Cisco ASA NGFW Fundamentals with Cisco FirePOWER Next Generation IPS Services v2.0 (NGIPASAA)

Cisco ASA NGFW Fundamentals with Cisco FirePOWER Next Generation IPS Services v2.0 (NGIPASAA)

Overview

Duration: 4 days
Course Overview

Course

Multifaceted, highly dynamic applications and bring-your-own-device (BYOD) workplaces have become the norm. And with them comes the challenge to balance productivity with security Cisco has the industry’s first adaptive, threat-focused next-generation IPS (NGIPS) designed for a new era of threat and advanced malware protection.

This 4-days workshop is designed to help users understand the basic fundamentals of ASA 5500 series and to help customers to understand the integration of the Cisco FirePOWER Next-Generation IPS managed devices with the Cisco FireSIGHT Management Center for a new adaptive, threat-focused NGIPS solution. It delivers an integrated threat defense across the entire attack continuum — before, during, and after an attack. You should at the end of this workshop feel confident to go with Cisco FirePOWER Next-Generation IPS (NGIPS) solution to address all your network security requirements.

Objectives

Course Objectives

After completing this course you should be able to:

  • Understand and articulate the features and benefits of Cisco's Next Generation Adaptive Security Appliances
  • Configuring ASA and basic rules
  • Overview of Cisco FirePOWER Next-Generation IPS (NGIPS) solution
  • Understand the capabilities of the Cisco FirePOWER NGIPS
  • Describe how to deploy and manage Cisco FirePOWER NGIPS devices
  • Explore the FireSIGHT Management Center using the Context Explorer
  • Describe the various detection technologies used in the FireSIGHT system
  • Navigate the user interface and administrative features of the FireSIGHT system, including reporting functionality to properly assess threats
  • Use Access Control, File Policies and Intrusion Policies to control traffic within a network
  • Analyse files to determine their level of threat and trajectory within a network
  • Integrate Active Directory with FireSIGHT and User Agent for User based policies
  • Understand the Tuning capability
  • Integrated SSL Decryption
  • URL-based Security Intelligence
  • Application Detectors
Course Content

1. Introducing the Cisco ASA (Adaptive Security Appliance) 5500-X

2. Setting up Initial ASA configuration.

3. Configuring Basic Cisco ASA Adaptive Security Appliance Network Settings & Access Control rules

4. Cisco FirePOWER NGIPS Solution Overview

  • Benefits and Components
  • Licensing
  • Protection
  • Control
  • URL Filtering
  • Malware
  • Intrusion Prevention

5. Exploring and managing the FireSIGHT Management Center

  • Implement FireSIGHT Management Center
  • Verify the licenses
  • Add the Cisco FirePOWER IPS
  • Edit and apply the initial system policy time synchronization settings
  • Apply the initial health policy
  • Configure Policy for a default Inline Intrusion Policy to use the Secure over Connectivity base IPS Policy
  • Configure File Polices to block malware
  • Attempt malware file transfers to trigger the malware blocking File Policy rule
  • Observe the IPS and Malware events in the FireSIGHT Management Center

6. IPS Policy Basics

7. Network Analysis Policy

8. Event Analysis

9. Correlation Policy

10. Creating and Managing User Accounts

11. Escalating Permissions

12. Integrated SSL Decryption

13. DNS Inspection and URL-based Security Intelligence

14. OpenAppID Application Detectors

15. Reporting
Course Certifications

This course is part of the following Certifications:
Prerequisites

Attendees should meet the following prerequisites:

CCNA certified, preferably CCNA Security Certified or equivalent experience
Course ID:
NGIPASAA


Show Schedule for:



© Copyright Trainocate 2019 . All rights reserved.