NGIPASAA - Cisco ASA NGFW Fundamentals with Cisco FirePOWER Next Generation IPS Services v2.0

Overview

Multifaceted, highly dynamic applications and bring-your-own-device (BYOD) workplaces have become the norm. And with them comes the challenge to balance productivity with security Cisco has the industry’s first adaptive, threat-focused next-generation IPS (NGIPS) designed for a new era of threat and advanced malware protection.

This 4-days workshop is designed to help users understand the basic fundamentals of ASA 5500 series and to help customers to understand the integration of the Cisco FirePOWER Next-Generation IPS managed devices with the Cisco FireSIGHT Management Center for a new adaptive, threat-focused NGIPS solution. It delivers an integrated threat defense across the entire attack continuum — before, during, and after an attack. You should at the end of this workshop feel confident to go with Cisco FirePOWER Next-Generation IPS (NGIPS) solution to address all your network security requirements.

Objectives

After completing this course you should be able to:

Understand and articulate the features and benefits of Cisco's Next Generation Adaptive Security Appliances
Configuring ASA and basic rules
Overview of Cisco FirePOWER Next-Generation IPS (NGIPS) solution
Understand the capabilities of the Cisco FirePOWER NGIPS
Describe how to deploy and manage Cisco FirePOWER NGIPS devices
Explore the FireSIGHT Management Center using the Context Explorer
Describe the various detection technologies used in the FireSIGHT system
Navigate the user interface and administrative features of the FireSIGHT system, including reporting functionality to properly assess threats
Use Access Control, File Policies and Intrusion Policies to control traffic within a network
Analyse files to determine their level of threat and trajectory within a network
Integrate Active Directory with FireSIGHT and User Agent for User based policies
Understand the Tuning capability
Integrated SSL Decryption
URL-based Security Intelligence
Application Detectors

Content

1. Introducing the Cisco ASA (Adaptive Security Appliance) 5500-X

2. Setting up Initial ASA configuration.

3. Configuring Basic Cisco ASA Adaptive Security Appliance Network Settings & Access Control rules

4. Cisco FirePOWER NGIPS Solution Overview

Benefits and Components
Licensing
Protection
Control
URL Filtering
Malware
Intrusion Prevention

5. Exploring and managing the FireSIGHT Management Center

Implement FireSIGHT Management Center
Verify the licenses
Add the Cisco FirePOWER IPS
Edit and apply the initial system policy time synchronization settings
Apply the initial health policy
Configure Policy for a default Inline Intrusion Policy to use the Secure over Connectivity base IPS Policy
Configure File Polices to block malware
Attempt malware file transfers to trigger the malware blocking File Policy rule
Observe the IPS and Malware events in the FireSIGHT Management Center

6. IPS Policy Basics

7. Network Analysis Policy

8. Event Analysis

9. Correlation Policy

10. Creating and Managing User Accounts

11. Escalating Permissions

12. Integrated SSL Decryption

13. DNS Inspection and URL-based Security Intelligence

14. OpenAppID Application Detectors

15. Reporting

Audience

Presale consultants and engineers with very little experience with Cisco ASA product range as well as Senior System Engineers and Field Engineers.

Prerequisites

CCNA certified, preferably CCNA Security Certified or equivalent experience

Certification

This course is not associated with any Certification.

Schedule

Show Schedule for:

Enquiry Form