 | |
Security: Intrusion Detection & Incident Response: IBM's Cisco Secure Intrusion Detection System (CSIDS), 2.0
| Previous Next | | | Average Rating: 0.00/10
(# Rating Votes: 0 | Rate This Course | Contribute a Review )
Short Description:
Learn how to use Cisco Secure Intrusion Detection System (CSIDS) to detect and respond to malicious network attacks, in this lab intensive course.
Full Description:
Overview
Learn how to use Cisco Secure Intrusion Detection System (CSIDS) to detect and respond to malicious network attacks, in this lab intensive course. Learn all CSIDS detection platforms, including the 4200 series sensors, the Catalyst 6000 series Intrusion Detection System Module (IDSM), and the Cisco Integrated Operating System (IOS) router Intrusion Detection System (IDS) features. Learn how to remotely manage CSIDS sensor with Cisco Secure Policy Manager (CSPM) and how to use CSPM to collect and display intrusion data.
Skills taught
Install the director and sensor in multiple network configurations
Configure the sensor to detect, respond, and report unauthorized activity on a network
Configure the director to translate data into intuitive and effective graphical displays
Configure the director to centrally manage and configure remote sensors
Use the graphical display to manage alarms and respond to intrusion attempts
Use the Network Security Database (NSDB) to access network security vulnerability information
Learn the IDS signatures and how they are used to determine when the network is under attack
Customize the director and sensor to filter false positives and respond to intrusion alarms in a variety of ways to meet operational needs
Develop and implement customized intrusion detection signatures
Configure IDS in device management mode, which enables it to interface with and control a Cisco router's access control lists
Learn IDS configuration schema so that advanced users may customize intrusion detection and response, reporting mechanisms, and communications settings
Audience
Individuals responsible for implementing network security policies, specifically, intrusion detection systems.
Prerequisites
You should complete:
Managing Cisco Network Security (MCNS) (NC610)
and have Cisco Certified Network Associate (CCNA) certification or equivalent knowledge. You should have sound working knowledge of network security and a solid understanding of Transmission Control Protocol / Internet Protocol (TCP/IP), fundamental networking concepts, and routed networks.
Key topics
Introduction to network security
CSIDS environment
CSPM installation
CSIDS sensor installation
Alarm management
CSIDS signatures
Sensor configuration
Signature and intrusion detection configuration
Internet Protocol (IP) blocking configuration
Catalyst 6000 IDSM configuration
CSIDS architecture
CSIDS signature structures and implementations
CSIDS signatures and recommended alarm levels
CSIDS log files
Duration:
3.0 Days
Price:
$1,795.00
Submitted by: admin
Hits: 0
IBM's Cisco Secure Intrusion Detection System (CSIDS), 2.0 Course Web Page
| | | |
