|
Description Back Cover Contents Features Author Description
- Understand how Cisco IDS can be used to protect, monitor, and enforce physical security policies
- Review techniques applicable to both network- and host-based platforms
- Review the security wheel concepts and apply security to AVVID using the SAFE Blueprint
- Install and configure the Cisco IDS to monitor your network for malicious activity
- Understand Cisco Threat Response (CTR) benefits and how it operates
- Apply alarm signatures and gain the proficiency to create your own custom signatures
- Deploy Cisco IDS effectively in your network using sensor and management platforms
- Get inside the Cisco Security Agent (CSA) architecture
In addition to firewalls and other security appliances intended to limit outsider access to a network, intrusion detection and targeted countermeasures are a critical component of a complete network security plan. The Cisco Intrusion Detection Sensors and Management options work as a united system to provide detection, notification, and aggressive lockdown to malicious network breaches. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, offers in-depth configuration and deployment information for the reliable and intensive intrusion detection solutions from Cisco Systems. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, is a Cisco authorized, self-paced learning tool that helps you gain mastery over the use of both the host-based and network-based IDS options (as well as the Cisco Threat Response functionality) by presenting a consolidated all-inclusive reference on all of the current Cisco IDS sensor platforms and management platforms. Chapter overviews bring you quickly up to speed and help you get to work right away. Configuration examples are designed to show you how to make the most of your IDS system, and unique chapter-ending review questions test your knowledge. Whether you are seeking a reference guide to working with the CIDS sensor and management platforms or a study guide for the 642-531 exam, CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, supports your effective use of the Cisco IDS. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, is part of a recommended learning path from Cisco Systems that can include simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining. This volume is in the Certification Self-Study Series offered by Cisco Press. Books in this series provide officially developed training solutions to help networking professionals understand technology implementations and prepare for the Cisco Career Certifications examinations. topBack Cover
- Understand how Cisco IDS can be used to protect, monitor, and enforce physical security policies
- Review techniques applicable to both network- and host-based platforms
- Review the security wheel concepts and apply security to AVVID using the SAFE Blueprint
- Install and configure the Cisco IDS to monitor your network for malicious activity
- Understand Cisco Threat Response (CTR) benefits and how it operates
- Apply alarm signatures and gain the proficiency to create your own custom signatures
- Deploy Cisco IDS effectively in your network using sensor and management platforms
- Get inside the Cisco Security Agent (CSA) architecture
In addition to firewalls and other security appliances intended to limit outsider access to a network, intrusion detection and targeted countermeasures are a critical component of a complete network security plan. The Cisco Intrusion Detection Sensors and Management options work as a united system to provide detection, notification, and aggressive lockdown to malicious network breaches. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, offers in-depth configuration and deployment information for the reliable and intensive intrusion detection solutions from Cisco Systems. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, is a Cisco authorized, self-paced learning tool that helps you gain mastery over the use of both the host-based and network-based IDS options (as well as the Cisco Threat Response functionality) by presenting a consolidated all-inclusive reference on all of the current Cisco IDS sensor platforms and management platforms. Chapter overviews bring you quickly up to speed and help you get to work right away. Configuration examples are designed to show you how to make the most of your IDS system, and unique chapter-ending review questions test your knowledge. Whether you are seeking a reference guide to working with the CIDS sensor and management platforms or a study guide for the 642-531 exam, CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, supports your effective use of the Cisco IDS. CCSP Self-Study: Cisco Secure Intrusion Detection System (CSIDS), Second Edition, is part of a recommended learning path from Cisco Systems that can include simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining. This volume is in the Certification Self-Study Series offered by Cisco Press. Books in this series provide officially developed training solutions to help networking professionals understand technology implementations and prepare for the Cisco Career Certifications examinations. topContents
I. INTRODUCTION TO NETWORK SECURITY. 1. Network Security.
2. Network Security and Cisco.
II. INTRUSION DETECTION AND THE CIDS ENVIRONMENT. 3. Intrusion Detection Overview.
4. Cisco Intrusion Protection Overview.
5. Cisco IDS Architecture.
III. CISCO NETWORK IDS CONFIGURATION. 6. Capturing Network Traffic for IDS.
7. Cisco IDS Network Sensor Installation.
8. Cisco IDS Module Configuration.
9. Cisco IDS Device Manager And Event Viewer.
10. Sensor Configuration.
11. Signature Configuration.
12. Signature Response.
13. Cisco IDS Alarms and Signatures.
IV. CISCO ENDPOINT SECURITY. 14. Host Intrusion Protection.
V. CIDS MAINTENANCE AND TUNING. 15. Cisco IDS Maintenance and Troubleshooting.
VI. CISCO ENTERPRISE IDS MANAGEMENT. 16. Enterprise IDS Management.
17. Enterprise IDS Monitoring and Reporting.
18. Cisco Threat Response.
19. Cisco Secure IDS Upcoming Functionality.
Appendix A. Cisco Secure IDS Tuning Case Studies.
Appendix B. Glossary.
topFeatures
- Text developed from an exclusive access to course from Cisco Systems.
- New Content based on new course and exam.
- Scenarios and case studies.
- Review questions in each chapter.
topAuthor
Earl Carter is a member of the Cisco Systems Security Technologies Assessment Team (STAT) that is part of Consulting Engineering (CE). His duties involve performing security evaluations on numerous Cisco products as well as consulting with other teams within Cisco to help enhance the security of Cisco products. He has examined various products from the Cisco PIX Firewall to the Cisco CallManager. Before 1998, Earl performed IDS research for NetRanger (currently Cisco IDS) and NetSonar (Cisco Secure Scanner). top
|
