Log On/Register  

855.838.5028

Cisco - IUWMS: Implementing Cisco Unified Wireless Mobility Services

Duration: 5 Days
Course Price: $3,295

Implementing Cisco Intrusion Prevention System (IPS) v7.0 aims at providing network security engineers with the knowledge and skills needed to configure Cisco IPS Sensors and Sensor Features.

Our students will learn the skills they need to deploy Cisco Intrusion Prevention System (IPS)-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS.

Course Overview

In this enhanced course, you will gain the skills required to deploy Cisco's network-based Intrusion Prevention System (IPS). You will get an introduction to Cisco IPS platforms and managers, including:

  • 4200 Series Sensors
  • Catalyst 6000 Series Intrusion Detection Module 2 (IDSM-2)
  • Advanced Inspection and Prevention Security Services Module (AIP-SSM)
  • IPS Device Manager (IDM) GUI
  • IPS Manager Express (IME)

Objectives

  • How Cisco IPS protects network devices from attacks
  • Basic intrusion prevention terminology
  • Intrusion prevention technologies and evasive techniques
  • Cisco IPS Sensor platforms and their features
  • Install and configure basic settings on a Cisco IPS 4200 Series Sensor
  • Use the IDM to configure built-in signatures to meet the requirements of a given security policy
  • Create and implement customized intrusion prevention signatures
  • Create alarm filters to reduce alarms and possible false positives
  • Configure the sensor with the command line and IDM
  • Configure IPS protective reactions such as TCP reset and deny attacker inline
  • Configure a Cisco IPS Sensor to perform blocking on IOS routers and Adaptive Security Appliances (ASAs) or PIX firewalls
  • Perform maintenance operations such as signature updates
  • Configure and monitor anomaly detection, passive OS fingerprinting, and virtual sensors
  • Initialize and install remaining Cisco IPS family of products
  • Utilize global correlation to adjust sensor actions based on the reputation of the source IP address
  • Use the CLI and Cisco IDM to obtain system information
  • Internal specifications of different signature engine

Who Should Attend

  • Cisco customers who implement and maintain Cisco IPS solutions
  • Cisco channel partners who sell, implement, and maintain Cisco IPS solutions
  • Cisco systems engineers who support the sale of Cisco IPS solutions

Implementing Cisco Intrusion Prevention System (IPS) v7.0 aims at providing network security engineers with the knowledge and skills needed to configure Cisco IPS Sensors and Sensor Features.

Our students will learn the skills they need to deploy Cisco Intrusion Prevention System (IPS)-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS.

Course Overview

In this enhanced course, you will gain the skills required to deploy Cisco's network-based Intrusion Prevention System (IPS). You will get an introduction to Cisco IPS platforms and managers, including:

  • 4200 Series Sensors
  • Catalyst 6000 Series Intrusion Detection Module 2 (IDSM-2)
  • Advanced Inspection and Prevention Security Services Module (AIP-SSM)
  • IPS Device Manager (IDM) GUI
  • IPS Manager Express (IME)

Objectives

  • How Cisco IPS protects network devices from attacks
  • Basic intrusion prevention terminology
  • Intrusion prevention technologies and evasive techniques
  • Cisco IPS Sensor platforms and their features
  • Install and configure basic settings on a Cisco IPS 4200 Series Sensor
  • Use the IDM to configure built-in signatures to meet the requirements of a given security policy
  • Create and implement customized intrusion prevention signatures
  • Create alarm filters to reduce alarms and possible false positives
  • Configure the sensor with the command line and IDM
  • Configure IPS protective reactions such as TCP reset and deny attacker inline
  • Configure a Cisco IPS Sensor to perform blocking on IOS routers and Adaptive Security Appliances (ASAs) or PIX firewalls
  • Perform maintenance operations such as signature updates
  • Configure and monitor anomaly detection, passive OS fingerprinting, and virtual sensors
  • Initialize and install remaining Cisco IPS family of products
  • Utilize global correlation to adjust sensor actions based on the reputation of the source IP address
  • Use the CLI and Cisco IDM to obtain system information
  • Internal specifications of different signature engine

Who Should Attend

  • Cisco customers who implement and maintain Cisco IPS solutions
  • Cisco channel partners who sell, implement, and maintain Cisco IPS solutions
  • Cisco systems engineers who support the sale of Cisco IPS solutions

The knowledge and skills that you must have before attending this course include concepts from the following Cisco Certification Courses:

Cisco Certified Network Associate (CCNA) certification:

  • Interconnecting Cisco Network Devices 1 (ICND1)
  • Interconnecting Cisco Network Devices 2 (ICND2)

Cisco Certified Network Associate Security (CCNA Security) certification:

  • Implementing Cisco IOS Network Security (IINS)

Lesson 1. Introduction

  • Evaluating Intrusion Prevention and Intrusion Detection Systems
  • Choosing Cisco IPS Software, Hardware, and Supporting Applications
  • Evaluating Network IPS Traffic Analysis Methods
  • Evasion Possibilities and Anti-Evasive Countermeasures
  • Choosing a Network IPS and IDS Deployment Architecture

Lesson 2. Installing and Maintaining Cisco IPS Sensors

  • Integrating into a Network
  • Performing the Initial Setup
  • Managing Cisco IPS Devices

Lesson 3. Applying Cisco IPS Security Policies

  • Configuring Basic Traffic Analysis
  • Implementing Cisco IPS Signatures and Responses
  • Configuring Signature Engines and the Signature Database
  • Deploying Anomaly-Based Operation

Lesson 4. Adapting Traffic Analysis and Response to the Environment

  • Customizing Traffic Analysis
  • Managing False Positives and False Negatives
  • Improving Alarm and Response Quality

Lesson 5. Managing and Analyzing Events

  • Installing and Integrating IME with IPS Sensors
  • Managing and Investigating Events
  • Reporting and Notifications
  • Integrating IPS with SMN and MARS
  • Using the Cisco IntelliShield Database and Services

Lesson 6. Advanced Solutions

  • Using Cisco IPS Virtual Sensors
  • Deploying Cisco IPS for High Availability and High Performance

Lesson 7. Configuring and Maintaining Specific IPS Hardware

  • ASA AIP SSM and AIP SSC Modules
  • ISR IPS AIM and IPS NME Modules
  • IDSM-2 Module

Labs

  • Implementing Cisco Intrusion Prevention System v7.0
  • Performing the Cisco IPS Sensor Initial Setup
  • Managing a Cisco IPS Sensor
  • Configuring and Modifying Basic Cisco IPS Signatures and Responses
  • Configuring Cisco IPS Anomaly-Based Operation
  • Configuring Custom Cisco IPS Signatures
  • Managing False Positives and False Negatives
  • Improving Alarm and Response Quality
  • Using the Cisco IME
  • Using Cisco IPS and Security Intelligence Web Resources
  • Configuring Policy Virtualization
Learn More
Please type the letters below so we know you are not a robot (upper or lower case):