Chapter 1: Introducing Intrusion Detection and Prevention
- Understanding Intrusion Prevention and Detection.
- Intrusion Prevention versus Intrusion Detection.
- IPS/IDS Terminology.
- Promiscuous Versus Inline Mode.
- Approaches to Intrusion Prevention.
- Exploring Evasive Techniques.
- Cisco Solutions and Products.
- Sensor Software Solutions.
- Network IPS.
- Host IPS.
- Deploying Sensors.

Chapter 2: Installation of Typical Sensor
- Command-Line Interface.
- Initializing the Sensor.
- Using Cisco IPS Device Manager.
- Using Cisco IPS Manager Express.
- Configuring Basic Sensor Settings.

Chapter 3: Cisco Intrusion Detection and Prevention Signatures.
- Configuring Signatures and Alerts.
- Signature Engines.
- Customizing Signatures.

Chapter 4: Advanced Configurations
- Advanced Tuning.
- Monitoring Alarms.
- Virtual Sensor Configuration.
- Configuring Advanced Features.
- Blocking.

Chapter 5: Additional Intrusion Detection and Prevention Devices.
- ASA Modules.
- IDSM-2.

Chapter 6: Monitoring and Maintenance.
- Maintaining the Sensor.
- Managing Sensors.

642-7627 IPS v7.0 Exam Topics (Blueprint)

Exam Description

Implementing Cisco Intrusion Prevention System v7.0 (IPS v7.0) exam is associated with the Cisco Certified Security Professional certification. This exam tests a candidate's knowledge and skills needed to deploy Cisco IPS-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS. Candidates can prepare for this exam by taking the Implementing Cisco Intrusion Prevention System course.

Exam Topics

The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Pre-Production Design

  • Choose Cisco IPS technologies to implement HLD
  • Choose Cisco products to implement HLD
  • Choose Cisco IPS features to implement HLD
  • Integrate Cisco network security solutions with other security technologies
  • Create and test initial Cisco IPS configurations for new devices/services

Complex Support Operations

  • Optimize Cisco IPS security infrastructure device performance
  • Create complex network security rules, to meet the security policy requirements
  • Configure and verify the IPS features to identify threats and dynamically block them from entering the network
  • Maintain, update and tune IPS signatures
  • Use CSM and MARS for IPS management, deployment, and advanced event correlation.
  • Optimize security functions, rules, and configuration

Advanced Troubleshooting

  • Advanced Cisco IPS security software configuraiton fault finding and repairing
  • Advanced Cisco IPS sensor and module hardware fault finding and repairing


venugopal said... @ October 14, 2011 at 10:10 PM

Nice information, many thanks to the author. It is incomprehensible to me now, but in general, the usefulness and significance is overwhelming. Thanks again and good luck! Intrusion Protection

Cisco Training said... @ November 9, 2015 at 4:35 AM

Great Blog,
Thanks to Publisher, It's very informative blog about implementing Cisco network security
.I also want to recommend one another Expert in this field at New York..
Implementing Cisco Network Security

Post a Comment