Cisco ASA with FIREPOWER Services Workshop

Duration: 
2 days
Codes: 
NGFWTW,FIREPOWER,ASA

Overview

The Cisco Next-Generation Firewall (NGFW) is the industry's first fully integrated, threat-focused NGFW. It delivers comprehensive, unified policy management of firewall functions, application control, threat prevention, and advanced malware protection from the network to the endpoint. This course provides advanced training on the key Cisco ASA 9.x features including the installation and set-up of the Cisco SFR (FirePOWER Services) Module

Audience

Network administrators, managers, coordinators; Anyone who requires advanced training on the ASA 5500-X using SFR and CWS; Security technicians, administrators and engineers.

Skills Gained

After you complete this course you should be able to:

  • Installation of the FirePOWER Services (SFR) Module on the ASA
  • FirePOWER Management Center
  • the System Configuration, Firepower Setting Policy, and Health Policy
  • Edit the Default FMC Network Discovery Rule
  • Configure the IPS, File, and Access Control Policies
  • Test the Basic SFR IPS Operations
  • Test the Basic SFR AMP Operations
  • Malware File Transfers to Trigger the Malware Blocking File Policy Rule
  • IPS and Malware Events in the FirePOWER Management Center
  • Firepower Network Discovery Results
  • Integrate Firepower with Active Directory
  • Configure Identity Policy
  • Configure User Based Access Control Policy
  • Test User Based Access Control Policy
  • Configure Basic Custom Application Detector
  • Configure DNS Policy
  • Configure SSL Policy
  • Firepower v6.0 Features

Prerequisites

Attendees should meet the following prerequisites:

  • CCNA Certified preferably CCNA Security certified

Course Outline

Installing Cisco ASA FirePOWER Services Module

  • Cisco ASA FirePOWER Services (SFR) Module Overview
  • Cisco FirePOWER Management Center Overview
  • Cisco ASA FirePOWER Services Software Module Management Interface
  • Cisco ASA FirePOWER Services Module Package Installation
  • Cisco ASA FirePOWER Services Module Verification
  • Redirect Traffic to Cisco ASA FirePOWER Services Module

Managing Cisco ASA FirePOWER Services Module Using Cisco FirePOWER Management Center

  • Cisco FireSIGHT Management Center VM Installation and Setup
  • Cisco ASA FirePOWER Services Module and FireSIGHT License Requirements
  • Add Cisco ASA FirePOWER Services Module into FireSIGHT
  • FireSIGHT Policy Types Overview
  • Task Status Monitoring
  • System Policy Overview
  • Health Policy Overview
  • Objects Management Overview
  • Network Discovery Overview
  • Security Zones Overview
  • Active Directory Integration Overview
  • SourceFire User Agent Overview
  • Access Control Policy Overview
  • Intrusion Policy Overview
  • Cisco FireSIGHT Recommended Rules Overview
  • Intrusion Event Impact Levels Overview
  • File Policy Overview
  • Connection Events Monitoring
  • Events Display Time Range
  • Switch Workflow
  • IPS Events Monitoring
  • File Events Monitoring
  • Users Monitoring
  • Indication of Compromise Overview
  • Context Explorer
  • Dashboards

The Cisco ASA 5506-X, 5508-X, and 5516-X FirePOWER Services

  • Cisco ASDM and FirePOWER On-Box FireSIGHT Manager
  • Cisco ASA FirePOWER Dashboard, Reporting, and Status
  • Cisco ASA FirePOWER Events Viewer
  • Gather Cisco ASA FirePOWER Troubleshooting Information for Cisco TAC
  • FirePOWER Licensing

Configuring ASA Firepower Services v6.0 New Features

  • Firepower v6.0 Platforms
  • Deploy Dialog
  • Message Center
  • System Configurations and Devices Platform Settings
  • Network Analysis Policy
  • File Policy Enhancements
  • URL-Based Security Intelligence
  • DNS Policy
  • OpenAPPID
  • Intelligent Application Bypass
  • PKI, Cipher Suite Lists, and Distinguished Name Objects
  • SSL Policy
  • Realm and Directory Server
  • Identity Policy
  • Capture Portal Active Authentication
  • ISE pxGrid Integration
  • ASDM On-Box Firepower Management
  • Firepower Multi-Domain Management

Labs:

  • Lab 1: Install and Configure ASA SFR
  • Lab 2: Configure and Test Firepower Management Center

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. It's a cost effective option.

Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.

Upcoming Dates

  • GREEN This class is Guaranteed To Run.
  • SPVC - Self-Paced Virtual Class.
  • Click a Date to Enroll.
Course Location Days Cost Date
London London2 1500 £1500 2019-09-10
Berkshire Wokingham2 1500 £1500 2019-12-10