SSFIPS – Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System v2.0

SSFIPS - Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System v2.0

COURSE OUTLINE:

Description

This lab-intensive course introduces you to the powerful features of the Cisco Sourcefire System, including FireSIGHT technology, in-depth event analysis, IPS tuning and configuration, and the Snort rules language.

You will learn how to use and configure next-generation Cisco IPS technology, including application control, firewall, and routing and switching capabilities. You will also learn to properly tune systems for better performance and greater network intelligence while taking full advantage of powerful tools for more efficient event analysis, including file type and network-based malware detection.

Audience

Security administrators
Security consultants
Network administrators
System engineers
Technical support personnel
Channel partners and resellers

Prerequisites

Technical understanding of TCP/IP networking and network architecture
Basic familiarity with the concepts of intrusion detection systems (IDS) and IPS

Learning Objectives

FireSIGHT system training infrastructure
Navigate the user interface and administrative features of the FireSIGHT system, including reporting functionality to properly assess threats
How to deploy and manage Cisco FireSIGHT devices
Various detection technologies used in the FireSIGHT system
Create and implement objects for use in Access Control policies
Advanced policy configuration and FireSIGHT system configuration options
Analyze events
Write and configure basic Snort rules

1. FireSIGHT System Overview and Classroom Setup

2. Hardware Overview and Architecture

3. Device Management

4. User Account Management

5. Object Management

6. Access Control Policy

7. FireSIGHT Technology

8. Network-Based Malware Detection

9. Managing SSL Traffic

10. IPS Policy Basics

11. Network Analysis Policy

12. Event Analysis

13. Reporting

14. Correlation Policy

15. Basic Rule Syntax and Usage

RELATED COURSES

Technical Training
Cisco

Deploying Cisco ASA Firewall Solutions v1.0

Technical Training
Cisco

Designing Cisco Data Center Infrastructure (DCID) v6.0

In this course, you will learn about designing data centers with Cisco components and technologies. The course covers network designs with virtualization, Layer 2 and Layer 3 technologies, routing protocols, and data center interconnect design options. Also covered are device virtualization technologies such as virtual data centers and network function virtualization with virtual appliances including virtual switches, virtual routers, and virtual firewalls. Storage and SAN design is covered, with explanation of Fibre Channel networks and Cisco Unified Fabric. Design practices for the Cisco Unified Computing System (UCS) solution based on Cisco UCS B-Series and C-Series servers and Cisco UCS Manager are also covered. Network management technologies include UCS Manager, Cisco Prime Data Center Network Manager, and Cisco UCS Director.

Technical Training
Cisco

DCNX5K – Configuring Cisco Nexus 5000 Switches v3.0

In this course, you will learn the key components and procedures that are needed to install, configure, manage, and troubleshoot Cisco Nexus 5000 Series Switches and Cisco Nexus 2000 Series Fabric Extenders in the LAN, SAN, and Unified Fabric Environments.

Technical Training
Cisco

NPDEV ï¿½ Developing with Cisco Network Programmability v4.0

This course is for software developers looking to automate network infrastructure and utilize APIs and toolkits to interface with SDN controllers and individual devices. You will learn about topics covered by the 300-560 NPDEV exam, leading to the Cisco Network Programmability Developer Specialist Certification.