Cisco Intrusion Detection
Overview/Description
To introduce Cisco's intrusion detection and threat response technology and configure traffic capture on Cisco devices.
Target Audience
Enterprise network engineers; network system analysts; Cisco partners who implement Cisco IDS on networks; systems engineers who support the sales of Cisco IDS
Prerequisites
Experience in configuring Cisco IOS software; certification as a CCNA or the equivalent knowledge; a basic knowledge of the Windows operating system; familiarity with the networking and security terms and concepts
Expected Duration
180 Minutes
Objectives:
Cisco Intrusion Detection
identify the features and capabilities of Cisco's Network Sensor and HIPS platforms and Cisco's intrusion protection and security management solutions.
recognize the features, components, technical factors, and design considerations involved in deploying an IDS solution.
recognize the features and capabilities of Cisco's current intrusion detection and defense technologies.
identify the basic traffic flow and the key device features and methods for capturing traffic on network devices.
recognize the procedure and commands for configuring SPAN and RSPAN on Catalyst 2900 and 3500 series switches.
select an appropriate method for capturing traffic on a network and configure SPAN and RSPAN on Catalyst switches.
recognize how to configure VLAN Access Control Lists to capture traffic on Catalyst 6500 switches.
to identify the commands used to configure a Catalyst 6500 switch to control traffic capture using the MLS IP IDS feature.
configure traffic capture on Catalyst 6500 switches using VACLs and the mls ip ids command.
Course Number: 204616_eng