Posts Tagged ‘IPS’

Oct
07

Another new update is now available for the CCIE Security Advanced Technologies Class. This update adds an additional 15 hours of videos to the series, which includes the rest of IPsec, IPS, and AAA. All Access Pass subscribers and customers who purchased download access can login to the INE members site to see the new additions.  This brings the series up to about 40 hours of videos, which will be further increased with some minor updates I’ll be adding over the next few weeks. If there is a specific topic which is missing that you’d like to see feel free to comment here, or email me at bmcgahan@ine.com.

The outline for the series is now as follows:

  • Introduction – 0h 37m
  • CCIE Security Preparation Resources – 0h 50m
  • ASA Overview – 0h 37m
  • Basic ASA Initialization – 1h 02m
  • ASA Routing – 0h 37m
  • ASA Reliable Static Routing – 0h 20m
  • ASA Access Control Lists (ACLs) – 0h 41m
  • Continue Reading

Tags: , , , ,

Jun
23

INE is proud to announce the upcoming release of the following new additions to our All Access Pass Video-on-Demand library:

  • CCNA Security - Implementing Cisco IOS Network Security (640-553 IINS)
  • CCNP Security - Securing Networks with Cisco Routers and Switches (642-637 SECURE v1.0)
  • CCNP Security - Deploying Cisco ASA Firewall Solutions (642-617 FIREWALL v1.0)
  • CCNP Security - Deploying Cisco ASA VPN Solutions (642-647 VPN v1.0)
  • CCNP Security - Implementing Cisco Intrusion Prevention System v7.0 (642-627 IPS v7.0)
  • CCIE Security Advanced Technologies Class for Blueprint v3.0
  • CCIE Service Provider Advanced Technologies Class for Blueprint v3.0

All of these classes will be delivered by me, Brian McGahan – 3 x CCIE #8593.  Release dates for the CCNA Security and CCNP Security videos will be early and late July 2011 respectively.  The CCIE Security Advanced Technologies Class will be running as a live online class from July 25th – July 29th 2011, with an estimated release date of August 5th 2011 for the videos.  The CCIE Service Provider Advanced Technologies Class will be running as a live online class from August 29th – September 2nd 2011, with an estimated release date of September 9th 2011.

Subscribers to the All Access Pass will have immediate access to the streaming videos as they become available, and can attend the live online sessions of CCIE Security ATC and CCIE Service Provider ATC at no additional charge.  Seating is limited for the live class sessions, so contact sales@ine.com as soon as possible if you are interested in attending.  Download versions of each of the classes will be available for purchase as a standalone product, or as a discounted upgrade for AAP subscribers.

We will also releasing a new CCNA course delivered by Brian Dennis – 5 x CCIE #2210, and both CCNA Voice & CCNP Voice courses delivered by Mark Snow – 2 x CCIE #14073.  More details about these releases will be available soon.

 

Tags: , , , , ,

Sep
02

Beginning in October 2009, students will be required to demonstrate mastery of the Cisco IOS Intrusion Prevention System (IPS) for the CCIE R/S track. This blog post introduces candidates to this relatively new security feature. Note this series of blog posts will focus on Tier 1 knowledge. This information allows mastery for the Core Knowledge section and builds a foundation for later mastery at the Command Line Interface.

Intrusion Prevention replaces mere Intrusion Detection from previous IOS versions. IDS for the IOS was certainly nice (you get alerted when a security attack is occurring), but obviously, stopping an attack is much more powerful.

Continue Reading

Tags: , , ,

Jan
12

I.    Device Manager

a.    Intro

i.    IDM lives on the sensor and gives you a GUI option for managing the device
ii.    TLS/SSL

1.    used to secure communications

Continue Reading

Tags: , , ,

Jan
11

I. IPS CLI

a. Overview

i. Accessing

1. SSH

2. Serial interface (console)

3. Telnet (disabled by default)

Continue Reading

Tags: , , , ,

Sep
30

This is obviously a very short list. Remember, we recommend use of the Cisco Intrusion Prevention System Device Manager (IDM) for management and configuration of the device during the lab exam. While this graphical user interface (GUI) will be used for most tasks, there are still some useful and quick command line verification tasks for you here.

IPS CLI 5.1

Initial Setup

more current-config
more current-config | include COMMAND
ping
show interfaces
show version
trace

Operation

show events
show os-identification
show settings
show settings terse | begin COMMAND
show statistics
show statistics SERVICE_NAME

Tags: , , , ,

Categories

CCIE Bloggers