Implementing Cisco Intrusion Prevention System 7.0 (IPS)

Similar documents
Official Cert Guide. CCNP Security IPS Odunayo Adesina, CCIE No Keith Barker, CCIE No Cisco Press.

Implementing Cisco Secure AccessSolutions Exam

Securing Networks with Cisco Routers and Switches 1.0 (SECURE)

Implementing Cisco IOS Network Security v2.0 (IINS)

IINS Implementing Cisco Network Security 3.0 (IINS)

CCNP Security IPS Official Cert Guide David Burns Odunayo Adesina, CCIE No Keith Barker, CCIE No. 6783

Deploying Cisco Unified Contact Center Express 5.0 (UCCX)

SSECMGT: CManaging Enterprise Security with Cisco Security Manager v4.x

Implementing Cisco IOS Network Security

Troubleshooting Cisco Unified Communications (TVOICE)

Managing Enterprise Security with Cisco Security Manager

Deploying Cisco ASA VPN Solutions

VPN_2: Deploying Cisco ASA VPN Solutions

Managing Enterprise Security with Cisco Security Manager

How To Understand And Understand Cisco Security Specialist (For A Non-Profit)

Cisco Security Manager

Implementing Secured Converged Wide Area Networks (ISCW) Version 1.0

Cisco Certified Security Professional (CCSP) 50 Cragwood Rd, Suite 350 South Plainfield, NJ 07080

Cisco Intrusion Detection System Services Module (IDSM-2)

IPS AIM for Cisco Integrated Services Routers

Architecture Overview

Cisco Certified Security Professional (CCSP)

Security Threats VPNs and IPSec AAA and Security Servers PIX and IOS Router Firewalls. Intrusion Detection Systems

Deploying Cisco Basic Wireless LANs WDBWL v1.1; 3 days, Instructor-led

Cisco Security Manager 4.2: Integrated Security Management for Cisco Firewall, IPS, and VPN Solutions

Cisco IPS Manager Express

INTERCONNECTING CISCO NETWORK DEVICES PART 1 V2.0 (ICND 1)

Cisco IPS Tuning Overview

CCNA Security 2.0 Scope and Sequence

Cisco IPS AIM and IPS NME for Cisco 1841 and Cisco 2800, 2900, 3800 and 3900 Series Integrated Services Routers

Module 1: Overview. Module 2: AlienVault USM Solution Deployment. Module 3: AlienVault USM Basic Configuration

TABLE OF CONTENTS NETWORK SECURITY 2...1

Lab Organizing CCENT Objectives by OSI Layer

McAfee Network Security Platform Administration Course

Cisco ASA 5500 Series IPS Solution

For Sales Kathy Hall

Interconnecting Cisco Networking Devices, Part 1 (ICND1) v3.0

CCNA DATA CENTER BOOT CAMP: DCICN + DCICT

The IINS acronym to this exam will remain but the title will change slightly, removing IOS from the title, making the new title

SourceFireNext-Generation IPS

IMPLEMENTING CISCO VIDEO NETWORK DEVICES PART 2, V1.0 (CIVND2)

Juniper Networks Certified Associate Junos Bootcamp, IJOS and JRE (JNCIA-Junos BC)

To participate in the hands-on labs in this class, you need to bring a laptop computer with the following:

Der Weg, wie die Verantwortung getragen werden kann!

Managing Latency in IPS Networks

IMPLEMENTING CISCO SWITCHED NETWORKS V2.0 (SWITCH)

CCNA Cisco Associate- Level Certifications

Implementing Core Cisco ASA Security (SASAC)

Cisco Intrusion Prevention System Advanced Integration Module for Cisco 1841 and Cisco 2800 and 3800 Series Integrated Services Routers

SNRS. Securing Networks with Cisco Routers and Switches. Length 5 days. Format Lecture/lab

CISCO IOS NETWORK SECURITY (IINS)

Table of Contents. Introduction. Audience. At Course Completion

Lab Developing ACLs to Implement Firewall Rule Sets

Cisco Networking Professional-6Months Project Based Training

Cisco ASA 5500 Series Advanced Inspection and Prevention Security Services Module

Securing Cisco Network Devices (SND)

Cisco Certified Network Expert (CCNE)

6445A - Implementing and Administering Small Business Server 2008

Description: Objective: Upon completing this course, the learner will be able to meet these overall objectives:

6231A - Maintaining a Microsoft SQL Server 2008 Database

CCNP: Implementing Secure Converged Wide-area Networks

Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Software Release

Securing Networks with PIX and ASA

Configuring Personal Firewalls and Understanding IDS. Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA

Securing Networks with Cisco Routers and Switches ( )

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD SEGURIDAD EN REDES. NIVEL I. VERSION 2.0

Network Security Using Cisco IOS IPS

Interconnecting Cisco Network Devices 1 Course, Class Outline

Inquire about our programs at Worcester Technical High School!

Security Administration R77

Cisco IPS 4200 Series Sensors

FortiMail Filtering Course 221-v2.2 Course Overview

How To Protect Your Network From Attack From A Network Security Threat

Credit Card Secure Architecture for Interactive Voice Response (IVR) Applications

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD CCNA SECURITY. VERSION 1.0

WHITE PAPER PROCESS CONTROL NETWORK SECURITY: INTRUSION PREVENTION IN A CONTROL SYSTEMS ENVIRONMENT

Administering a Microsoft SQL Server 2000 Database

TABLE OF CONTENTS NETWORK SECURITY 1...1

MANAGED SECURITY SERVICES

Cisco Security Certifications

MOC 10964C: Cloud and Datacenter Monitoring with System Center Operations Manager

Table of Contents. Introduction. Audience. At Course Completion. Prerequisites. Microsoft Certified Professional Exams

ICT Infrastructure & Network Management

Cisco Discovery 3: Introducing Routing and Switching in the Enterprise hours teaching time

How To Learn Cisco Cisco Ios And Cisco Vlan

IPv6 Fundamentals, Design, and Deployment

Intrusion Detection Systems (IDS)

Pluralsight Training Pre-Approved for CompTIA CEUs

INTERCONNECTING CISCO NETWORKING DEVICES PART 2 V2.0 (ICND 2)

Microsoft Dynamics CRM 2011 Installation and Deployment

IMPLEMENTING CISCO QUALITY OF SERVICE V2.5 (QOS)

Designing Cisco Network Service Architectures ARCH v2.1; 5 Days, Instructor-led

10775 Administering Microsoft SQL Server Databases

Planning and Administering Windows Server 2008 Servers

Transcription:

Implementing Cisco Intrusion Prevention System 7.0 (IPS) Course Overview: The Implementing Cisco Intrusion Prevention System (IPS) v7.0 course is a five-day course aims at providing network security engineers with the knowledge and skills that are needed to deploy Cisco Intrusion Prevention System (IPS)-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS. Who will benefit from this course? Network Security Engineers (NSEs) Anyone with their CCNA Security and/or working towards their CCNP Security Prerequisites: To fully benefit from this course, students should have the following prerequisite skills and knowledge: Working knowledge of the Microsoft Windows operating system Knowledge and skills attainted from attending prerequisite authorized Cisco courses: ICND 1 & 2 or CCNA Bootcamp, and IINS Sunset Learning Differentiators: World Class Instruction Team o All instructors hold Certified Cisco Systems Instructor (CCSI) certification. o All instructors have a four-year technical degree or equivalent work experience. o All instructors have a minimum of either four years teaching technical networking classes or five years consulting experience. Enhanced Learning Experience o The goal of our instructors during class is ensure students understand the material, guide them through our up to date labs and encourage questions and interactive discussions. Enjoyment of the learning process is a primary objective for Sunset Learning instructors. High Quality Real World Lab Environments o Course offerings include real-time access to labs with the latest Cisco equipment o Result is real world experiences to help students prepare for actual networking environments. o Hands on experience aids in Cisco exam preparation. Outstanding Customer Service o Dedicated program manager o Quality instruction team o Creatively designed curriculum to meet your specific needs o Delivery at your location or ours

Related Courses: SECURE VPN FIREWALL Course Objectives: After completing this course, students will be able to... Evaluate products and deployment architectures for the Cisco IPS product line Perform an initial implementation of a Cisco IPS sensor Implement an initial security policy using a Cisco IPS sensor according to local policies and environmental requirements Deploy customized policies to adapt Cisco IPS traffic analysis and response to the target environment Implement a basic Cisco IPS data management and analysis solution Implement complex Cisco IPS policy virtualization, high-availability, and high-performance solutions according to policy and environmental requirements Perform the initial setup of and maintenance of specific Cisco IPS hardware Course Outline: Module 1: Introduction to Intrusion Prevention and Detection, Cisco IPS Software and Supporting Devices Lesson 1: Evaluating Intrusion Prevention and Intrusion Detection Systems Intrusion Detection versus Intrusion Prevention Network IPS Intrusion Prevention Terminology Endpoint Security Controls Lesson 2: Choosing Cisco IPS Software, Hardware, and Supporting Applications Cisco IPS Network Sensors Cisco SIO and Cisco Security IntelliShield Alert Cisco IPS Software Architecture Manager Service Cisco IPS Management Products Lesson 3: Evaluating Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti-Evasive Countermeasures Network IPS Traffic Analysis Methods Network IPS Evasion Techniques Lesson 4: Choosing a Network IPS and IDS Deployment Architecture Sensor Deployment Considerations Implementing IPS in Data Centers Implementing IPS at the Enterprise Internet Edge Centralized Sensor Deployment Implementing IPS in WANs Module 2: Installing and Maintaining Cisco IPS Sensors Lesson 1: Integrating the Cisco IPS Sensor into a Network Deploying Sensors in Promiscuous Mode Deploying Sensors in Inline VLAN Group Mode Deploying Sensors in Inline Interface Pair Mode Deploying Sensors in Selective Inline Analysis Mode Deploying Sensors in Inline VLAN Pair Mode Lesson 2: Performing the Cisco IPS Sensor Initial Setup Using the Cisco IPS Sensor CLI Initializing the Cisco IPS Sensor Introducing the Cisco IPS Device Manager Configuring Cisco IPS Sensor Interfaces Troubleshooting the Initial Cisco IPS Sensor Configuration Troubleshooting Cisco IPS Hardware Restoring Default Settings

Lesson 3: Managing Cisco IPS Devices Managing Basic Cisco IPS Sensor Device Features Managing Users and Remote Management Channels Managing Cisco IPS Licensing Upgrading and Recovering Cisco IPS Sensor Software Module 3: Applying Cisco IPS Security Policies Lesson 1: Configuring Basic Traffic Analysis Configuring the Default Virtual Sensor Understanding Cisco IPS Sensor Inline Traffic Normalization Configuring Cisco IPS Sensor Promiscuous Mode Traffic Reassembly Options Configuring TCP Session Tracking Understanding IPv6 Support in Cisco IPS Sensors Choosing and Configuring Cisco IPS Sensor Bypass Lesson 2: Implementing Cisco IPS Signatures and Responses Cisco IPS Signatures Understanding and Configuring Event Action Configuring Basic Signature Properties Overrides Configuring Signature Actions Using Event Action Filters Configuring Remote Blocking Choosing an Action Configuration Strategy Configuring Packet Capture and IP Logging Examining Alerts in IPS Event Logs Understanding Threat and Risk Rating Lesson 3: Configuring Cisco IPS Signature Engines and the Signature Database Using Cisco IPS Signature Engines and Configuring Deploying FLOOD Signature Engines Common Signature Engine Parameters Deploying SWEEP Signature Engines Deploying ATOMIC Signature Engines Deploying the META Signature Engine Deploying STRING Signature Engines Deploying the NORMALIZER Engine Deploying SERVICE Signature Engines Deploying Other Engines Lesson 4: Deploying Anomaly-Based Operation Anomaly Detection Overview Anomaly Detection Components Configuring Anomaly Detection Monitoring and Troubleshooting Anomaly Detection Module 4: Adapting Traffic Analysis and Response to the Environment Lesson 1: Customizing Traffic Analysis Creating Custom Signatures Using the Custom Signature Wizard Using the Custom Signature Wizard Without Specifying a Signature Engine Manually Configuring Custom Signatures Lesson 2: Managing False Positives and False Negatives Tuning False Positives and False Negatives Tuning the Cisco IPS Sensor to Reduce False Positives Lesson 3: Improving Alarm and Response Quality Deploying Sensor Features to Improve the Quality of Prevention and Detection Deploying Operating System Identification Using Target Value Ratings Using Signature Fidelity Ratings Using Management Center for Cisco Security Agent Attacker Information Deploying Global Correlation and Reputation-Based Filtering

Module 5: Managing and Analyzing Events Authorized Training That Optimizes Your Network Lesson 1: Installing and Integrating Cisco IPS Manager with Cisco IPS Sensors Cisco IPS Manager Overview Using and Customizing the Cisco IPS Manager Installing Cisco IPS Manager User Interface Integrating Cisco IPS Manager with Cisco IPS Sensors Lesson 2: Managing and Investigating Events Using Cisco IPS Manager Managing IPS Events Using Cisco IPS Manager Acting on IPS Events Using Cisco IPS Manager Investigating IPS Events Using Cisco IPS Manager Exporting, Importing, and Archiving Events Lesson 3: Using Cisco IME Reporting and Notifications Using Event Reporting in Cisco IME Using Notifications in Cisco IME Lesson 4: Integrating Cisco IPS with Cisco Security Manager and Cisco Security MARS Configuring Integration with Cisco Security Manager Configuring Integration with Cisco Security MARS Lesson 5: Using the Cisco IntelliShield Database and Services Using Cisco Security Intelligence Operations Using the Cisco IntelliShield Alert Manager Services Module 6: Deploying Virtualization, High Availability, and High Performance Solutions Lesson 1: Using Cisco IPS Virtual Sensors Sensor Policy Virtualization Overview Adding and Configuring Virtual Sensors Verifying Virtual Sensor Operation Lesson 2: Deploying Cisco IPS for High Availability and High Performance High-Availability Solutions for Cisco IPS Cisco ASA Security Appliance-Based Sensor High Deployments Availability Switching-Based Sensor High Availability Cisco IPS Sensor Performance Overview Routing-Based Sensor High Availability Increasing Performance Using Load Sharing Increasing Performance Using Traffic Reduction Module 7: Configuring and Maintaining Specific Cisco IPS Hardware Lesson 1: Configuring and Maintaining the Cisco ASA AIP-SSM and AIP-SSC-5 Modules Overview of Cisco ASA AIP-SSM and AIP-SSC Modules Integrating Cisco AIP-SSM and AIP-SSC Traffic Initializing the Cisco ASA AIP-SSM and AIP-SSC Analysis with the Cisco ASA Adaptive Security Modules Appliance Troubleshooting Cisco ASA AIP-SSM and AIP-SSC Modules Lesson 2: Configuring and Maintaining the Cisco ISR IPS AIM and IPS NME Modules Cisco ISR IPS AIM and IPS NME Overview Integrating Cisco ISR IPS AIM and IPS NME Traffic Initializing the Cisco ISR IPS AIM and IPS NME Analysis with the Cisco ISR Troubleshooting Cisco ISR IPS AIM and IPS NME Lesson 3: Configuring and Maintaining the Cisco IDSM-2 Cisco IDSM-2 Overview Maintaining the Cisco IDSM-2 Initializing the Cisco IDSM-2 Troubleshooting the Cisco IDSM-2 Integrating Cisco IDSM-2 Traffic Analysis with the Catalyst 6500 Series Switch

Labs: Lab 2-1: Performing the Cisco IPS Sensor Initial Setup Lab 2-2: Managing a Cisco IPS Sensor Lab 3-1: Configuring and Modifying Basic Cisco IPS Signatures and Responses Lab 3-2: Configuring Cisco IPS Anomaly-Based Operation Lab 4-1: Configuring Custom Cisco IPS Signatures Lab 4-2: Managing False Positives and False Negatives Lab 4-3: Improving Alarm and Response Quality Lab 5-1: Using Cisco IME Lab 5-2: Using Cisco IPS and Security Intelligence Web Resources Lab 6-1: Configuring Policy Virtualization

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information