much clear, easy to read and save time if you need to look up the command real quick. Other Cisco press books used the similar format, but I don??t know why this book didn??t follow it.
As the writer wrote in the book ??No single source ?V including this book ?V can or should claim to be a one-stop solution for the CCIE lab preparation.?? (page 901), readers who are preparing for the exam should also consider buying other books from Cisco Press or searching more information on Cisco Security Applications from Cisco Connection Online. I would recommend this book to CCIE Security candidates who need lab practices and configuration examples. Although you can find plenty of examples from Cisco.com, the book is worth to buy for lab practices before the Armageddon.

Rating:
Summary: Great book for CCIE Security Lab Exam
Review: After searching for resources for the CCIE security exam, I found this book (CCIE Practical Studies: Security, ISBN: 1-58705-110-9) from Cisco Press website. Even though the title is ¡§Practical Studies: Security¡¨, it should contain more practical studies on security part of the lab exam. ¡§CCIE Practical Studies: Security¡¨ is useful for experienced Networkers to practice the security lab exams by deploying case studies and sample labs before the exam.
An advance feature of this book is it provides a lot of case scenarios. Throughout the book, readers can learn Cisco¡¦s security implementations by step-by-step configurations. Other useful features also include: Review questions and FQAs at the end of all chapters (except Chapter 26: Sample Lab Scenarios) which help readers to get solid idea of security principles and impermanent. The solutions of the 8 complete lab scenarios from the companion CD-ROM also illustrate the complexity of the CCIE Security lab exam.
However, I only give this book four out of five stars since some of the topics listed on the CCIE security written exam blueprint are missing from the book. Two of them are Cisco Secure Policy Manager and Cisco Secure Scanner. CCIE Candidates might not need to configure those Cisco Applications during the lab exam, however, every CCIE should know how to run those applications and how they work. I would love to see those topics will be covered in the next edition of this book. And, If you want to know the principal of Committed Access Rate (CAR), details on Intrusion Detection and specification on Security in General, you should read ¡§CCIE Professional Development Network Security Principle and Practices¡¨ by Saadat Malik (ISBN 1-58705-025-0) first.
Another problem of the book is it uses 42% of its 1000 pages on Routing and Switching, those chapters should be leaved to other books suggested by Cisco Systems (Routing TCP/IP by Doyle and Cisco LAN Switching by Clark and Hamilton). This is book should focus on security part of the exam only. It should mention more on Intrusion detection and Network-Based Application Recognition (NBAR). In my opinion, the first three chapters should also be summarized into a small chapter. CCIE candidate should know how to ¡§formulate a study plan¡¨ or ¡§take regular breaks while studying¡¨. People who don¡¦t know those ¡§study habits¡¨ should take a learning assistance class in a junior college. CCIE exam is one of the toughest professional exams for network administrator and network security engineer. So, if you don¡¦t know how to deal with problems, such as ¡§There¡¦s too much to remember¡¨, don¡¦t take the exam.
Poor Cisco IOS commands organization is also a reason that this book has only four stars. For example in Chapter 17: IP services (page 558), under section ¡§Monitor the MNLB Forwarding Agent¡¨
The book said
¡§To display the status of affinities, or connection information, use the following command:
R2#show ip casa affinities
To display the operational status of the Forwarding Agent, use the following command:
R2#show ip case oper
To display ¡K.¡¨
The section can be rewrote like this
¡§To monitor the status of the MNLB Forwarding Agent.
R2#show ip casa [options]
Options
affinities the status of affinities, or connection information
operthe operational status
statsthe statistical information
wildcardinformation about wildcard blocks¡¨

This is much clear, easy to read and save time if you need to look up the command real quick. Other Cisco press books used the similar format, but I don¡¦t know why this book didn¡¦t follow it.
As the writer wrote in the book ¡§No single source ¡V including this book ¡V can or should claim to be a one-stop solution for the CCIE lab preparation.¡¨ (page 901), readers who are preparing for the exam should also consider buying other books from Cisco Press or searching more information on Cisco Security Applications from Cisco Connection Online. I would recommend this book to CCIE Security candidates who need lab practices and configuration examples. Although you can find plenty of examples from Cisco.com, the book is worth to buy for lab practices before the Armageddon.

Rating:
Summary: Great book for CCIE Security Lab Exam
Review: After searching for resources for the CCIE security exam, I found this book (CCIE Practical Studies: Security, ISBN: 1-58705-110-9) from Cisco Press website. Even though the title is ¡§Practical Studies: Security¡¨, it should contain more practical studies on security part of the lab exam. ¡§CCIE Practical Studies: Security¡¨ is useful for experienced Networkers to practice the security lab exams by deploying case studies and sample labs before the exam.
An advance feature of this book is it provides a lot of case scenarios. Throughout the book, readers can learn Cisco¡¦s security implementations by step-by-step configurations. Other useful features also include: Review questions and FQAs at the end of all chapters (except Chapter 26: Sample Lab Scenarios) which help readers to get solid idea of security principles and impermanent. The solutions of the 8 complete lab scenarios from the companion CD-ROM also illustrate the complexity of the CCIE Security lab exam.
However, I only give this book four out of five stars since some of the topics listed on the CCIE security written exam blueprint are missing from the book. Two of them are Cisco Secure Policy Manager and Cisco Secure Scanner. CCIE Candidates might not need to configure those Cisco Applications during the lab exam, however, every CCIE should know how to run those applications and how they work. I would love to see those topics will be covered in the next edition of this book. And, If you want to know the principal of Committed Access Rate (CAR), details on Intrusion Detection and specification on Security in General, you should read ¡§CCIE Professional Development Network Security Principle and Practices¡¨ by Saadat Malik (ISBN 1-58705-025-0) first.
Another problem of the book is it uses 42% of its 1000 pages on Routing and Switching, those chapters should be leaved to other books suggested by Cisco Systems (Routing TCP/IP by Doyle and Cisco LAN Switching by Clark and Hamilton). This is book should focus on security part of the exam only. It should mention more on Intrusion detection and Network-Based Application Recognition (NBAR). In my opinion, the first three chapters should also be summarized into a small chapter. CCIE candidate should know how to ¡§formulate a study plan¡¨ or ¡§take regular breaks while studying¡¨. People who don¡¦t know those ¡§study habits¡¨ should take a learning assistance class in a junior college. CCIE exam is one of the toughest professional exams for network administrator and network security engineer. So, if you don¡¦t know how to deal with problems, such as ¡§There¡¦s too much to remember¡¨, don¡¦t take the exam.
Poor Cisco IOS commands organization is also a reason that this book has only four stars. For example in Chapter 17: IP services (page 558), under section ¡§Monitor the MNLB Forwarding Agent¡¨
The book said
¡§To display the status of affinities, or connection information, use the following command:
R2#show ip casa affinities
To display the operational status of the Forwarding Agent, use the following command:
R2#show ip case oper
To display ¡K.¡¨
The section can be rewrote like this
¡§To monitor the status of the MNLB Forwarding Agent.
R2#show ip casa [options]
Options
affinities the status of affinities, or connection information
oper the operational status
stats the statistical information
wildcard information about wildcard blocks¡¨

This is much clear, easy to read and save time if you need to look up the command real quick. Other Cisco press books used the similar format, but I don¡¦t know why this book didn¡¦t follow it.
As the writer wrote in the book ¡§No single source ¡V including this book ¡V can or should claim to be a one-stop solution for the CCIE lab preparation.¡¨ (page 901), readers who are preparing for the exam should also consider buying other books from Cisco Press or searching more information on Cisco Security Applications from Cisco Connection Online. I would recommend this book to CCIE Security candidates who need lab practices and configuration examples. Although you can find plenty of examples from Cisco.com, the book is worth to buy for lab practices before the Armageddon.

Rating:
Summary: The only real guide for your once in a lifetime lab
Review: Having passed your CCIE Security Qualification Exam, you'll need to spend some time preparing for the lab - no easy task, and with so little information around, you'll need all the help you can get.

I bought this book on its release in July and have just passed the CCIE Security lab in Brussels. The lab was very difficult - and not to be underestimated. This book is close to the real thing and was an invaluable guide, and (with LOTS of practice) helped me to my goal. Above all, it helped me realise how under prepaired I would have been. I'm pretty sure that without this book, I would have failed the lab.

The book has twenty-five chapters of background, followed by eight "Labs" for you to try for yourself. If you can master those in the time given, you'll be in a good position to tackle the real thing. There's the odd typo here and there, but is generally sound and well written, but should of course be suplimented by other material aswell.

Good luck!

Rating:
Summary: BETTER TITLE >>> BETA -1 - CCIE Practical Studies: Security
Review: I have read and applied this book from start to finish in a home lab that included all cisco and non-cisco network equipment outlined in this book ( the exception is ATM).

While this book is a helpful resource for preparation for the CCIE Security Lab ( Basically there is no other similiar book out there for the same price --- closest is currently closer to $450 <--- but you get what you pay for)--- IT SHOULD NOT BE A RELEASE VERSION!!! THIS BOOK IS RIDDLED WITH EDITORIAL MISTAKES, TYPOS, MISPRINTS, and ERRORS. The occasional error in a book would have been pardoned, but simple stated this book contains errrors from Chapter 5 frame-relay to chapter 26 sample lab scenarios. Many (not just some) of the configuration examples contain erroneous information that do not correctly tie in to the subject specifics being outlined in the chapter subject matter. Some of the configurations on the CD that are meant to let you know if you applied all practice lab steps correctly are clearly missing supporting configurations.

I go through a ton of technical books. Other reviewers of this book that state that they have not been able to read a Cisco book that led them through many practical expamples are basically not even looking for the info. ( HEY CLEAR LAB CONFIGURATION EXAMPLES ARE AVAILABLE ALL OVER CISCO'S SITE FOR FREE --- NOT TO MENTION I HAVE A LIBRARY OF BOOKS THAT CONTAIN ERROR FREE PRACTICAL EXAMPLES)

I usually won't write a review be it good or bad, but I simply could not just let this one go without letting others interested in this book knowing what they are considering purchasing. I expected that if someone published a book on Cisco CCIE security practice labs, that all labs presented in such a book would have been fully functional and tested so that configurations can be fully sanitized. The content of this book leads to the conclusion that either the labs were never fully completed and sanitized, or the editor of this book is so poorly organized that they should be out of a job.

Rating:
Summary: The BEST Cisco Press book EVER
Review: I have read dozens of Cisco titles, and this book is by far the best! Whether you are studying for The security Written or Lab, or for the R&S lab This book is the best resource money can buy!

Rating:
Summary: Should have covered the Security Topics only.....
Review: I ordered this book in the hope that it would help me study for the CCIE Security Lab exam. I already have Soli's Practical Studies (both volumes). The beginning chapters in the book are related to Ethernet, ISDN, Routing Protocols etc. Don't expect the same level of detail for these topics here that you would find in Soli's book or in Jeff Doyle's book. Use those books to cover these topics. The security Practices (Part IV) of the book is why you bought this book.
Being an instructor for almost all cisco security courses, I was disappointed by the level of detail in Chapters 14 through 17. But then, the book might be covering just what you need for your exam. In my opinion, you need Saadat Malik's book Network Security Principles and Practices. I would give that book 5 stars!.
For me, the only chapters worth anything were Advanced VPNs (Chapter 20) and Chapter 26 (Sample Lab Scenarios -- which has eight scenarios).
The VPN Concentrator, which now appears on the lab is nowhere to be seen in this book. This is a big MINUS for this book.
Depending on your background with network security, you might want to give a better rating to this book as to the depth of the material covered. If you already have Doyle + Soli's books, get Sadat Malik's book + IOS Network Security documentation and attend the CSVPN course and CSIDS courses (if you can). This book does not cover the IDS Sensor at all. It only covers the limited IDS of the PIX and routers.
I would have liked it better if the routing/switching topics would have been left off totally from this book and the focus would have been entirely on the Security stuff (read VPN Concentrator and the IDS Sensor etc). People would tell you that you can get them off the Documentation CD. Well, if so, the stuff that the book has is also on the doc. cd :-)

Rating:
Summary: Great book to prepare for CCIE Security Lab Exam
Review: I would like to congratulate Dmitry and his team and cisco press for putting together this title. This book covers all the topics in good details with examples. It covers 12.2(15)T IOS features which are not easily found elsewhere. Amount of information and labs contained in this book will take anyone hundreds of hours to go through these labs and will certainly prepare them for THE CCIE lab. I am sure Concentrator and IDS chapters will be added in due time.

Full scale labs are very well laid out. If you are prepping for this test, you must go through these labs couple of times.

Great job Dmitry and crew! way to go!

-Keyur Shah-
QUAD CCIE# 4799 (Voice;Service Provider;Security;R/S)
Hello Computers
http://www.hellocomputers.com

Rating:
Summary: configs configs configs!
Review: I'm actually very impressed with the way this book is written. It's probably the first book I've read that includes a lot of configuration examples. There aren't many books out there that you can use to study for CCIE Security. I've used the MCNS book for my lab, but it's pretty outdated. This book is way better! Whether you are studying for CCIE Security written, preparing for CCIE Security lab, or just want to master your skills with Cisco Network security, I'd recommend this book. I happened to pass CCIE Security Lab (#7927) year and a half ago. I bought this book to review my security knowledge. My favorite part is the Lab at the end of the book. It's not the same as the real lab, the lab in the book is actually a lot harder.

Rating:
Summary: last review
Review: I'm really upset seeing people like ericr413 leaving such reviews for an excellent book. The entire review is completely inaccurate. I don't know this person personally, I know him through a friend. ericr413 had just failed his CCIE security lab and is obviously frustrated. I would be too. But I wouldn't do what he just did.

I passed CCIE security in February 2002. The book wasn't out yet. I've read the book after it was released. And I can tell you for sure that if I've read this book before my lab I would have prepared for it much faster.

This book has no mistakes, no errors, no problems with configs or labs. It's just like any other Cisco Press book. Very accurate. By the way, this is the only book that covers 12.2.15T release, and the only book to cover new IOS features that you'll see in the lab.

I think ericr413 was expecting to find solutions for the CCIE security lab. But it just doesn't work like that, you need to study more.