Course overview:
This course is part of a portfolio of security courses designed to help businesses support and maintain their Cisco Firepower Threat Defense systems. In this course, you will learn about next-generation intrusion prevention system (NGIPS) and next-generation firewall (NGFW) security concepts. This five-day class will begin with an introduction to the system architecture, the latest major features, and the role of policies in implementing the solution. In this Cisco FirePower Threat Defense training, you will learn how to deploy and manage Cisco Firepower Threat Defense devices and perform basic Cisco Firepower discovery. This NGFW training teaches students to use and configure Threat Defense technology, including application control, security intelligence, NGFW, NGIPS, and network-based malware and file controls. Also, you will learn how to take advantage of powerful tools, so you can perform more efficient event analysis, including the detection of file types and network-based malware. And you’ll learn how to properly tune systems for better performance and greater network intelligence. This Cisco FirePower200 training concludes with system and user administration tasks and Threat Defense system troubleshooting.
Who should attend:
• Security Administrators
• Security Consultants
• Network Administrators
• System Engineers
• Technical Support Personnel
• Channel Partners and resellers
Prérequises
The knowledge and skills that a learner must have before attending this course are as follows:
• Technical understanding of TCP/IP networking and network architecture
• Basic familiarity with firewall and IPS concepts
Course Objectives
tasks required for implementing a Cisco Firepower Threat Defense device
• Implement quality of service (QoS) and Network Address Translation (NAT) by using Cisco Firepower Threat Defense
• Perform an initial network discovery using Cisco Firepower to identify hosts, applications, and services
• Identify and create the objects required as prerequisites to implementing access control policies
• Behavior, usage, and implementation procedure for access control policies
• Concepts and implementation procedure of security intelligence features
• Cisco Advanced Malware Protection (AMP) for Networks and the implementation procedure of file control and advanced malware protection
• Implement and manage intrusion policies
• Using of network analysis policies
• The role of preprocessor technology in processing network traffic for NGIPS inspection
• Analysis techniques and reporting features provided by the Cisco Firepower Management Center
• Key Cisco Firepower Management Center system administration and user account management features
• Processes that can be used to troubleshoot Cisco Firepower Threat Defense systems
Course Outline
Module 1: Cisco Firepower Threat Defense Overview
Module 2: Cisco Firepower System Setup
Module 3: QoS and NAT Implementation
Module 4: Cisco Firepower Discovery
Module 5: Access Control Policy Prerequisites
Module 6: Implementing Access Control Policies
Module 7: Security Intelligence
Module 8: AMP for Networks Malware Protection
Module 9: Next-Generation Intrusion Prevention Systems
Module 10: Network Analysis Policies
Module 11: Detailed Analysis Techniques
Module 12: System Administration
Module 13: Cisco Firepower Threat Defense Troubleshooting
Lab outline:
• Lab 1: Connect to the Lab Environment
• Lab 2: Navigate the Cisco Firepower Management Center GUI
• Lab 3: Device Management
• Lab 4: Implementing QoS and NAT
• Lab 5: Configuring Network Discovery
• Lab 6: Implementing an Access Control Policy
• Lab 7: Implementing Security Intelligence
• Lab 8: AMP for Networks Malware Protection
• Lab 9: Implementing NGIPS
• Lab 10: Performing Detailed Analysis
• Lab 11: System Administration
• Lab 12: Cisco Firepower Troubleshooting