Toll Free - 877-442-3915

Account | Self-Paced Login

Account | Self-Paced Login | 877-442-3915

SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0 Course

SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0 - On-Demand Training Course

Course Description

Course Description:

The SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0 course is a 5-day course that is designed to teach students the knowledge and skills to use and configure Cisco Firepower Threat Defense technology, beginning with initial device setup and configuration and including routing, high availability, Cisco Adaptive Security Appliance (ASA) to Cisco Firepower Threat Defense migration, traffic control, and Network Address Translation (NAT). Students will learn how to implement advanced Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS) features, including network intelligence, file type detection, network-based malware detection, and deep packet inspection. Students will also learn how to configure site-to-site VPN, remote-access VPN, and SSL decryption before moving on to detailed analysis, system administration, and troubleshooting.

This class helps students prepare to take the Securing Networks with Cisco Firepower (300-710 SNCF) exam, which leads to CCNP Security and Cisco Certified Specialist Network Security Firepower certifications. The 300-710 SNCF exam has a second preparation course as well, SSFIPS - Securing Networks with Cisco Firepower Next-Generation Intrusion Prevention System v4.0. You can take these courses in any order.

Topics covered in the course include:

  • Describing key concepts of NGIPS and NGFW technology and the Cisco Firepower Threat Defense system, and identify deployment scenarios
  • Performing initial Cisco Firepower Threat Defense device configuration and setup tasks
  • Describing how to manage traffic and implement Quality of Service (QoS) using Cisco Firepower Threat Defense
  • Describing how to implement NAT by using Cisco Firepower Threat Defense
  • Perform an initial network discovery, using Cisco Firepower to identify hosts, applications, and services
  • Describing the behavior, usage, and implementation procedure for access control policies
  • Describing the concepts and procedures for implementing security intelligence features
  • Describing Cisco Advanced Malware Protection (AMP) for Networks and the procedures for implementing file control and advanced malware protection
  • Implementing and managing intrusion policies
  • Describing the components and configuration of site-to-site VPN
  • Describing and configuring a remote-access SSL VPN that uses Cisco AnyConnect
  • Describing SSL decryption capabilities and usage
  • Implementing Cisco Firepower NGFW to provide advanced threat protection before, during, and after attacks
  • Gain leading-edge skills for high-demand responsibilities focused on security

Target Student:

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Cisco integrators and partners

Prerequisites:

  • Knowledge of TCP/IP and basic routing protocols
  • Familiarity with firewall, VPN, and Intrusion Prevention System (IPS) concepts


This is an On-Demand Self Study Class, 5 -days of content, 365-days unlimited access. for $1000.
Students can take this class at any time; there are no set dates. It covers the same content as the 5 -day instructor-led class of the same name. The cost for this On-Demand class is $1000. (Applicable State and Local taxes may be added for On-Demand purchases, depending on your location.)

Course Syllabus

  • Cisco Firepower Threat Defense Overview
    • Examining Firewall and IPS Technology
    • Firepower Threat Defense Features and Components
    • Examining Firepower Platforms
    • Examining Firepower Threat Defense Licensing
    • Cisco Firepower Implementation Use Cases
  • Cisco Firepower NGFW Device Configuration
    • Firepower Threat Defense Device Registration
    • FXOS and Firepower Device Manager
    • Initial Device Setup
    • Managing NGFW Devices
    • Examining Firepower Management Center Policies
    • Examining Objects
    • Examining System Configuration and Health Monitoring
    • Device Management
    • Examining Firepower High Availability
    • Configuring High Availability
    • Cisco ASA to Firepower Migration
    • Migrating from Cisco ASA to Firepower Threat Defense
  • Cisco Firepower NGFW Traffic Control
    • Firepower Threat Defense Packet Processing
    • Implementing QoS
    • Bypassing Traffic
  • Cisco Firepower NGFW Address Translation
    • NAT Basics
    • Implementing NAT
    • NAT Rule Examples
    • Implementing NAT
  • Cisco Firepower Discovery
    • Examining Network Discovery
    • Configuring Network Discovery
  • Implementing Access Control Policies
    • Examining Access Control Policies
    • Examining Access Control Policy Rules and Default Action
    • Implementing Further Inspection
    • Examining Connection Events
    • Access Control Policy Advanced Settings
    • Access Control Policy Considerations
    • Implementing an Access Control Policy
  • Security Intelligence
    • Examining Security Intelligence
    • Examining Security Intelligence Objects
    • Security Intelligence Deployment and Logging
    • Implementing Security Intelligence
  • File Control and Advanced Malware Protection
    • Examining Malware and File Policy
    • Examining Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
    • Examining Intrusion Prevention and Snort Rules
    • Examining Variables and Variable Sets
    • Examining Intrusion Policies
  • Site-to-Site VPN
    • Examining IPsec
    • Site-to-Site VPN Configuration
    • Site-to-Site VPN Troubleshooting
    • Implementing Site-to-Site VPN
  • Remote-Access VPN
    • Examining Remote-Access VPN
    • Examining Public-Key Cryptography and Certificates
    • Examining Certificate Enrollment
    • Remote-Access VPN Configuration
    • Implementing Remote-Access VPN
  • SSL Decryption
    • Examining SSL Decryption
    • Configuring SSL Policies
    • SSL Decryption Best Practices and Monitoring
  • Detailed Analysis Techniques
    • Examining Event Analysis
    • Examining Event Types
    • Examining Contextual Data
    • Examining Analysis Tools
    • Threat Analysis
  • System Administration
    • Managing Updates
    • Examining User Account Management Features
    • Configuring User Accounts
    • System Administration
  • Cisco Firepower Troubleshooting
    • Examining Common Misconfigurations
    • Examining Troubleshooting Commands
    • Firepower Troubleshooting

 

Labs:
  • Initial Device Setup
  • Device Management
  • Configuring High Availability
  • Migrating from Cisco ASA to Cisco Firepower Threat Defense
  • Implementing QoS
  • Implementing NAT
  • Configuring Network Discovery
  • Implementing an Access Control Policy
  • Implementing Security Intelligence
  • Implementing Site-to-Site VPN
  • Implementing Remote Access VPN
  • Threat Analysis
  • System Administration
  • Firepower Troubleshooting

Live Instructor Training

Alabama
Birmingham South
Huntsville
Mobile
Montgomery

Arizona
Mesa
Phoenix
Scottsdale
Tucson

Arkansas
Bentonville
Little Rock west

California
El Segundo
Irvine
Los Angeles
Los Angeles West
Orange
Riverside
Sacramento
San Diego
San Diego - Mission Valley
San Francisco
Woodland Hills

Colorado
Boulder
Centennial
Colorado Springs
Denver
Fort Collins
Grand Junction
Lakewood
Loveland

Connecticut
Cheshire
Danbury
Rocky Hill
Shelton
Stamford

Delaware
Wilmington DE

Florida
Boca Raton
Fort Myers
Fort Walton Beach
Ft Lauderdale
Jacksonville
Kissimmee
Lakeland
Melbourne
Miami Doral
Miramar Beach
Naples
Orange Park
Orlando Northeast
Pensacola
Plantation
Sarasota
Tallahassee
Tampa

Georgia
Alpharetta
Atlanta Buckhead
Augusta
Duluth
Kennesaw
Macon
Savannah

Idaho
Boise
Meridian

Illinois
Chicago
Gurnee
Joliet
Naperville
Oakbrook Terrace
Peoria
Schaumburg

Indiana
Carmel
Evansville
Fort Wayne
Indianapolis
Indianapolis downtown
South Bend

Iowa
Des Moines
Quad Cities

Kansas
Lenexa
Wichita

Kentucky
Erlanger
Lexington
Louisville

Louisiana
Baton Rouge
New Orleans

Maine
Portland

Maryland
Annapolis
Bethesda
Columbia MD
Frederick
Germantown
Greenbelt
Owings Mills
Rockville
Towson

Massachusetts
Boston
Danvers
Woburn
Worcester

Michigan
Ann Arbor
Grand Rapids
Livonia
Troy

Minnesota
Bloomington
Maple Grove
Minneapolis
Woodbury

Mississippi
Jackson

Missouri
Lees Summit
Springfield
St Louis

Montana
Great Falls

Nebraska
Omaha

Nevada
Henderson
Las Vegas
Reno

New Hampshire
Bedford
Concord
Portsmouth

New Jersey
Bridgewater
Mahwah
Morristown
Mt Laurel
Paramus
Princeton
Red Bank

New Mexico
Albuquerque

New York
Albany
Bohemia
Buffalo
Mt Kisco
New York City - Grand Central Station
Rochester
Syracuse
Uniondale

North Carolina
Chapel Hill
Charlotte
Charlotte North
Fayetteville
Greensboro
Raleigh
Wilmington

North Dakota
Grand Forks

Ohio
Beachwood
Cincinnati
Cleveland
Columbus
Columbus Downtown
Dayton
Dublin
Independence OH
Toledo

Oklahoma
Oklahoma City
Tulsa

Oregon
Portland
Salem

Pennsylvania
Allentown
Erie
Huntingdon Valley
Lancaster
Malvern
Philadelphia
Pittsburgh downtown
State College
Wexford
York

Rhode Island
Warwick

South Carolina
Cayce
Greenville

South Dakota
Sioux Falls

Tennessee
Knoxville
Memphis
Nashville

Texas
Addison
Amarillo
Austin
Bryan
Dallas
El Paso
Fort Worth
Grapevine
Houston
Irving
Katy
Keller
Plano Frisco
San Antonio
San Antonio downtown
Sugar Land
The Woodlands
Waco

Utah
Provo
Salt Lake City

Vermont
Shelburne

Virginia
Alexandria
Arlington VA
Charlottesville
Fairfax
Fredericksburg
Glen Allen
Lynchburg
Manassas
McLean
Norfolk
Richmond
Roanoke

Washington
Bellevue
Olympia
Puyallup
Seattle
Tacoma

Washington DC
Washington DC

West Virginia
Martinsburg

Wisconsin
Brookfield
Green Bay
Madison

Wyoming
Casper
Cheyenne


Course Registration

Click below to register for the SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0 On-Demand class.



Course Title: SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0
Format: On-Demand Course
Licence Period: 365-day User License
Price: $1000












"Great class!! Clear explanations of complex topics.
I could repeat lessons as many times as needed to make sure I mastered them."
- Thomas L(Akron, OH)


Business Computer Skills BBB Profile