Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW v1.0) Training
Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW v1.0) Training
Course 2931
Duration: 5 days
Language: English
Level: Intermediate
The Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW) v1.0 course shows you how to deploy and use Cisco Firepower® Threat Defence system. This hands-on course gives you knowledge and skills to use and configure Cisco® Firepower Threat Defence technology, beginning with initial device setup and configuration and including routing, high availability, Cisco Adaptive Security Appliance (ASA) to Cisco Firepower Threat Defence migration, traffic control, and Network Address Translation (NAT). You will learn how to implement advanced Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS) features, including network intelligence, file type detection, network-based malware detection, and deep packet inspection. You will also learn how to configure site-to-site VPN, remote-access VPN, and SSL decryption before moving on to detailed analysis, system administration, and troubleshooting.
This course helps you prepare to take the exam, Securing Networks with Cisco Firepower (300-710 SNCF), which leads to CCNP Security and Cisco Certified Specialist – Network Security Firepower certifications. The 300-710 SNCF exam has a second preparation course as well, Securing Networks with Cisco Firepower Next-Generation Intrusion Prevention System (SSFIPS). You can take these courses in any order.
Cisco recommends that you have the following knowledge and skills before taking this course:
Technical understanding of TCP/IP networking and network architecture
Basic familiarity with firewall and IPS concepts
This course is designed for technical professionals who need to know how to deploy and manage a Cisco Firepower NGIPS and NGFW in their network environments.
Targeted roles include:
Security administrators
Security consultants
Network administrators
System engineers
Technical support personnel
Channel partners and resellers
Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW v1.0) Training Delivery Methods
Cisco Authorised course content
Authorised Cisco CCSI instructor
Attend in-class, online or bring the course to your facility
Expansive course catalogue to go deeper into Cisco or broaden you skills beyond
Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW v1.0) Training Course Benefits
Describe key concepts of NGIPS and NGFW technology and the Cisco Firepower Threat Defence system, and identify deployment scenariosPerform initial Cisco Firepower Threat Defence device configuration and setup tasksDescribe how to manage traffic and implement quality of service (QoS) using Cisco Firepower Threat DefenceDescribe how to implement NAT by using Cisco Firepower Threat DefencePerform an initial network discovery, using Cisco Firepower to identify hosts, applications, and servicesDescribe the behaviour, usage, and implementation procedure for access control policiesDescribe the concepts and procedures for implementing security intelligence features
SSNGFW Course Outline
Examining Firewall and IPS Technology
Firepower Threat Defence Features and Components
Examining Firepower Platforms
Cisco Firepower Implementation Use Cases
Firepower Threat Defence Device Registration
FXOS and Firepower Device Manager
Initial Device Setup
Managing NGFW Devices
Examining Firepower Management Centre Policies
Examining Objects
Examining System Configuration and Health Monitoring
Device Management
Examining Firepower High Availability
Configuring High Availability
Cisco ASA to Firepower Migration
Migrating from Cisco ASA to Firepower Threat Defence
Firepower Threat Defence Packet Processing
Implementing QoS
Bypassing Traffic
NAT Basics
Implementing NAT
NAT Rule Examples
Implementing NAT
Examining Network Discovery
Configuring Network Discovery
Implementing Access Control Policies
Examining Access Control Policies
Examining Access Control Policy Rules and Default Action
Implementing Further Inspection
Examining Connection Events
Access Control Policy Advanced Settings
Access Control Policy Considerations
Implementing an Access Control Policy
Examining Security Intelligence
Examining Security Intelligence Objects
Security Intelligence Deployment and Logging
Implementing Security Intelligence
Examining Malware and File Policy
Examining Advanced Malware Protection
Examining Intrusion Prevention and Snort Rules
Examining Variables and Variable Sets
Examining Intrusion Policies
Examining IPsec
Site-to-Site VPN Configuration
Site-to-Site VPN Troubleshooting
Implementing Site-to-Site VPN
Examining Remote-Access VPN
Examining Public-Key Cryptography and Certificates
Examining Certificate Enrolment
Remote-Access VPN Configuration
Implementing Remote-Access VPN
Examining SSL Decryption
Configuring SSL Policies
SSL Decryption Best Practises and Monitoring
Examining Event Analysis
Examining Event Types
Examining Contextual Data
Examining Analysis Tools
Threat Analysis
Managing Updates
Examining User Account Management Features
Configuring User Accounts
System Administration
Examining Common Misconfigurations
Examining Troubleshooting Commands
Firepower Troubleshooting
Get This Course
£3,470
For Team Prices Call: 44 (0) 207 874 5000
5-day instructor-led training course
Authorised Cisco Training Provider
Providing over 20 years of Cisco training
Tuition fee can be paid later by invoice -OR- at the time of checkout by credit card
Attend virtuallly from your home or office
#2931
Guaranteed to Run - you can rest assured that the class will not be cancelled.
Jun 10 - 149:00 AM - 5:00 PM BST
WebEx
Aug 12 - 169:00 AM - 5:00 PM BST
WebEx
Guaranteed to Run - you can rest assured that the class will not be cancelled.
The best way to prepare for this certification is to take the Cisco-approved training, as well as using the self-study materials provided.
You will need to register for the exam. Exams are offered as proctored exams at a test centre, or self-administered online.
To earn Cisco Certified Specialist - Network Security Firepower Certification, you need to pass a core exam and a data centre concentration exam of your choice. The 350-601 DCCOR is the core exam. Passing this 300-710 SSNGFW exam completes your selected concentration exam. Comprehensive Cisco Certification information can be found here.