ICSFW: Introduction to Cisco Secure Firewall

Master the deployment and configuration of Cisco Secure Firewall and enhance your network security skills with our comprehensive three-day, hands-on course tailored for network security professionals.

Course Thumbnail

Essential Skills Gained

Checkmark

Deploy and configure Cisco Secure Firewall solutions effectively.

Checkmark

Implement Next-Generation Firewall and Intrusion Prevention System features.

Checkmark

Analyze network security events and perform basic troubleshooting.

Checkmark

Understand system administration for Cisco Secure Firewall management.

Format

  • Instructor-led
  • 3 days with lectures and hands-on labs.

Audience

  • Network Security Administrators
  • Network Security Engineers
  • Network Security Managers
  • Security Sales Engineers

Description

In this 3-day course students will learn to deploy, configure, and manage Cisco Secure Firewall/Firepower Threat Defense. This hands-on course will help develop the skills to use and configure Cisco FTD, starting with the initial device setup and configuration. Students will learn to implement Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS) features. Students will also learn to analyze events, system administration, and basic troubleshooting.

Calendar icon

Upcoming Course Dates

No upcoming dates. Please check back later.

Course Outline

Download PDF

Overview of Cisco Secure Firewall (CSF)

  1. Basic firewall and IPS terminologies

  2. Understand CSF features

  3. Examine different platforms

  4. Examine licensing

  5. General implementation use cases

Device Configuration

  1. Device Registration

  2. Differentiate between FXOS and FTD image

  3. Differentiate between management options FDM and FMC

  4. Initial device activation and configuration

  5. Examining different policies

  6. Define objects

  7. Explore system configuration

  8. Configure Health Monitoring

  9. Discuss device/platform management options

  10. Overview of High Availability

Cisco Secure Firewall Traffic Control

  1. Describe packet processing

  2. Explain traffic bypassing

  3. Discuss pre-filter policy

Network Address Translation (NAT) Configurations

  1. Overview of NAT

  2. Different NAT rule types

  3. Implementing and configuring NAT

Network Discovery

  1. Explain Network Discovery

  2. Configure Network Discovery

Access Control Policies

  1. Overview of Access Control Policies (ACP)

  2. Describe Access Control Policy rules and default action

  3. Define further inspection feature in a rule

  4. Overview of logging options for a rule

  5. Advanced Settings in an ACP

  6. Deploying the change in an ACP

Security Intelligence

  1. Overview of Security Intelligence (SI)

  2. Configure Security Intelligence objects

  3. Deploy SI

File Control and Advanced Malware Protection

  1. Overview of malware and file policy

  2. Discuss Advanced Malware Protection

Next-Generation Intrusion Prevention Systems

  1. Overview of Intrusion Prevention and Snort rules

  2. Explain variables and variable sets

  3. Configure intrusion policies

  4. Describe firepower recommendations

Analyzing different Events

  1. Discuss different types of events

  2. Explore analysis tools

  3. Analyze threats

General System Administration

  1. Manage device updates

  2. Explore user account management features

  3. Configuring different user accounts

Basic Troubleshooting

  1. Identify common misconfigurations

  2. Basic troubleshooting commands

  3. Using packet trace

Lab Exercises

  1. Initial Device Setup

  2. Basic Configuration and Verification

  3. Configure Security Intelligence

  4. Configure Intrusion Policy

  5. Configure/ Modify the Access Control Policy

  6. Configure NAT Policies

  7. Configure/ Modify Network Discovery Policy

  8. Deploy Changes

  9. Test/ Analyze the NGFW Traffic

  10. System Administration Overview

Your Team has Unique Training Needs.

Your team deserves training as unique as they are.

Let us tailor the course to your needs at no extra cost.