Implementing Cisco Secure Firewall (Cisco Secure Firewall)

This course will help:
  • Gain the knowledge and skills needed to set up and operate Cisco’s advanced network information security system
  • Understand the architecture, understand the control and executive components of the system
  • Understand the interactions between system components, licensing principles, possible options for deploying system components
  • Understand the principles of operation, edit and create resource access control policies, file control policies and AMP service, intrusion prevention system policies, network analysis policies
  • Gain practical experience in troubleshooting system problems
  • Gain hands-on experience with event analysis tools

Course syllabus:

  • Cisco Secure Firewall Platforms
  • Cisco Secure Firewall Overview
  • Deploying Cisco Secure Firewall
  • Licensing
  • Security Policy Interactions
  • Using NAT
  • Using QoS
  • Using the Object Detection Engine
  • Using the Security Intelligence Engine
  • SSL/TLS traffic decryption
  • Access Control Policy
  • File Control Policy and Advanced Malware Protection
  • Network Analyzer Policy
  • Setting up a VPN
  • Routing Network Traffic Using Cisco Secure Firewall
  • Event Analysis
  • Troubleshooting
  • Using the REST API in Cisco Secure Firewall

Lab outline:

  • Connecting to a lab environment
  • Configuring an FTD Firewall
  • Setting up Network Address Translation (NAT)
  • Working with network discovery policy (NetworkDiscovery)
  • Object management
  • Working with Access Control Policy
  • Working with block lists using the SecurityIntelligence reputation system
  • Working with File Control Policy
  • Working with Intrusion Prevention Policy (IPS)
  • Working with Network Analysis Policy
  • Working with SSL/TLS traffic decryption policy
  • Working with Quality of Service (QoS) Policies

You will learn:

  • Understand the architecture, understand the control and executive components of the system, understand the interactions between system components
  • Understand licensing principles
  • Understand possible deployment options for system components
  • Understand the purpose, edit and create Management policies
  • Understand possible paths for traffic to pass through the system
  • Use the Discovery engine to analyze the network and create host profiles
  • Use the Security Intelligence engine
  • Understand the principles of operation, edit and create resource access control policies, file control policies and AMP service, intrusion prevention system policies, network analysis policies
  • Work with event analysis tools
  • Troubleshoot system problems

Pre-requisites:

This course assumes that students have basic knowledge and experience in working with corporate LAN networks, knowledge of corporate routing and wireless connections, and an understanding of the use of Python scripts.

Sign up for a course Implementing Cisco Secure Firewall (Cisco Secure Firewall)