Cisco Secure Firewall Adv Features, Operations & Management (CSFAF)

Price
$3,695.00 USD

Duration
3 Days

Cisco Learning Credit (CLC) Eligible

 

Delivery Methods
Virtual Instructor Led
Private Group

Request More Information
Download Course Details
Course Details Only
Course Details & Schedule
Skip to Class Dates

Course Overview

In this 3-day, lab intense course students will learn about many of the advanced features, day-2 operations and management of Cisco Secure Firewall / Firepower Threat Defense. Through intense lab exercises students will develop the skills to configure, manage and troubleshoot problems with Cisco FTD devices. After a short review of CSF, we will cover advanced features like security intelligence, file control, advanced malware protection, redundancy, external threat intelligence, domain management, SNORT3, and advanced packet flow analysis. We will also have a look at what’s new in version 7.x. You will gain leading-edge skills for high-demand security focused responsibilities.

Course Objectives

  • Describe the advanced features of a Next-Generation Firewall
  • Explain the newly release features
  • Configure advanced and newly released features
  • Understand advanced packet flow analysis

Who Should Attend?

  • Network Security Administrators
  • Network Security Engineers
  • Network Security Managers
  • Security Sales Engineers
  • Security System Engineers
  • Anyone else who wants to learn about Cisco Secure Firewall
  • Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
  • Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
  • Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
  • Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
  • Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
  • Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

Course Prerequisites

  • Before taking this course, it would be good to have a basic understanding of Cisco Secure Firewall and some hands-on experience working on the device (Cisco Secure Firewall). If you don’t have the pre-requisites described above, then a good way to prepare for this course is to attend our course ’Introduction to Cisco Secure Firewall’.

Agenda

1. Overview of Cisco Secure Firewall (CSF)

  • Device Configuration
  • Traffic Control
  • NAT Overview
  • Network Discovery
  • Overview of Policies

2. Next-Generation Features of Cisco Secure Firewall (CSF)

  • Security Intelligence (SI)
  • File Control and Advanced Malware Protection
  • Malware and File Policy
  • Overview of Intrusion Prevention and Snort Rules
  • Firepower Recommendations

3. Cisco Secure Firewall Redundancy

  • Overview of High Availability (HA)
  • Discuss active / standby HA

4. External Threat Intelligence

  • Overview of external feeds
  • Describe incidents
  • Explain Cisco Threat Intelligence Director (CTID)
  • Understanding subscription of CTID to external feeds

5. Domain Management

  • Introduction to multi-tenancy using domains
  • Managing domains
  • Creating new domains
  • Moving devices between domains

6. VPNs

  • Site-to-Site VPN
  • RA-VPN

7. SNORT3

  • Introduction to Snort3
  • Explain Elephant Flow
  • Discuss Snort3 recommendations
  • Explain rule actions

8. Advance Packet Flow Analysis

  • Using the ’Packet-Tracer’ feature
  • Using the ’Capture with Trace’ feature

9. What’s New in 7.x

  • VPN Load Balancing for FMC-managed devices
  • Explain FQDN NAT
  • Understand network wildcard mask object
  • Discuss direct Internet access
  • Describe AnyConnect with SAML external browser
  • Explain encrypted visibility engine
  • Discuss enhancement in TLS (focus on TLS 1.3)
 

Get in touch to schedule training for your team
We can enroll multiple students in an upcoming class or schedule a dedicated private training event designed to meet your organization’s needs.

 



Do You Have Additional Questions? Please Contact Us Below.

contact us contact us 
Contact Us about Starting Your Business Training Strategy with New Horizons