Cisco Securing Networks with Cisco Firepower Next Generation Firewall v1 (SSNGFW)

Price
$4,295.00 USD

Duration
5 Days

Cisco Learning Credit (CLC) Eligible

Delivery Methods
Virtual Instructor Led
Private Group

Request More Information

Download Course Details

Course Details Only
Course Details & Schedule

Skip to Class Dates

Course Objectives

Describe key concepts of NGIPS and NGFW technology and the Cisco Firepower Threat Defense system, and identify deployment scenarios
Perform initial Cisco Firepower Threat Defense device configuration and setup tasks
Describe how to manage traffic and implement Quality of Service (QoS) using Cisco Firepower Threat Defense
Describe how to implement NAT by using Cisco Firepower Threat Defense
Perform an initial network discovery, using Cisco Firepower to identify hosts, applications, and services
Describe the behavior, usage, and implementation procedure for access control policies
Describe the concepts and procedures for implementing security intelligence features
Describe Cisco Advanced Malware Protection (AMP) for Networks and the procedures for implementing file control and advanced malware protection
Implement and manage intrusion policies
Describe the components and configuration of site-to-site VPN
Describe and configure a remote-access SSL VPN that uses Cisco AnyConnect®
Describe SSL decryption capabilities and usage

Who Should Attend?

Security administrators
Security consultants
Network administrators
System engineers
Technical support personnel
Cisco integrators and partners

Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

Course Prerequisites

Knowledge of TCP/IP and basic routing protocols
Familiarity with firewall, VPN, and Intrusion Prevention System (IPS) concepts

Agenda

1. Cisco Firepower Threat Defense Overviews

Examining Firewall and IPS Technology
Firepower Threat Defense Features and Components
Examining Firepower Platforms
Examining Firepower Threat Defense Licensing
Cisco Firepower Implementation Use Cases

2. Cisco Firepower NGFW Device Configurations

Firepower Threat Defense Device Registration
FXOS and Firepower Device Manager
Initial Device Setup
Managing NGFW Devices
Examining Firepower Management Center Policies
Examining Objects
Examining System Configuration and Health Monitoring
Device Management
Examining Firepower High Availability
Configuring High Availability
Cisco ASA to Firepower Migration
Migrating from Cisco ASA to Firepower Threat Defense

3. Cisco Firepower NGFW Traffic Controls

Firepower Threat Defense Packet Processing Implementing QoS
Bypassing Traffic

4. Cisco Firepower NGFW Address Translations

NAT Basics
Implementing NAT
NAT Rule Examples
Implementing NAT

5. Cisco Firepower Discoverys

Examining Network Discovery
Configuring Network Discovery

6. Implementing Access Control Policiess

Examining Access Control Policies
Examining Access Control Policy Rules and Default Action
Implementing Further Inspection
Examining Connection Events
Access Control Policy Advanced Settings
Access Control Policy Considerations
Implementing an Access Control Policy

7. Security Intelligences

Examining Security Intelligence
Examining Security Intelligence Objects
Security Intelligence Deployment and Logging
Implementing Security Intelligence

8. File Control and Advanced Malware Protections

Examining Malware and File Policy
Examining Advanced Malware Protection

9. Next-Generation Intrusion Prevention Systemss

Examining Intrusion Prevention and Snort Rules
Examining Variables and Variable Sets
Examining Intrusion Policies

10. Site-to-Site VPNs

Examining IPsec
Site-to-Site VPN Configuration
Site-to-Site VPN Troubleshooting
Implementing Site-to-Site VPN

11. Remote-Access VPNs

Examining Remote-Access VPN
Examining Public-Key Cryptography and Certificates
Examining Certificate Enrollment
Remote-Access VPN Configuration
Implementing Remote-Access VPN

12. SSL Decryptions

Examining SSL Decryption
Configuring SSL Policies
SSL Decryption Best Practices and Monitoring

13. Detailed Analysis Techniquess

Examining Event Analysis
Examining Event Types
Examining Contextual Data
Examining Analysis Tools
Threat Analysis

14. System Administrations

Managing Updates
Examining User Account Management Features
Configuring User Accounts
System Administration

15. Cisco Firepower Troubleshootings

Examining Common Misconfigurations
Examining Troubleshooting Commands
Firepower Troubleshooting

Get in touch to schedule training for your team
We can enroll multiple students in an upcoming class or schedule a dedicated private training event designed to meet your organization’s needs.

Do You Have Additional Questions? Please Contact Us Below.

Contact Us about Starting Your Business Training Strategy with New Horizons