Menu

US Region

Grandmetric LLC
Lewes DE 19958
16192 Coastal Hwy USA
EIN: 98-1615498
+1 302 691 94 10
info@grandmetric.com

EMEA Region

GRANDMETRIC Sp. z o.o.
ul. Metalowa 5, 60-118 Poznań, Poland
NIP 7792433527
+48 61 271 04 43
info@grandmetric.com

UK

Grandmetric LTD
Office 584b
182-184 High Street North
London
E6 2JA
+44 20 3321 5276
info@grandmetric.com

  • en
  • pl
  • Cisco Firepower Online Training

    Cisco Firepower Online Training

     

    Cisco Firepower Online

    Cisco Firepower Online Training  guides students through the Cisco Firepower Threat Defense technology (FTD) along with Firepower Management Center (FMC) as a security management and reporting environment.

    Taking this course, students will be able to understand Firepower concept, implement Firepower security rules on an operational level, build the secure Internet Edge a for corporate access as well as use Next Generation functions like creating Cisco Anti-Malware protection (AMP) policy, URL filtering, File policies and Intrusion Policies to protect network. Course as a part of Grandmetric bootcamp series teaches also how to efficiently troubleshoot security issues and Firepower solution.

    This 3-day instructor led operational level course is prepared for participants that do not have time to travel to Grandemtric training center location and can take the course remotely via Internet and Online meeting tools.

    Who should attend?

    • Network consultants
    • Security analysts
    • Network engineers
    • Network specialists
    • IT Administrators

    Cisco Firepower Online Training Agenda:

    1) Day 1

    1. Lets know each other.
      1. Who are you?
      2. What is your background?
      3. Do you have hobbies out of the computer world?
    2. What is Cisco Firepower Threat Defense?
      1. IPS/IDS
      2. Snort
      3. Sourcefire
      4. Firepower
      5. FTD ~ Cisco Firepower + Cisco ASA = NGFW
    3. Components explained and management consoles
      1. Sensors –
        1. FTD (2100, 4100, 9300, ASA, virtual + ISR ),
        2. SFR
        3. NGIPS (7000, 8000, virtual)
      2. Firepower Management Center
      3. ASDM
      4. FDM
    4. Licensing
      1. Classic licenses
      2. Smart license – TASK Activate Evaluation !
    1. Registration process with Tasks
      1. FTD initial config
      2. Compatibility checks
      3. Routing
      4. No NAT
      5. With NAT
    2. Policies explained
      1. Access control policies + simple Task
      2. Intrusion policy
      3. Network analysis policy
      4. Prefilter policy
      5. Network Discovery policy
      6. File policy
      7. DNS policy
      8. Identity policy
      9. SSL policy
      10. Health policy

    2) Day 2

    1. Access control policy in details + Tasks
      1. Rules
        1. AND match
        2. OR match
        3. Logging
      2. Actions
        1. Allow
        2. Trust
        3. Monitor
        4. Block
        5. Block with reset
        6. Interactive block
        7. Interactive block with reset
      3. Security intelligence
      4. HTTP response pages
      5. Policy assignments
      6. Inheritance settings and policy management
      7. Rule categories
      8. ACP report

    Break 45 minutes

    1. Intrusion policy in details
      1. Cisco provided policies
      2. Rule action modifications
      3. Rule search
      4. Rule edit
        1. Thresholds
        2. Suppressions
        3. Alerts
      5. Rule creation
    2. Malware and File policy
      1. Rule creation
      2. Action types
      3. Types of analysis
      4. Advanced options
        1. Encrypted files
        2. File lists

     

    3) Day 3

    1.  Troubleshooting data path
    1. Features for traffic processing investigation:
      1. > system support trace
      2. > system support firewall-engine-debug
      3. > packet-tracer input Inside tcp 192.168.0.2 http 54.78.56.192 http
      4. > packet-tracer input Inside tcp 192.168.0.2 http 54.78.56.192 http detailed
      5. > capture-traffic
      6. OR
      7. > system support capture-traffic

    Similar to tcpdump

    1. Enter to ASA cli:

    >system support diagnostic-cli

    Firepower>en

    Lina-cli#

    Break 45 minutes

    1. Tasks

     

     

    Enroll

     

    Contact with us

    Do not hesitate to ask for more info about this course.

    See also

    Technology : WAN,VPN

    Level : Intermediate

    Type : On site, Online

    Technology : ISE 2.X & ISE 3.0

    Level : Intermediate

    Type : On site

    Technology : Security, NG Firewalls

    Level : Intermediate

    Type : On site, Online

    Grandmetric