Securing Cisco Networks with FireSIGHT Intrusion Prevention System (IPS) is a lab-intensive course that introduces you to the powerful features of the Cisco Sourcefire System, including FireSIGHT technology, in-depth event analysis, IPS tuning and configuration, and the Snort rules language. You will learn how to use and configure next-generation Sourcefire technology, including application control, firewall, and routing and switching capabilities. You will also learn to properly tune your system for better performance and greater network intelligence while taking full advantage of powerful tools for more efficient event analysis, including file type and network-based malware detection. This course combines lecture materials and hands-on labs throughout to make sure that you are able to successfully deploy and manage the Sourcefire System.
This course is designed for technical professionals who need to know how to deploy and/or manage a Cisco FireSIGHT system in a network environment. The primary audience for this course includes:
Upon completion of this course, you should be able to:
This course prepares you to take the Securing Cisco Networks with Sourcefire IPS exam (exam ID 500-285). This is a proctored exam.