Cisco IDS Sensors, Alarms, and Signatures

Cisco IDS Sensors, Alarms, and Signatures

Overview/Description
To deploy and configure Cisco IDS Sensors, outline IDS signature features, list signature engines and their specific parameters, and select appropriate signature engines

Target Audience
Enterprise network engineers; network system analysts; Cisco partners who implement Cisco IDS on networks; systems engineers who support the sales of Cisco IDS

Prerequisites
Experience in configuring Cisco IOS software; certification as a CCNA or the equivalent knowledge; a basic knowledge of the Windows operating system; familiarity with the networking and security terms and concepts

Expected Duration
130 Minutes

Objectives:

Cisco IDS Sensors, Alarms, and Signatures

add Sensors and Sensor groups to the IDS MC and generate and test SSH keys.

identify how to configure Sensor communication properties, the logging capabilities of the Sensor, and logging properties via the IDS MC.

configure Sensors in a given scenario.

identify the Cisco IDS signature characteristics and alarm responses and recognize the different signature engines and the parameters pertinent to them.

list and identify Cisco IDS atomic, flood, and service signature engines.

identify the state, string, and sweep signature engines supported by Cisco IDS.

identify the criteria to apply when selecting Cisco IDS signature engines based on specific scenario requirements.

identify Cisco IDS signature engine features and characteristics and create regular expressions to match specified data strings.

Course Number: 204623_eng