Description:

SECURITY

EXAM 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF)

About the Author

Introduction

History of SourceFire/Firepower

Managing Firepower

What Is This Book Really About?

What Does This Book Cover?

Securing Networks with Cisco Firepower (SNCF 300-710) Exam Objectives

Exam Description

What Objectives Will the Second Book in This Series Cover?

What chapters are covered in Part II in this CCNP Security SNCF series?

Chapter 1: Firepower Management Center (FMC)

Deploying a Cisco Firepower Network

What Is a Firepower Management Center (FMC)?

What If Your FMC Goes Down?

Virtual FMCs

FMC Virtual

FMC Virtual 300

Hardware FMCs

Starting the Firepower Management Center

Summary

Chapter 2: Cisco Firepower Management Center (FMC) Configuration

Initial FMC Login

Navigation Overview

Firepower System Configuration

Information

Access List

Access Control Preferences

Audit Log Certificate and Audit Log

Change Reconciliation

Console Configuration

DNS Cache

Dashboard

Database

Email Notification

External Database Access

HTTPS Certificate

Intrusion Policy Preferences

Language

Login Banner

Management Interfaces

Network Analysis Policy Preferences

Process

REST API Preferences

Remote Storage Device

SNMP

Shell Timeout

Time

Time Synchronization

UCAPL/CC Compliance

User Configuration

VMware Tools

Vulnerability Mapping

Web Analytics

Summary

Chapter 3: Firepower Management Center (FMC) Actions

Firepower Management Center (FMC) Actions

Firepower Management Center Alert Responses

Alert Responses

FMC Detailed Alerts

Summary

Chapter 4: Licensing & Health Policy

Licensing

Health Policy

Health Monitor

Health Policy

Health Events

Blacklist

Health Monitor Alerts

Summary

Chapter 5: Chassis Manager

Hardware Overview

Resetting our 4100s

Resetting the Password on 4100/9300

Setting the 4100/9300 Devices to Factory Default

Initial Configuration for 4100/9300

FXOS Overview

UCS Context

FXOS Context

Security Module Context

Local Management Context

Adapter Context

CIMC Context

Image Management

Adding FXOS

Upgrading FXOS

Adding a ASA Image

Adding an FTD Image

Adding Radware

Logging into the Chassis Manager

Platform Settings

Interfaces

Logical Devices

Adaptive Security Appliance (ASA)

FTD Cluster

FTD Standard

Cluster Traffic Flow

Centralized Features

Dynamic Routing in a Cluster

Site to Site VPNs in a Cluster

NAT in a Cluster

SIP in a Cluster

Syslog in a Cluster

SNMP in a Cluster

FTP in a Cluster

Trustsec in a Cluster

Unsupported Features

Summary

Chapter 6: Firepower Devices

Firepower Threat Defense (FTD) on the 1000/1100/2100/4100/9300 Devices

Configuration for 1010/1100/2100

Firepower Devices used in this book

7000/8000 Appliances

Virtual FTD on vCenter

CLI of the FTD Devices

Basic FTD CLI Commands

CLI Troubleshooting commands

Download the Advanced Troubleshooting File from the GUI

Download the Advanced Troubleshooting File from the CLI

Adding the 1010s and 1150s to the 2500 FMC

Adding the Firepower Appliance, 4140s and vFTDs into the Virtual FMC

Configuring the IPs on the 172.16.10.0 Devices

Configuring a DHCP Server

Configuring Routing

Verifying the Configuration from the CLI

Configuring the IPs on the 10.11.10.0 Managed Devices

Configuring Routing

Device Tab

Summary

Chapter 7: High Availability

High Availability

Licensing

Determining the Active Unit

High Availability on the Hardware FMC

High Availability on the Firepower Devices

Monitoring and Troubleshooting

Monitoring Interfaces

Standby Interface IP Addresses

Active/Standby IP Addresses and MAC Addresses

Verifying with the CLI

Upgrading a High Availability Pair

Upgrading a Firepower Device HA Pair

Summary

Chapter 8: Objects

Objects

Network

Port

Interface

Tunnel Zone

Application Filters

VLAN Tag

Security Group Tag

URL

Geolocation

Variable Set

Time Range

Security Intelligence Overview

Network Security Intelligence (SI)

DNS Security Intelligence

URL Security Intelligence

Security Intelligence Under the Hood

Sinkhole

Sinkhole Reloaded

File List

Cipher Suite List

Distinguished Name

PKI

FTD Only Settings

SLA Monitor

Prefix Lists

Route Map

Access Lists

AS Path

Community List

Policy List

VPN

Address Pools

FlexConfig

Radius Server Group

Intrusion Rules

Summary

Chapter 9: Access Control Policy

Overview

Policy Creation

Policy Editing

General Settings

Security Intelligence

HTTP Responses

Advanced

The Rules Tab

Rules!

ACP Rules Example

Summary

Chapter 10: Malware and File Policy

Advanced Malware Protection (AMP) Basics

File Analysis

Retrospective Events

File Dispositions

File Disposition Caching

Cloud Communications

Malware & File Policy

Advanced Settings

File Rules

File Policy Actions and Licensing

File Blocking Behavior

File Types and Categories

Sample Policy

Cisco AMP for Endpoints in Firepower Management Center

Integrating Firepower with AMP for Endpoints

AMP for Endpoints and AMP Private Cloud

Putting It All Together

Verifying a File Policy

Summary

Chapter 11: Firepower Network Discovery

Firepower Technologies

Network Discovery Policy

Firepower Discovery Information

User Information

Host Attributes

Summary

Chapter 12: Intrusion Prevention System (IPS) Policy

Policy Basics

What Rules Are Enabled by Default?

Connectivity over Security Base Policy

Balanced Security and Connectivity Base Policy

Security over Connectivity Base Policy

Maximum Detection Base Policy

Final Thoughts on Base Policies

Rule States

Layers

Private and Shared Layers

A Shared Layer Alternative

The Intrusion Policy Interface

Intrusion Policy Editing

Rule Management

Creating, Importing, Deleting, & Editing a Snort Rule

Firepower Recommendations

Advanced Settings

Policy Layers

Committing Changes

Configuring and Verifying an Intrusion Policy

Verifying Your IPS Policy

Summary

Chapter 13: DNS Policy

Domain Name System (DNS)

The Kill Chain

A Typical Malware Infection

IP Blacklists

The Proxy Problem

The Proxy Solution

DNS Policy Configuration

Summary

Chapter 14: Prefilter

Overview

Prefilter Uses

Policy Creation

Prefilter Rules

Summary

Chapter 15: Network Address Translation (NAT)

What Is Network Address Translation (NAT)?

Types of Network Address Translation

NAT Names

Firepower NAT

Firepower NAT Examples

Firepower Threat Defense (FTD) NAT

Auto NAT or Manual NAT?

Testing and Troubleshooting NAT

NAT Verification

Summary

Chapter 16: Identity Policy

Identity with Firepower

Identity Sources

Non-Authoritative (Traffic-Based Detection)

Authoritative Sources

Realms

Add Realm

Add Directory

User Download

Identity Policy

Implement your Identity Policy

Summary

Chapter 17: User Management

User Preferences

Account Management

Internal vs. External User Authentication

User Privileges

Predefined User Roles

Creating New User Accounts

Creating a Custom User Role

Managing User Role Escalation

Configuring External Authentication

Creating Authentication Objects

Summary

Chapter 18: Advanced Network Analysis

Event Analysis Principles

False Positives

False Negatives

Possible Outcomes

The Goal of Analysis

Intrusion Events

Workflows

The Time Window

Navigating the Analysis Interface

Security Intelligence Events

Security Intelligence Workflows

Security Intelligence Tuning

File and Malware Events

Summary

ebook img

CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) PDF

618 Pages·2020·104.6926 MB·english
by  LammleTodd
Save to my drive
Quick download
Download

Download CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) PDF Free - Full Version

by Lammle, Todd| 2020| 618 pages| 104.6926| english

Download CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) by Lammle, Todd in PDF format completely FREE. No registration required, no payment needed. Get instant access to this valuable resource on PDFdrive.to!

Free Download PDF

About CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF)

<p>SECURITY</p><p>EXAM 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF)</p><p>About the Author</p><p>Introduction</p><p>History of SourceFire/Firepower</p><p>Managing Firepower</p><p>What Is This Book Really About?</p><p>What Does This Book Cover?</p><p>Securing Networks with Cisco Firepower (SNCF 300-710) Exam Objectives</p><p>Exam Description</p><p>What Objectives Will the Second Book in This Series Cover?</p><p>What chapters are covered in Part II in this CCNP Security SNCF series?</p><p>Chapter 1: Firepower Management Center (FMC)</p><p>Deploying a Cisco Firepower Network</p><p>What Is a Firepower Management Center (FMC)?</p><p>What If Your FMC Goes Down?</p><p>Virtual FMCs</p><p>FMC Virtual</p><p>FMC Virtual 300</p><p>Hardware FMCs</p><p>Starting the Firepower Management Center</p><p>Summary</p><p>Chapter 2: Cisco Firepower Management Center (FMC) Configuration</p><p>Initial FMC Login</p><p>Navigation Overview</p><p>Firepower System Configuration</p><p>Information</p><p>Access List</p><p>Access Control Preferences</p><p>Audit Log Certificate and Audit Log</p><p>Change Reconciliation</p><p>Console Configuration</p><p>DNS Cache</p><p>Dashboard</p><p>Database</p><p>Email Notification</p><p>External Database Access</p><p>HTTPS Certificate</p><p>Intrusion Policy Preferences</p><p>Language</p><p>Login Banner</p><p>Management Interfaces</p><p>Network Analysis Policy Preferences</p><p>Process</p><p>REST API Preferences</p><p>Remote Storage Device</p><p>SNMP</p><p>Shell Timeout</p><p>Time</p><p>Time Synchronization</p><p>UCAPL/CC Compliance</p><p>User Configuration</p><p>VMware Tools</p><p>Vulnerability Mapping</p><p>Web Analytics</p><p>Summary</p><p>Chapter 3: Firepower Management Center (FMC) Actions</p><p>Firepower Management Center (FMC) Actions</p><p>Firepower Management Center Alert Responses</p><p>Alert Responses</p><p>FMC Detailed Alerts</p><p>Summary</p><p>Chapter 4: Licensing &amp; Health Policy</p><p>Licensing</p><p>Health Policy</p><p>Health Monitor</p><p>Health Policy</p><p>Health Events</p><p>Blacklist</p><p>Health Monitor Alerts</p><p>Summary</p><p>Chapter 5: Chassis Manager</p><p>Hardware Overview</p><p>Resetting our 4100s</p><p>Resetting the Password on 4100/9300</p><p>Setting the 4100/9300 Devices to Factory Default</p><p>Initial Configuration for 4100/9300</p><p>FXOS Overview</p><p>UCS Context</p><p>FXOS Context</p><p>Security Module Context</p><p>Local Management Context</p><p>Adapter Context</p><p>CIMC Context</p><p>Image Management</p><p>Adding FXOS</p><p>Upgrading FXOS</p><p>Adding a ASA Image</p><p>Adding an FTD Image</p><p>Adding Radware</p><p>Logging into the Chassis Manager</p><p>Platform Settings</p><p>Interfaces</p><p>Logical Devices</p><p>Adaptive Security Appliance (ASA)</p><p>FTD Cluster</p><p>FTD Standard</p><p>Cluster Traffic Flow</p><p>Centralized Features</p><p>Dynamic Routing in a Cluster</p><p>Site to Site VPNs in a Cluster</p><p>NAT in a Cluster</p><p>SIP in a Cluster</p><p>Syslog in a Cluster</p><p>SNMP in a Cluster</p><p>FTP in a Cluster</p><p>Trustsec in a Cluster</p><p>Unsupported Features</p><p>Summary</p><p>Chapter 6: Firepower Devices</p><p>Firepower Threat Defense (FTD) on the 1000/1100/2100/4100/9300 Devices</p><p>Configuration for 1010/1100/2100</p><p>Firepower Devices used in this book</p><p>7000/8000 Appliances</p><p>Virtual FTD on vCenter</p><p>CLI of the FTD Devices</p><p>Basic FTD CLI Commands</p><p>CLI Troubleshooting commands</p><p>Download the Advanced Troubleshooting File from the GUI</p><p>Download the Advanced Troubleshooting File from the CLI</p><p>Adding the 1010s and 1150s to the 2500 FMC</p><p>Adding the Firepower Appliance, 4140s and vFTDs into the Virtual FMC</p><p>Configuring the IPs on the 172.16.10.0 Devices</p><p>Configuring a DHCP Server</p><p>Configuring Routing</p><p>Verifying the Configuration from the CLI</p><p>Configuring the IPs on the 10.11.10.0 Managed Devices</p><p>Configuring Routing</p><p>Device Tab</p><p>Summary</p><p>Chapter 7: High Availability</p><p>High Availability</p><p>Licensing</p><p>Determining the Active Unit</p><p>High Availability on the Hardware FMC</p><p>High Availability on the Firepower Devices</p><p>Monitoring and Troubleshooting</p><p>Monitoring Interfaces</p><p>Standby Interface IP Addresses</p><p>Active/Standby IP Addresses and MAC Addresses</p><p>Verifying with the CLI</p><p>Upgrading a High Availability Pair</p><p>Upgrading a Firepower Device HA Pair</p><p>Summary</p><p>Chapter 8: Objects</p><p>Objects</p><p>Network</p><p>Port</p><p>Interface</p><p>Tunnel Zone</p><p>Application Filters</p><p>VLAN Tag</p><p>Security Group Tag</p><p>URL</p><p>Geolocation</p><p>Variable Set</p><p>Time Range</p><p>Security Intelligence Overview</p><p>Network Security Intelligence (SI)</p><p>DNS Security Intelligence</p><p>URL Security Intelligence</p><p>Security Intelligence Under the Hood</p><p>Sinkhole</p><p>Sinkhole Reloaded</p><p>File List</p><p>Cipher Suite List</p><p>Distinguished Name</p><p>PKI</p><p>FTD Only Settings</p><p>SLA Monitor</p><p>Prefix Lists</p><p>Route Map</p><p>Access Lists</p><p>AS Path</p><p>Community List</p><p>Policy List</p><p>VPN</p><p>Address Pools</p><p>FlexConfig</p><p>Radius Server Group</p><p>Intrusion Rules</p><p>Summary</p><p>Chapter 9: Access Control Policy</p><p>Overview</p><p>Policy Creation</p><p>Policy Editing</p><p>General Settings</p><p>Security Intelligence</p><p>HTTP Responses</p><p>Advanced</p><p>The Rules Tab</p><p>Rules!</p><p>ACP Rules Example</p><p>Summary</p><p>Chapter 10: Malware and File Policy</p><p>Advanced Malware Protection (AMP) Basics</p><p>File Analysis</p><p>Retrospective Events</p><p>File Dispositions</p><p>File Disposition Caching</p><p>Cloud Communications</p><p>Malware &amp; File Policy</p><p>Advanced Settings</p><p>File Rules</p><p>File Policy Actions and Licensing</p><p>File Blocking Behavior</p><p>File Types and Categories</p><p>Sample Policy</p><p>Cisco AMP for Endpoints in Firepower Management Center</p><p>Integrating Firepower with AMP for Endpoints</p><p>AMP for Endpoints and AMP Private Cloud</p><p>Putting It All Together</p><p>Verifying a File Policy</p><p>Summary</p><p>Chapter 11: Firepower Network Discovery</p><p>Firepower Technologies</p><p>Network Discovery Policy</p><p>Firepower Discovery Information</p><p>User Information</p><p>Host Attributes</p><p>Summary</p><p>Chapter 12: Intrusion Prevention System (IPS) Policy</p><p>Policy Basics</p><p>What Rules Are Enabled by Default?</p><p>Connectivity over Security Base Policy</p><p>Balanced Security and Connectivity Base Policy</p><p>Security over Connectivity Base Policy</p><p>Maximum Detection Base Policy</p><p>Final Thoughts on Base Policies</p><p>Rule States</p><p>Layers</p><p>Private and Shared Layers</p><p>A Shared Layer Alternative</p><p>The Intrusion Policy Interface</p><p>Intrusion Policy Editing</p><p>Rule Management</p><p>Creating, Importing, Deleting, &amp; Editing a Snort Rule</p><p>Firepower Recommendations</p><p>Advanced Settings</p><p>Policy Layers</p><p>Committing Changes</p><p>Configuring and Verifying an Intrusion Policy</p><p>Verifying Your IPS Policy</p><p>Summary</p><p>Chapter 13: DNS Policy</p><p>Domain Name System (DNS)</p><p>The Kill Chain</p><p>A Typical Malware Infection</p><p>IP Blacklists</p><p>The Proxy Problem</p><p>The Proxy Solution</p><p>DNS Policy Configuration</p><p>Summary</p><p>Chapter 14: Prefilter</p><p>Overview</p><p>Prefilter Uses</p><p>Policy Creation</p><p>Prefilter Rules</p><p>Summary</p><p>Chapter 15: Network Address Translation (NAT)</p><p>What Is Network Address Translation (NAT)?</p><p>Types of Network Address Translation</p><p>NAT Names</p><p>Firepower NAT</p><p>Firepower NAT Examples</p><p>Firepower Threat Defense (FTD) NAT</p><p>Auto NAT or Manual NAT?</p><p>Testing and Troubleshooting NAT</p><p>NAT Verification</p><p>Summary</p><p>Chapter 16: Identity Policy</p><p>Identity with Firepower</p><p>Identity Sources</p><p>Non-Authoritative (Traffic-Based Detection)</p><p>Authoritative Sources</p><p>Realms</p><p>Add Realm</p><p>Add Directory</p><p>User Download</p><p>Identity Policy</p><p>Implement your Identity Policy</p><p>Summary</p><p>Chapter 17: User Management</p><p>User Preferences</p><p>Account Management</p><p>Internal vs. External User Authentication</p><p>User Privileges</p><p>Predefined User Roles</p><p>Creating New User Accounts</p><p>Creating a Custom User Role</p><p>Managing User Role Escalation</p><p>Configuring External Authentication</p><p>Creating Authentication Objects</p><p>Summary</p><p>Chapter 18: Advanced Network Analysis</p><p>Event Analysis Principles</p><p>False Positives</p><p>False Negatives</p><p>Possible Outcomes</p><p>The Goal of Analysis</p><p>Intrusion Events</p><p>Workflows</p><p>The Time Window</p><p>Navigating the Analysis Interface</p><p>Security Intelligence Events</p><p>Security Intelligence Workflows</p><p>Security Intelligence Tuning</p><p>File and Malware Events</p><p>Summary</p>

Detailed Information

Author:Lammle, Todd
Publication Year:2020
Pages:618
Language:english
File Size:104.6926
Format:PDF
Price:FREE
Download Free PDF

Safe & Secure Download - No registration required

Why Choose PDFdrive for Your Free CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) Download?

  • 100% Free: No hidden fees or subscriptions required for one book every day.
  • No Registration: Immediate access is available without creating accounts for one book every day.
  • Safe and Secure: Clean downloads without malware or viruses
  • Multiple Formats: PDF, MOBI, Mpub,... optimized for all devices
  • Educational Resource: Supporting knowledge sharing and learning

Free Books Similar to CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF)

Frequently Asked Questions

Is it really free to download CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) PDF?

Yes, on https://PDFdrive.to you can download CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) by Lammle, Todd completely free. We don't require any payment, subscription, or registration to access this PDF file. For 3 books every day.

How can I read CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) on my mobile device?

After downloading CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) PDF, you can open it with any PDF reader app on your phone or tablet. We recommend using Adobe Acrobat Reader, Apple Books, or Google Play Books for the best reading experience.

Is this the full version of CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF)?

Yes, this is the complete PDF version of CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) by Lammle, Todd. You will be able to read the entire content as in the printed version without missing any pages.

Is it legal to download CCIE/CCNP Security SNCF 300-710: SECURING NETWORKS WITH CISCO FIREPOWER (SNCF) PDF for free?

https://PDFdrive.to provides links to free educational resources available online. We do not store any files on our servers. Please be aware of copyright laws in your country before downloading.

The materials shared are intended for research, educational, and personal use in accordance with fair use principles.

We use cookies

We use cookies to ensure you get the best browsing experience on our website. By clicking "Accept Cookies", you agree that we can store cookies on your device in accordance with our Terms and Privacy.