Skip to Scheduled Dates
Course Overview
In this 3-day course students will learn to deploy, configure, and manage Cisco Secure Firewall/Firepower Threat Defense. This hands-on course will help develop the skills to use and configure Cisco FTD, starting with the initial device setup and configuration. Students will learn to implement Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS) features. Students will also learn to analyze events, system administration, and basic troubleshooting.
Who Should Attend
- Network Security Administrators
- Network Security Engineers
- Network Security Managers
- Security Sales Engineers
- Security System Engineers
- Anyone else who wants to learn about Cisco Secure Firewall
Course Objectives
- Describe the operating principles of a Next-Generation Firewall
- Configure any Cisco Secure Firewall using the GUI
- Ensure that proper perimeter security is enabled using Cisco Secure Firewall
- Describe the different common use cases of Cisco Secure Firewall
Course Outline
1. Overview of Cisco Secure Firewall (CSF)
- Basic firewall and IPS terminologies
- Understand CSF features
- Examine different platforms
- Examine licensing
- General implementation use cases
2. Device Configuration
- Device Registration
- Differentiate between FXOS and FTD image
- Differentiate between management options FDM and FMC
- Initial device activation and configuration
- Examining different policies
- Define objects
- Explore system configuration
- Configure Health Monitoring
- Discuss device/ platform management options
- Overview of High Availability
3. Cisco Secure Firewall Traffic Control
- Describe packet processing
- Explain traffic bypassing
- Discuss pre-filter policy
4. Network Address Translation (NAT) Configurations
- Overview of NAT
- Different NAT rule types
- Implementing and configuring NAT
5. Network Discovery
- Explain Network Discovery
- Configure Network Discovery
6. Access Control Policies
- Overview of Access Control Policies (ACP)
- Describe Access Control Policy rules and default action
- Define further inspection feature in a rule
- Overview of logging options for a rule
- Advanced Settings in an ACP
- Deploying the change in an ACP
7. Security Intelligence
- Overview of Security Intelligence (SI)
- Configure Security Intelligence objects
- Deploy SI
8. File Control and Advanced Malware Protection
- Overview of malware and file policy
- Discuss Advanced Malware Protection
9. Next-Generation Intrusion Prevention Systems
- Overview of Intrusion Prevention and Snort rules
- Explain variables and variable sets
- Configure intrusion policies
- Describe firepower recommendations
10. Analyzing different Events
- Discuss different types of events
- Explore analysis tools
- Analyze threats
11. General System Administration
- Manage device updates
- Explore user account management features
- Configuring different user accounts
12. Basic Troubleshooting
- Identify common misconfigurations
- Basic troubleshooting commands
- Using packet trace