SSFIPS: Securing Networks with Cisco Firepower Next-Generation IPS v4.0
The Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0 course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration including application control, security intelligence, firewall, and network-based malware and file controls; Snort® rules language; file and malware inspection, security intelligence, and network analysis policy configuration designed to detect traffic patterns; configuration and deployment of correlation policies to take action based on events detected; troubleshooting; system and user administration tasks, and more.
This course helps you prepare to take the exam, Securing Networks with Cisco Firepower (300-710 SNCF), which leads to CCNP Security and Cisco Certified Specialist – Network Security Firepower certifications. The 300-710 SNCF exam has a second preparation course as well, Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW). You can take these courses in any order.
- Exam Number:
- 300-710
- Exam Name:
- Securing Networks with Cisco Firepower (SNCF)
- Certifications:
- CCNP Security; Cisco Certified Specialist – Network Security Firepower
Upcoming Dates
Prerequisites
- Technical understanding of TCP/IP networking and network architecture
- Basic familiarity with the concepts of IDS and IPS
What's Included
- Comprehensive study materials and official Cisco courseware
- Remote lab access
Course Objectives
After completing this course, you will be able to:- Describe the components of Cisco Firepower Threat Defense and the managed device registration process
- Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
- Implement access control policies and describe access control policy advanced features
- Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection
- Implement and manage intrusion and network analysis policies for NGIPS inspection
- Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
- Integrate the Cisco Firepower Management Center with an external logging destination
- Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
- Describe key Cisco Firepower Management Center software update and user account management features
- Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device
Course Outline
- Module 1: Cisco Firepower Threat Defense Overview
- Module 2: Cisco Firepower NGFW Device Configuration
- Module 3: Cisco Firepower NGFW Traffic Control
- Module 4: Cisco Firepower Discovery
- Module 5: Implementing Access Control Policies
- Module 6: Security Intelligence
- Module 7: File Control and Advanced Malware Protection
- Module 8: Next-Generation Intrusion Prevention Systems
- Module 9: Network Analysis Policies
- Module 10: Detailed Analysis Techniques
- Module 11: Cisco Firepower Platform Integration
- Module 12: Alerting and Correlation Policies
- Module 13: System Administration
- Module 14: Cisco Firepower Troubleshooting
Labs
- Lab 1: Initial Device Setup
- Lab 2: Device Management
- Lab 3: Configuring Network Discovery
- Lab 4: Implementing and Access Control Policy
- Lab 5: Implementing Security Intelligence
- Lab 6: File Control and Advanced Malware Protection
- Lab 7: Implementing NGIPS
- Lab 8: Customizing a Network Analysis Policy
- Lab 9: Detailed Analysis
- Lab 10: Configuring Cisco Firepower Platform
- Lab 11: Integration with Splunk
- Lab 12: Configuring Alerting and Event Correlation
- Lab 13: System Administration
- Lab 14: Cisco Firepower Troubleshooting