Book your Juniper Implementing Intrusion Detection and Prevention Training Course
This three day course is being run one times on Tuesday 28th of August 2012 in London,
Book this course with us today from as little as £1,800.00 + VAT and with our price guarantee you can be confident of getting great value. Our team of experienced independent booking administrators will make the joining process painless and by providing feedback on your experiences you’ll also influence the Coursebookers independent course ratings.
Expert Help
If you would like
advice, or to book, call
one of our experts on
Open: 9am - 5:30pm
Monday- Friday
Locations/dates for this course
| Date | Provider | Location | Rating | Price | ||
|---|---|---|---|---|---|---|
| Tuesday 28 August 2012 | Computerlinks | London |  | £1,800.00+VAT |
|
|
Book your course now with Coursebookers!
Making an enquiry to Coursebookers couldn't be easier, just fill out the form to the left or call 01920 460232 and our team will be in touch within 48 hours.
Remember:
- Not only are we great value, we can also boast no booking fees
- Human administrators make booking & coordination simple and painless
- Coursebookers is vendor neutral we can offer unbiased and independent advice
- If you have complex booking requirements we're happy to help! Call our team on 01920 460232 to discuss your needs
- We ensure all our courses meet our high standards, meaning you'll only ever see "the best of the best" on Coursebookers!
Summary:
This three-day course discusses the configuration of Juniper Intrusion Detection and Prevention (IDP) sensors in a typical network environment. Key topics include sensor configuration, creating and fine-tuning security policies, managing attack objects, creating custom signatures, and troubleshooting.
PreRequisites:
This course assumes that students have basic networking knowledge and experience in the following areas:
- Understanding of TCP/IP operation
- Understanding of network security concepts
- Experience in network security administration
- Experience in UNIX system administration
Audience:
This course is intended for network engineers, support personnel, reseller support, and others responsible for implementing Juniper Networks IDP products.
Objectives:
After successfully completing this course, you should be able to:
- Deploy an IDP sensor on the network
- Monitor and understand IDP logs
- Configure, install, and fine-tune IDP policies
- Configure the Profiler
- Troubleshoot sensor problems
- Create custom signature attack objects
- Configure sensors for high availability using third-party devices
Outline:
Chapter 1: Course Introduction
Chapter 2: Intrusion Detection and Prevention Concepts
- Network Attack Phases and Detection
- Juniper Networks IDP Product Offerings
- Juniper Networks IDP Three-Tier Architecture
- Juniper IDP Deployment Modes
Chapter 3: Initial Configuration of IDP Sensor
- Overview of IDP Sensor Deployment Process
- Initial Configuration Steps—IDP Standalone Device
- Initial Configuration Steps—ISG1000/ISG2000
Chapter 4: IDP Policy Basics
- Attack Object Terminology
- IDP Rule Components
- IDP Rule-Matching Algorithm
- Terminal rules
Chapter 5: Fine-Tuning Policies
- Tuning Process Overview
- Step 1: Identifying Machines and Protocols to Monitor
- Step 2: Identifying and Eliminating False Positives
- Step 3: Identifying and Configuring Responses to Real Attacks
- Step 4: Configuring Other Rulebases to Detect Attacks
Chapter 6: Configuring Additional Rulebases
- Overview of IDP-Related Rulebases
- Exempt Rulebases
- Traffic Anomalies Rulebase
- Backdoor Rulebase
- SYN Protector Rulebase
- Network Honeypot Rulebase
- Rulebase Processing Order
Chapter 7: Profiler
- Profiler Overview
- How to Operate Profiler
- Using Profiler for Network Discovery
- Using Profiler to Discover Running Applications
- Using Profiler to Detect New Devices and Ports
- Using Profiler to Detect Policy Violations
Chapter 8: Sensor Operation and Sensor Commands
- Main Components of the Sensor
- Description of Sensor Processes
- Managing Policies with the scio Utility
- Managing Sensor Configuration with the scio Utility
- Monitoring with the sctop Utility
Chapter 9: Troubleshooting
- Review of Sensor Communication
- Troubleshooting Tools
- Troubleshooting Scenarios
- Reimaging the Sensor
Chapter 10: Managing Attack Objects
- Examining Predefined Attack Objects
- Examining Predefined Attack Object Groups
- Creating New Custom Attack Object Groups
- Updating the Attack Object Database
- Searching the Attack Object Database
Chapter 11: Creating Custom Signatures
- IDP Packet Inspection
- Obtaining Attack Information
- Understanding Regular Expressions
- Creating a Signature-Based Attack Object
- Creating a Compound Attack Object
Chapter 12: Configuring Sensors for External High Availability
- External HA Operation
- Configuring Sensors for External HA
Description:
This three-day course discusses the configuration of Juniper Intrusion Detection and Prevention (IDP) sensors in a typical network environment. Key topics include sensor configuration, creating and fine-tuning security policies, managing attack objects, creating custom signatures, and troubleshooting.
Computerlinks
COMPUTERLINKS UK Ltd offers a wide range of IT security and Internet technology solutions. Accredited Training Provider status has been awarded by the Institute of IT Training in recognition of the quality and breadth of COMPUTERLINKS' training programmes. Courses are run by professional trainers who are vendor certified instructors and experienced on-site consultants.