Posts Tagged ‘IPS’
Another new update is now available for the CCIE Security Advanced Technologies Class. This update adds an additional 15 hours of videos to the series, which includes the rest of IPsec, IPS, and AAA. All Access Pass subscribers and customers who purchased download access can login to the INE members site to see the new additions. This brings the series up to about 40 hours of videos, which will be further increased with some minor updates I’ll be adding over the next few weeks. If there is a specific topic which is missing that you’d like to see feel free to comment here, or email me at email@example.com.
The outline for the series is now as follows:
- Introduction – 0h 37m
- CCIE Security Preparation Resources – 0h 50m
- ASA Overview – 0h 37m
- Basic ASA Initialization – 1h 02m
- ASA Routing – 0h 37m
- ASA Reliable Static Routing – 0h 20m
- ASA Access Control Lists (ACLs) – 0h 41m
INE is proud to announce the upcoming release of the following new additions to our All Access Pass Video-on-Demand library:
- CCNA Security - Implementing Cisco IOS Network Security (640-553 IINS)
- CCNP Security - Securing Networks with Cisco Routers and Switches (642-637 SECURE v1.0)
- CCNP Security - Deploying Cisco ASA Firewall Solutions (642-617 FIREWALL v1.0)
- CCNP Security - Deploying Cisco ASA VPN Solutions (642-647 VPN v1.0)
- CCNP Security - Implementing Cisco Intrusion Prevention System v7.0 (642-627 IPS v7.0)
- CCIE Security Advanced Technologies Class for Blueprint v3.0
- CCIE Service Provider Advanced Technologies Class for Blueprint v3.0
All of these classes will be delivered by me, Brian McGahan – 3 x CCIE #8593. Release dates for the CCNA Security and CCNP Security videos will be early and late July 2011 respectively. The CCIE Security Advanced Technologies Class will be running as a live online class from July 25th – July 29th 2011, with an estimated release date of August 5th 2011 for the videos. The CCIE Service Provider Advanced Technologies Class will be running as a live online class from August 29th – September 2nd 2011, with an estimated release date of September 9th 2011.
Subscribers to the All Access Pass will have immediate access to the streaming videos as they become available, and can attend the live online sessions of CCIE Security ATC and CCIE Service Provider ATC at no additional charge. Seating is limited for the live class sessions, so contact firstname.lastname@example.org as soon as possible if you are interested in attending. Download versions of each of the classes will be available for purchase as a standalone product, or as a discounted upgrade for AAP subscribers.
We will also releasing a new CCNA course delivered by Brian Dennis – 5 x CCIE #2210, and both CCNA Voice & CCNP Voice courses delivered by Mark Snow – 2 x CCIE #14073. More details about these releases will be available soon.
Beginning in October 2009, students will be required to demonstrate mastery of the Cisco IOS Intrusion Prevention System (IPS) for the CCIE R/S track. This blog post introduces candidates to this relatively new security feature. Note this series of blog posts will focus on Tier 1 knowledge. This information allows mastery for the Core Knowledge section and builds a foundation for later mastery at the Command Line Interface.
Intrusion Prevention replaces mere Intrusion Detection from previous IOS versions. IDS for the IOS was certainly nice (you get alerted when a security attack is occurring), but obviously, stopping an attack is much more powerful.
I. Device Manager
i. IDM lives on the sensor and gives you a GUI option for managing the device
1. used to secure communications
I. IPS CLI
2. Serial interface (console)
3. Telnet (disabled by default)
This is obviously a very short list. Remember, we recommend use of the Cisco Intrusion Prevention System Device Manager (IDM) for management and configuration of the device during the lab exam. While this graphical user interface (GUI) will be used for most tasks, there are still some useful and quick command line verification tasks for you here.
IPS CLI 5.1
more current-config | include COMMAND
show settings terse | begin COMMAND
show statistics SERVICE_NAME