Who Would Benefit
This course is designed for internetwork professionals wanting to ensure security on their network, or those seeking Cisco certification.
1. Network Security and Cisco
2. Intrusion Detection Overview
3. Cisco Intrusion Protection Overview
4. Sensor Appliance Installation
5. Cisco IDS Device Manager and Event Viewer
6. Sensor Configuration
7. Cisco IDS Alarms and Signatures
8. Sensing Configuration
9. IP Blocking Configuration
10. Capturing Network Traffic for IDS
11. Intrusion Detection Module Configuration
12. Cisco Intrusion Detection System Maintenance
13. Cisco IDS Architecture
14. Enterprise IDS Management
15. Enterprise IDS Monitoring and Reporting
16. Cisco IDS Host Sensor Overview
17. Installing Cisco IDS Host Sensor Software
18. Event Monitoring
19. Agent and Policy Management
20. Notification and Reporting
21. Cisco IDS Host Sensor Maintenance
22. Cisco IDS Host Sensor Architecture
Cisco Network Based IDS Labs
Lab 1: Install and initialize the CSIDS Platform.
Lab 2: Install and configure the CSIDS Device Manager.
Lab 3: Configure CSIDS Event Viewer for viewing alarms.
Lab 4: Configure Cisco Secure Scanner and use the tool to generate attacks against peer pods.
Lab 5: Use Network Sniffing software to analyze at the bit level the communication between the CSIDS and the IEV (Intrusion Event Viewer).
Lab 6: Secure the sensor by enabling Secure Shell access on the sensor.
Lab 7: Learn Alarm Management using CSIDS Event Viewer.
Lab 8: Learn and utilize basic UNIX commands to navigate through the sensor.
Lab 9: Configure the sensor for Alarm logging and notification.
Lab 10: Tune the CDIDS signatures to customize alarm levels and reactions.
Lab 11: Configure CSIDS signature filters to fine tune the sensor.
Lab 12: Configure the sensor to dynamically add an access list to block attacks at the Cisco router.
Lab 13: Upgrade the sensor to a new Service Pack.
Lab 14: Upgrade the sensor to a new Signature Update.
Lab 15: Install and configure the CSIDS Management Center.
Lab 16: Use the CSIDS Management Center to manage multiple sensors.
Cisco Host Based Intrusion Detection System Labs
Lab 17: Install Cisco Host Based IDS Software (CHIDS)
Lab 18: Configure the CHIDS Event Monitoring.
Lab 19: Configure the CHIDS Policies and Agent.
Lab 20: Event Notification and Reporting including SMTP.
Lab 21: Host Sensor Maintenance & Updates.
Lab 22: Use attacks test the CHIDS.
A working knowledge of network security, and a solid grasp of TCP/IP, networking, and routed networks is required. Interconnecting Cisco® Network Devices (ICND) builds a strong foundation for this class.
Students followed up CSIDS (Cisco Secure Intrusion Detection System 3.0) by attending these popular classes: