Implementing Cisco Intrusion Prevention System (IPS) is a 5 day instructor-led training class that is presented by Cisco training partners to their end customers. Channel Partners nationwide hire proven AMS Subject Matter Expert Cisco Certified Systems Instructors (CCSI’s) to teach on-site or on-line classes.
The knowledge and skills that you must have before attending this course include concepts from the following Cisco Certification Courses:
- Cisco Certified Network Associate (CCNA) certification:
- Cisco Certified Network Associate Security (CCNA Security) certification:
- In addition to the above prerequisite skills, learners will benefit from a working knowledge of the Microsoft Windows operating system.
-
Target Audience
This course is intended for the following audience:
- Network Security Engineers (NSEs)
Course Objectives
-
After completing this course, you will be able to:
- Evaluate the basic technology, features, and hardware models of the Cisco ASA adaptive security appliance product line
- Implement and maintain basic Cisco ASA adaptive security appliance connectivity and device management plane features
- Implement and maintain data plane access control features of the Cisco ASA adaptive security appliance product family
- Implement and maintain Cisco ASA adaptive security appliance features that integrate it with the local and global routing and switching infrastructure
- Implement and maintain Cisco ASA adaptive security appliance virtualization and high availability features
- Evaluate Cisco ASA adaptive security appliance SSM modules, their major features, and integrate them with the Cisco ASA adaptive security appliance
Course Outline
Module 1: Introduction to Intrusion Prevention and Detection, Cisco IPS Software, and Supporting Devices
- Lesson 1: Evaluating Intrusion Prevention and Intrusion Detection Systems
- Lesson 2: Choosing Cisco IPS Software, Hardware, and Supporting Applications
- Lesson 3: Evaluating Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti- Evasive Countermeasures
- Lesson 4: Choosing a Network IPS and IDS Deployment Architecture
Module 2: Installing and Maintaining Cisco IPS Sensors
- Lesson 1: Integrating the Cisco IPS Sensor into a Network
- Lesson 2: Performing the Cisco IPS Sensor Initial Setup
Labs
- Lab 2-1: Performing the Cisco IPS Sensor Initial Setup
- Lab 2-2: Managing a Cisco IPS Sensor
Module 3: Applying Cisco IPS Security Policies
- Lesson 1: Configuring Basic Traffic Analysis
- Lesson 2: Implementing Cisco IPS Signatures and Responses
- Lesson 3: Configuring Cisco IPS Signature Engines and the Signature Database
- Lesson 4: Deploying Anomaly-Based Operation
Labs
- Lab 3-1: Configuring and Modifying Basic Cisco IPS Signatures and Responses
- Lab 3-2: Configuring Cisco IPS Anomaly-Based Operation
Module 4: Adapting Traffic Analysis and Response to the Environment
- Lesson 1: Customizing Traffic Analysis
- Lesson 2: Managing False Positives and False Negatives
- Lesson 3: Improving Alarm and Response Quality
Labs
- Lab 4-1: Configuring Custom Cisco IPS Signatures
- Lab 4-2: Managing False Positives and False Negatives
- Lab 4-3: Improving Alarm and Response Quality
Module 5: Managing and Analyzing Events
- Lesson 1: Installing and Integrating Cisco IPS Manager Express with Cisco IPS Sensors
- Lesson 2: Managing and Investigating Events Using Cisco IPS Manager Express
- Lesson 3: Using Cisco IME Reporting and Notifications
- Lesson 4: Integrating Cisco IPS with Cisco Security Manager and Cisco Security MARS
- Lesson 5: Using the Cisco IntelliShield Database and Services
Labs
- Lab 5-1: Using the Cisco IME
- Lab 5-2: Using Cisco IPS and Security Intelligence Web Resources
Module 6: Deploying Virtualization, High Availability, and High Performance Solutions
- Lesson 1: Using Cisco IPS Virtual Sensors
- Lesson 2: Deploying Cisco IPS for High Availability and High Performance
Lab
Lab 6-1: Configuring Policy Virtualization
Module 7: Configuring and Maintaining Specific Cisco IPS Hardware
- Lesson 1: Configuring and Maintaining the Cisco ASA AIP SSM and AIP SSC Modules
- Lesson 2: Configuring and Maintaining the Cisco ISR IPS AIM and IPS NME Modules
- Lesson 3: Configuring and Maintaining the Cisco IDSM-2 Module
To Hire a proven AMS Cisco Certified Systems Instructor and Subject Matter Expert that teaches this class, call 800-798-3901 today!