FIREPOWER200 - Securing Networks with Cisco Firepower Threat Defense NGFW

Introdução

The Securing Networks with Cisco Firepower Threat Defense NGFW (FIREPOWER200) v2.0 course shows you how to deploy and use Cisco® Firepower® Threat Defense system. This hands-on course gives you the knowledge and skills to use and configure Cisco Firepower Threat Defense technology, beginning with initial device setup and configuration and including routing, high availability, Cisco Adaptive Security Appliance (ASA) to Cisco Firepower Threat Defense migration, traffic control, and Network Address Translation (NAT). You will learn how to implement advanced Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System
(NGIPS) features, including network intelligence, file type detection, network-based malware detection, and deep packet inspection. You will also learn how to configure site-to-site VPN, remote-access VPN, and SSL decryption before moving on to detailed analysis, system administration, and troubleshooting.

Calendário
Próximas Datas
Data
Solicitar mais informaçõess
Baixar PDF
Carga Horária:
40 horas
Investimento:
Preço sob consulta
Solicitar Cotação
Formatos de Entrega

Público Alvo

The primary audience for this course is technical professionals who need to know how to deploy and manage a Cisco Firepower Threat Defense NGFW in their network environments. This class would be suitable for anyone who is replacing Cisco ASA devices with Cisco Firepower Threat Defense.

Objetivo

After taking this course, you should be able to:
Describe key concepts of NGIPS and NGFW technology and the Cisco Firepower Threat Defense system, and identify deployment scenarios
Perform initial Cisco Firepower Threat Defense device configuration and setup tasks
Describe how to manage traffic and implement Quality of Service (QoS) using Cisco Firepower Threat Defense
Describe how to implement NAT by using Cisco Firepower Threat Defense
Perform an initial network discovery, using Cisco Firepower to identify hosts, applications, and services
Describe the behavior, usage, and implementation procedure for access control policies
Describe the concepts and procedures for implementing security intelligence features
Describe Cisco Advanced Malware Protection (AMP) for Networks and the procedures for implementing file control and advanced malware protection
Implement and manage intrusion policies
Describe the components and configuration of site-to-site VPN
Describe and configure a remote-access SSL VPN that uses Cisco AnyConnect®
Describe SSL decryption capabilities and usage

Pré Requisitos

To fully benefit from this course, you should have the following knowledge: Knowledge of TCP/IP and basic routing protocols, and familiarity with firewall, VPN, and Intrusion Prevention System (IPS) concepts.

Conteúdo Programatico

Cisco Firepower Threat Defense Overview
Cisco Firepower NGFW Device Configuration
Cisco Firepower NGFW Traffic Control
Cisco Firepower NGFW Address Translation
Cisco Firepower Discovery
Implementing Access Control Policies
Security Intelligence
File Control and Advanced Malware Protection
Next-Generation Intrusion Prevention Systems
Site-to-Site VPN
Remote-Access VPN
SSL Decryption
Detailed Analysis Techniques
System Administration
Cisco Firepower Troubleshooting

Lab outline
Initial Device Setup
Device Management
Configuring High Availability
Migrating from Cisco ASA to Cisco Firepower Threat Defense
Implementing QoS
Implementing NAT
Configuring Network Discovery
Implementing an Access Control Policy
Implementing Security Intelligence
Implementing Site-to-Site VPN
Implementing Remote Access VPN
Threat Analysis
System Administration
Firepower Troubleshooting