Trend Micro TippingPoint Security Solutions 5.0 Training for Certified Experts (TPNN0125)

Trend Micro TippingPoint Security Solutions 5.0 Training for Certified Experts (TPNN0125)

Overview

Duration: 5 days

Trend Micro™ Tipping Point® Security Solutions 5.0 Training for Certified Experts is a hands on, five-day course that teaches the expert-level concepts and best practices necessary for implementation, planning, installation, configuration, security management, and system administration of Tipping Point solutions. Through interactive lectures and hands-on labs, students will learn to implement Tipping Point inspection devices and the Security Management System (SMS) using the standard interface modes. Students will also acquire in-depth expert knowledge on tuning and configuring a Tipping Point inspection device for optimum performance, as well as advanced configuration management of multiple devices using the SMS.

Objectives

Upon completion of this course, students will acquire knowledge of the TippingPoint solutions including:

  • Security device setup and configuration
  • SMS setup and configuration
  • Administrative best practices
  • Policy management

Course Outline

1. Device Setup and Configuration

  • TippingPoint product portfolio
  • Inspection device and SMS setup
  • License manager
  • Trend Micro™ TippingPoint® Digital
  • Vaccine® Labs (DVLabs) overview

2. Policy Management - DVLabs

  • Basic policy management
  • Digital Vaccine® (DV) contents
  • Profile management
  • Deployment modes
  • Trend Micro™ TippingPoint® ThreatLinQ

3. Advanced Inspection Device Management

  • Discuss network segments and ports
  • Discuss intrusion prevention system (IPS) segment concepts (Layer 2 Fallback (L2FB) configuration and link down synchronization)
  • Zero power high availability (ZPHA)
  • Discuss terms of service (TOS) versioning and updating

4. SMS Network Configuration

  • SMS communication
  • Network configuration
  • Device configuration
  • Terms of service (TOS) updates and snapshots

5. DV Filters and Policy

  • Flow based vs. non-flow based
  • Threat suppression engine
  • Profile configuration
  • Filter search nomenclature

6. User Configurable Filters

  • Non-flow based inspection filters
  • Port scan and host sweep filters
  • Traffic management filters
  • Threat suppression engine

7. Enterprise Vulnerability Remediation (EVR)

  • Common vulnerabilities and exposures (CVE)
  • Importing vulnerability scans
  • Profile tuning

8. Threat DV

  • Reputation
  • Reputation database
  • Adding tag categories
  • Domain generation algorithm (DGA) filters
  • DGA filter Settings

9. DV Toolkit

  • Creating a new filter
  • Searching filters
  • Testing filters
  • Real world example using file transfer protocol (FTP) PUT
  • Digital video technology (DVT) converter tool

10. SMS Management

  • SMS hardware and virtual machine
  • Dashboard introduction
  • Geo locator
  • Maintenance
  • High availability
  • Event management
  • SMS reports

11. Advanced DDoS

  • Syn flood attacks
  • Connection based attacks
  • Platform support
  • Configuration
  • Events and reports

12. Quarantine

  • Blocking
  • Thresholds
  • Action sets
  • Transparent high availability (TRHA)

13. Advanced Deployments

  • Policy by direction
  • Policy by virtual LAN (VLAN)
  • Policy by classless inter-domain routing (CIDR)
  • Policy precedence and application

14. Optimizing Performance

  • Automatic optimization
  • Lighthouse program
  • L2FB
  • VLAN, multiprotocol label switching (MPLS), and tunneling

15. Reputation

  • IPS/domain name system (DNS) reputation
  • RepFeed scoring
  • Editing entries
  • Creating filters
  • Monitoring events

16. SMS Responder

  • Thresholds example
  • Quarantine and SMS responder together
  • Correlation and thresholding
  • Use cases
  • Custom responses
  • Action sets

17. Secure Sockets Layer (SSL) Inspection

  • Transparent proxy
  • SSL inbound inspection
  • Configuring licenses
  • Ciphers and protocols
  • Profile configuration

18. SMS and Trend Micro™ Deep Discovery™ Integration

  • Terminology
  • URL forwarding overview
  • Configuring Deep Discovery and SMS integration

TippingPoint Certified Professional Training (two-day instructor-led training) or TippingPoint Essentials (modular web-based training), plus equivalent hands-on experience using TippingPoint solutions.

Course ID:
TPNN0125


Show Schedule for: