Cisco Secure Intrusion Detection System (CSIDS) v4.0

Audience
Account Managers, Channel Partner/Reseller and Systems Engineers.
   

Duration

 4 Days
   
Course Abstract
CSIDS 4.0 is a four-day, leader-led, lab-intensive course. This task-oriented course teaches the knowledge and skills needed to design, install, and configure a Cisco Intrusion Protection solution for small, medium, and enterprise networks. The course covers Cisco IDS detection platforms including the 4200 series Sensors, and the Catalyst 6000 series Intrusion Detection Module (IDSM). The IDS Device Manager and IDS Management center are used to configure and manage Cisco IDS Sensor platforms. The IDS Event Viewer and IDS Security Monitor Center are used to view and respond to IDS alarms.
   
Objectives

Upon conclusion, each participant will have acquired these skills:

  • Describe the basic intrusion detection terminology.
  • Explain the different intrusion detection technologies and evasive techniques.
  • Design a Cisco IDS protection solution for small, medium, and enterprise customers.
  • Identify the Cisco IDS Sensor platforms and describe their features.
  • Install and configure a Cisco IDS Sensor.
  • Tune Cisco IDS signatures to work optimally in unique network environments.
  • Create and implement customized intrusion detection signatures.
  • Create alarm exceptions to reduce alarms and possible false positives.
  • Configure a Cisco IDS Sensor to perform device management of supported blocking devices.
  • Describe the Cisco IDS signatures and determine the immediate threat posed to the network.
  • Perform maintenance operations such as signature updates and software upgrades.
  • Describe the Cisco IDS architecture including supporting services and configuration files.
  • Manage a large scale deployment of Cisco IDS Sensors with Cisco IDS Management and Monitoring software.
   
Class Format Lecture and Lab
   
Prerequisites

Students who attend this advanced course must have experience in configuring Cisco IOS software and have met the following prerequisites:

  • Certification as a CCNA or the equivalent knowledge (optional)
  • Basic knowledge of the Windows operating system
  • Familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications)