Vi ste ovdje
Cisco IPS 7.0: IPS Traffic Analysis, Countermeasures, and Deployment Architecture
Overview/Description
Network intrusion prevention system (IPS) and intrusion detection system (IDS) sensors use various techniques to analyze network traffic in order to optimally detect suspicious and malicious traffic while maintaining the desired performance levels. These sensors can be deployed in various situations and architectures to enhance network-based protection of enterprise assets. This course describes network IPS traffic analysis methods, evasion methods that are used by attackers to avoid detection, and common anti-evasive countermeasures that network IPS engines use to avoid false negatives. It also describes common deployment scenarios and provides design guidelines for these scenarios.
Target Audience
Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security, Cisco Certified Security Professional CCSP Certification or Cisco IPS Specialist Certification designation. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure. Candidates who have completed the Cisco Certified Network Associate Security Certification - Implementing Cisco IOS Network Security (IINS)
Expected Duration (hours)
1.0
Lesson Objectivesdescribe network IPS traffic analysis methods
describe network IPS evasion techniques
recognize where to deploy network IDS and IPS sensors
select an appropriate IPS Internet edge network integration method for a particular scenario
describe firewall integration methods for network IPS at the enterprise Internet edge
identify key considerations for deploying network IDS and IPS sensors in an enterprise WAN
identify key considerations for deploying network IDS and IPS sensors in enterprise data centers
recognize how to plan centralized sensor deployments in enterprise campus networks
Network intrusion prevention system (IPS) and intrusion detection system (IDS) sensors use various techniques to analyze network traffic in order to optimally detect suspicious and malicious traffic while maintaining the desired performance levels. These sensors can be deployed in various situations and architectures to enhance network-based protection of enterprise assets. This course describes network IPS traffic analysis methods, evasion methods that are used by attackers to avoid detection, and common anti-evasive countermeasures that network IPS engines use to avoid false negatives. It also describes common deployment scenarios and provides design guidelines for these scenarios.
Target Audience
Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security, Cisco Certified Security Professional CCSP Certification or Cisco IPS Specialist Certification designation. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure. Candidates who have completed the Cisco Certified Network Associate Security Certification - Implementing Cisco IOS Network Security (IINS)
Expected Duration (hours)
1.0
Lesson Objectives
Cisco IPS 7.0: IPS Traffic Analysis, Countermeasures, and Deployment Architecture
Trajanje:
1 h
Šifra:
cc_ipss_a02_it_enus
Katalog:
Koraci do učenja
Prijavite se, a ako nemate korisničko ime, registrirajte se.
Pronađite edukacijske programe u Katalogu i Certifikaciji, ili koristite polje za pretragu.
Upisani programi dostupni su u meniju Korisnik, Moji tečajevi.
Trebate pomoć?
- Česta pitanja - FAQ
- telefon: +385 1 6558 440
- email: support@cognita.hr
- Kontakt forma
