he details of the practical are:

1. Setup of the IP address on the three PIX ports.
2. Setup subnet masks on each of the ports.
3. Enabling the ports.
4. Setup a static route.
5. Configure of the hostname.
6. Configure a username and password.
7. Configure a domain-name.
8. Setup the name of the DMZ port.
9. Enable an HTTP server.
10. Setup a static route.
11. Define NAT for the inside network.
12. Enable DHCP.

and the main areas for the test are:

1. Understands the basic uses of a standard ACL.
2. Understands how subnetting can be used to block addresses
3. Understands the application of wildcards for address blocking.
4. Understands how different protocols are blocked through an ACL.
5. Understands how ping is blocked through an ACL.
6. Understands how NAT is defined on a router.
7. Understands how NAT devices are accessed outside a network.
8. Understands the commands used to debug NAT.
9 . Understands the advantages and usage of using NAT.
10. Understands how ports and addresses are used in NAT.
11. Defines the command used for PIX devices.
12. Defines how NAT is setup on a PIX device.
13. Defines how NAT is setup on the DMZ on a PIX device.
14. Defines how ping is blocked on a PIX device.
15. Understands the default routes that are setup on a PIX device.
16. Understands how Cisco IDS is setup.
17. Understands Snort rules for source and destination ports.
18. Understands the usage of the three-way handshake for a client-server connection.
19. Understands the operation of the MD5 signature.
20 . Understands how many encryption keys relates to encryption strength, and how it is limited by the key size.
21 . Understands the strengths and weaknesses of different authentication servers
22 . Calculates the operation and exchange parameters for the Diffie-Hellman method
23. Understands how the Diffie-Hellman key is set for ISAKMP
24. Understands the basic requirements for RSA in ISAKMP
25. Understands how the lifetime of a secure connection is defined