GB
/
GBP
/
EN

Securing Networks with Cisco Firepower Next Generation Firewall - SSNGFW

WGAC-CSC-SSNGFW

Cisco

Description

Show Tabs
Introduction

The Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW) v1.0 course shows you how to deploy and use Cisco Firepower® Threat Defense system. This hands-on course gives you knowledge and skills to use and configure Cisco® Firepower Threat Defense technology, beginning with initial device setup and configuration and including routing, high availability, Cisco Adaptive Security Appliance (ASA) to Cisco Firepower Threat Defense migration, traffic control, and Network Address Translation (NAT). You will learn how to implement advanced Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS) features, including network intelligence, file type detection, network-based malware detection, and deep packet inspection. You will also learn how to configure site-to-site VPN, remote-access VPN, and SSL decryption before moving on to detailed analysis, system administration, and troubleshooting.

This course helps you prepare to take the exam, Securing Networks with Cisco Firepower (300-710 SNCF), which leads to CCNP Security and Cisco Certified Specialist – Network Security Firepower certifications. The 300-710 SNCF exam has a second preparation course as well, Securing Networks with Cisco Firepower Next-Generation Intrusion Prevention System (SSFIPS). You can take these courses in any order.

Prerequisites & Audience

Cisco recommends that you have the following knowledge and skills before taking this course:

  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with firewall and IPS concepts
Course Benefits

This class will help you:

  • Implement Cisco Firepower NGFW to provide advanced threat protection before, during, and after attacks
  • Gain leading-edge skills for high-demand responsibilities focused on security

After taking this course, you should be able to:

  • Describe key concepts of NGIPS and NGFW technology and the Cisco Firepower Threat Defense system, and identify deployment scenarios
  • Perform initial Cisco Firepower Threat Defense device configuration and setup tasks
  • Describe how to manage traffic and implement quality of service (QoS) using Cisco Firepower Threat Defense
  • Describe how to implement NAT by using Cisco Firepower Threat Defense
  • Perform an initial network discovery, using Cisco Firepower to identify hosts, applications, and services
  • Describe the behavior, usage, and implementation procedure for access control policies
  • Describe the concepts and procedures for implementing security intelligence features
Course Topics

Cisco Firepower Threat Defense Overview

  • Examining Firewall and IPS Technology
  • Firepower Threat Defense Features and Components
  • Examining Firepower Platforms
  • Cisco Firepower Implementation Use Cases

Cisco Firepower NGFW Device Configuration

  • Firepower Threat Defense Device Registration
  • FXOS and Firepower Device Manager
  • Initial Device Setup
  • Managing NGFW Devices
  • Examining Firepower Management Center Policies
  • Examining Objects
  • Examining System Configuration and Health Monitoring
  • Device Management
  • Examining Firepower High Availability
  • Configuring High Availability
  • Cisco ASA to Firepower Migration
  • Migrating from Cisco ASA to Firepower Threat Defense

Cisco Firepower NGFW Traffic Control

  • Firepower Threat Defense Packet Processing
  • Implementing QoS
  • Bypassing Traffic

Cisco Firepower NGFW Address Translation

  • NAT Basics
  • Implementing NAT
  • NAT Rule Examples
  • Implementing NAT

Cisco Firepower Discovery

  • Examining Network Discovery
  • Configuring Network Discovery
  • Implementing Access Control Policies
  • Examining Access Control Policies
  • Examining Access Control Policy Rules and Default Action
  • Implementing Further Inspection
  • Examining Connection Events
  • Access Control Policy Advanced Settings
  • Access Control Policy Considerations
  • Implementing an Access Control Policy

Security Intelligence

  • Examining Security Intelligence
  • Examining Security Intelligence Objects
  • Security Intelligence Deployment and Logging
  • Implementing Security Intelligence

File Control and Advanced Malware Protection

  • Examining Malware and File Policy
  • Examining Advanced Malware Protection

Next-Generation Intrusion Prevention Systems

  • Examining Intrusion Prevention and Snort Rules
  • Examining Variables and Variable Sets
  • Examining Intrusion Policies

Site-to-Site VPN

  • Examining IPsec
  • Site-to-Site VPN Configuration
  • Site-to-Site VPN Troubleshooting
  • Implementing Site-to-Site VPN

Remote-Access VPN

  • Examining Remote-Access VPN
  • Examining Public-Key Cryptography and Certificates
  • Examining Certificate Enrollment
  • Remote-Access VPN Configuration
  • Implementing Remote-Access VPN

SSL Decryption

  • Examining SSL Decryption
  • Configuring SSL Policies
  • SSL Decryption Best Practices and Monitoring

Detailed Analysis Techniques

  • Examining Event Analysis
  • Examining Event Types
  • Examining Contextual Data
  • Examining Analysis Tools
  • Threat Analysis

System Administration

  • Managing Updates
  • Examining User Account Management Features
  • Configuring User Accounts
  • System Administration

Cisco Firepower Troubleshooting

  • Examining Common Misconfigurations
  • Examining Troubleshooting Commands
  • Firepower Troubleshooting

Cisco courses


Cisco SDWAN Operation and Deployment - ENSDW
CODE: WGAC-CSC-ENSDW
Implementing Secure Solutions with Virtual Private Networks - SVPN
CODE: WGAC-CSC-SVPN
Cisco ASR 9000 Series IOS XR 64Bit Software Migration and Operational Enhancements - IOSXR211
CODE: WGAC-CSC-IOSXR211
Engineering Cisco Meraki Solutions Part 2 - ECMS2
CODE: WGAC-CSC-ECMS2
Implementing Cisco Collaboration Cloud and Edge Solutions - CLCEI
CODE: WGAC-CSC-CLCEI
Cisco Service Provider 5G Technologies Foundations - SPMBL100
CODE: WGAC-CSC-SPMBL100
Securing Cisco Networks with Snort Rule Writing Best Practices - SSFRULES
CODE: WGAC-CSC-SSFRULES
Cisco IOS XR Multicast Routing Implementation and Verification - IOSXR302
CODE: WGAC-CSC-IOSXR302
Cisco Optical Technology Intermediate - OPT200
CODE: WGAC-CSC-OPT200
Administering Cisco Unified Contact Center Enterprise Part 2 - AUCCE2
CODE: WGAC-CSC-AUCCE2
Managing Enterprise Networks with Cisco Prime Infrastructure - MENPI
CODE: WGAC-CSC-MENPI
Networking & TCP/IP Fundamentals - NWF
CODE: WGAC-CSC-NWF
Administering Cisco Unified Contact Center Enterprise Part 1 - AUCCE1
CODE: WGAC-CSC-AUCCE1
Wireshark Basic Principles - WBP
CODE: WGAC-CSC-WBP
Cisco MDS 9000 Series Switches Overview - DCMDSO
CODE: WGAC-CSC-DCMDSO
Operating Cisco IP Fabric for Media Solution - IPFMSN
CODE: WGAC-CSC-IPFMSN
Cisco Certified Technician Supporting Cisco Routing and Switching Network Devices - RSTECH
CODE: WGAC-CSC-RSTECH
Implementing Cisco Collaboration Applications - CLICA
CODE: WGAC-CSC-CLICA
Cisco Unified Communications Manager Advanced Admin - CUCMAA
CODE: WGAC-CSC-CUCMAA
Introduction to Cisco Sales Express Security - ESICS
CODE: WGAC-CSC-ESICS
Introduction to Cisco Sales - ICS
CODE: WGAC-CSC-ICS
Applying Cisco Business Architecture Discipline - DTBAS
CODE: WGAC-CSC-DTBAS
Deploying Cisco Connected Mobile Experiences - WCMX
CODE: WGAC-CSC-WCMX
Cisco IOS XR Layer 3 VPN Implementation and Verification - IOSXR301
CODE: WGAC-CSC-IOSXR301
Implementing Cisco - MPLS
CODE: WGAC-CSC-MPLS
Understanding Cisco Cybersecurity Operations Fundamentals - CBROPS
CODE: WGAC-CSC-CBROPS
Implementing Cisco Enterprise Advanced Routing and Services - ENARSI
CODE: WGAC-CSC-ENARSI
Configuring VXLANs on Cisco Nexus 9000 Series Switches - DCVX9K
CODE: WGAC-CSC-DCVX9K
Developing Applications and Automating Workflows using Cisco Core Platforms - DEVASC
CODE: WGAC-CSC-DEVASC
Engineering Cisco Meraki Solutions Bundle - ECMSBC
CODE: WGAC-CSC-ECMSBC
Understanding Cisco Data Center Foundations - DCFNDU
CODE: WGAC-CSC-DCFNDU
Cisco Unified Communications IPv6 Implementation - CUCIPI
CODE: WGAC-CSC-CUCIPI
Deploying Basic Cisco Wireless LANs - WDBWL
CODE: WGAC-CSC-WDBWL
Introducing Cisco MDS 9000 Series Switches - DCIMDS
CODE: WGAC-CSC-DCIMDS
Implementing DevOps Solutions and Practices using Cisco Platforms - DEVOPS
CODE: WGAC-CSC-DEVOPS
Mastering The Cisco Business Architecture Discipline - DTBAD
CODE: WGAC-CSC-DTBAD
Cisco Stealthwatch Security - SSO
CODE: WGAC-CSC-SSO
Deploying Cisco Unified Contact Center Express - UCCXD
CODE: WGAC-CSC-UCCXD
Understanding Cisco Collaboration Foundations - CLFNDU
CODE: WGAC-CSC-CLFNDU
Implementing Cisco Service Provider Advanced Routing Solutions - SPRI
CODE: WGAC-CSC-SPRI
Cisco Webex Teams & BE6K Implementation - WTHI
CODE: WGAC-CSC-WTHI
Implementing and Configuring Cisco Identity Services Engine - SISE
CODE: WGAC-CSC-SISE
Cisco Meeting Server Intermediate - COLLAB250
CODE: WGAC-CSC-COLLAB250
Cisco Stealthwatch Network - SNO
CODE: WGAC-CSC-SNO
Cisco Unified Communications Security Implementation - CUCS
CODE: WGAC-CSC-CUCS
Configuring Cisco Unified Computing System - DCCUCS
CODE: WGAC-CSC-DCCUCS
Cisco Stealthwatch for System Administrators - SSA
CODE: WGAC-CSC-SSA
Configuring Cisco MDS 9000 Switches - DCMDS
CODE: WGAC-CSC-DCMDS
Implementing Cisco Multicast - MCAST
CODE: WGAC-CSC-MCAST
Designing Cisco Data Center Infrastructure - DCID
CODE: WGAC-CSC-DCID
Introduction to Cisco Sales Express Networking - ENICS
CODE: WGAC-CSC-ENICS
Cisco Application Centric Infrastructure Operations and Troubleshooting - DCACIO
CODE: WGAC-CSC-DCACIO
Adopting The Cisco Business Architecture Approach - DTBAA
CODE: WGAC-CSC-DTBAA
Implementing Cisco SDWAN Solutions - SDWAN300
CODE: WGAC-CSC-SDWAN300
Introducing Automation for Cisco Solutions - CSAU
CODE: WGAC-CSC-CSAU
Introduction to Cisco Finesse Supervisor Desktop - CIFSD
CODE: WGAC-CSC-CIFSD
Implementing and Operating Cisco Data Center Core Technologies - DCCOR
CODE: WGAC-CSC-DCCOR
Cisco Virtual WideArea Application Services - VWAAS
CODE: WGAC-CSC-VWAAS
Generating Reports with Cisco Unified Intelligence Center - CGRUIC
CODE: WGAC-CSC-CGRUIC
Implementing Cisco Catalyst 9000 Switches - ENC9K
CODE: WGAC-CSC-ENC9K
Cisco Unified Communications Manager Intermediate Administration - CUCMIA
CODE: WGAC-CSC-CUCMIA
Multicloud Automation and Orchestration with Cisco CloudCenter Suite - CLDAO
CODE: WGAC-CSC-CLDAO
Cisco Video Infrastructure Implementation VII
CODE: WGAC-CLC-VII
Cisco Unified Contact Centre Express Advanced Administration - CUCCXAA
CODE: WGAC-CSC-CUCCXAA
Bespoke Cisco SD Access Technical Training - BCSDATT
CODE: WGAC-CSC-BCSDATT
Implementing Automation for Cisco Service Provider Solutions - SPAUI
CODE: WGAC-CSC-SPAUI
Cisco Network Service Orchestrator NSO Essentials for Programmers and Network Architects v3.0 - NSO201
CODE: WGAC-CSC-NSO201
Cisco Customer Success Manager - DTCSM
CODE: WGAC-CSC-DTCSM
Implementing and Operating Cisco Service Provider Network Core Technologies - SPCOR
CODE: WGAC-CSC-SPCOR
Bespoke Introduction to Customizing Reports with Cisco Unified Intelligence Center - BICRCUIC
CODE: WGAC-CSC-BICRCUIC
Cisco Webex Room Kit Support - CWRKS
CODE: WGAC-CSC-CWRKS
Developing Applications Using Cisco Platforms and APIs - DEVCOR
CODE: WGAC-CSC-DEVCOR
Cisco Digital Network Architecture Implementation Essentials - DNAIE
CODE: WGAC-CSC-DNAIE
Configuring the Cisco Nexus 9000 in NXOS Mode - C9KNX
CODE: WGAC-CSC-C9KNX
Introducing Cisco NXOS Switches and Fabrics in the Data Center - DCINX
CODE: WGAC-CSC-DCINX
Securing Industrial IoT Networks with Cisco Technologies - ISECIN
CODE: WGAC-CSC-ISECIN
Designing Cisco Enterprise Networks - ENSLD
CODE: WGAC-CSC-ENSLD
Introduction to Cisco Finesse Agent Desktop - CIFAD
CODE: WGAC-CSC-CIFAD
Multicloud Management with Cisco CloudCenter Suite - CLDCCS
CODE: WGAC-CSC-CLDCCS
Securing the Web with Cisco Web Security Appliance - SWSA
CODE: WGAC-CSC-SWSA
Express Security for Systems Engineer Bootcamp - ASAESE
CODE: WGAC-CSC-ASAESE
Cisco Unified Attendant Console Standard End User - CUACSEU
CODE: WGAC-CSC-CUACSEU
Cisco Policy Suite Core Technologies for Mobility - CPSCTM
CODE: WGAC-CSC-CPSCTM
Cisco Next Generation Wireless with Catalyst 9800 - CNGW9800
CODE: WGAC-CSC-CNGW9800
Deploying Cisco SDAccess - ENSDA
CODE: WGAC-CSC-ENSDA
Cisco NSO Advanced for Python Programmers - NSO300
CODE: WGAC-CSC-NSO300
Understanding Cisco Wireless Foundations - WLFNDU
CODE: WGAC-CSC-WLFNDU
DNAC Activation and Assurance - DNACAA
CODE: WGAC-CSC-DNACAA
Implementing Cisco Tetration Analytics - DCITET
CODE: WGAC-CSC-DCITET
Developing Applications for Cisco Webex and Webex Devices - DEVWBX
CODE: WGAC-CSC-DEVWBX
Cisco UC Technical Training for Help Desk Engineers - UCTTHD
CODE: WGAC-CSC-UCTTHD
Deploying Cisco Unified Intelligence Center - DUIC
CODE: WGAC-CSC-DUIC
Introduction to Cisco IOS XR - IOSXR100
CODE: WGAC-CSC-IOSXR100
Implementing Automation for Cisco Security Solutions - SAUI
CODE: WGAC-CSC-SAUI
Cisco NSO Administration and DevOps - NSO303
CODE: WGAC-CSC-NSO303
Cisco BE6K CUCM CMS and Expressway Video Solutions - BCCEV
CODE: WGAC-CSC-BCCEV
Cisco Unified Contact Centre Express UCCX Video Call Centre Implementation with Jabber - UCCXVCCI
CODE: WGAC-CSC-UCCXVCCI
Introduction to 802.1X Operations for Cisco Security Professionals
CODE: WGAC-CSC-802.1X
Cisco IOS XR System Administration - IOSXR200
CODE: WGAC-CSC-IOSXR200
Cisco Express Networking Bootcamp Engineer Track - OCSE
CODE: WGAC-CSC-OCSE
Implementing and Administering Cisco Solutions - CCNA
CODE: WGAC-CSC-CCNA
Deploying Cisco Unified Contact Center Express - UCCX
CODE: WGAC-CSC-UCCX
Securing Networks with Cisco Firepower Next Generation Firewall - SSNGFW
CODE: WGAC-CSC-SSNGFW
Implementing Automation for Cisco Enterprise Solutions - ENAUI
CODE: WGAC-CSC-ENAUI
Cisco Small Business Technical Overview Exam Accelerated Bootcamp - SMBPPTO
CODE: WGAC-CSC-SMBPPTO
Certified Wireless Network Administrator - CWNA
CODE: WGAC-CSC-CWNA
Bespoke Cisco Unified Contact Centre Enterprise Workshop - BUCCXW
CODE: WGAC-CSC-BUCCXW
Introducing Cisco Nexus 9000 Switches in NXOS Mode - DCINX9K
CODE: WGAC-CSC-DCINX9K
Securing Cisco Networks with Open Source Snort - SSFSNORT
CODE: WGAC-CSC-SSFSNORT
Introducing Cisco Cloud Consumer Security - SECICC
CODE: WGAC-CSC-SECICC
Cisco IOS XR Basic Troubleshooting - IOSXR201
CODE: WGAC-CSC-IOSXR201
Cisco NCS 2000 Series Deploying 96Channel - OPT201
CODE: WGAC-CSC-OPT201
Introduction to Cisco Sales SMB Account Manager - SMBICS
CODE: WGAC-CSC-SMBICS
Implementing Cisco Application Centric Infrastructure - DCACI
CODE: WGAC-CSC-DCACI
Implementing Automation for Cisco Collaboration Solutions - CLAUI
CODE: WGAC-CSC-CLAUI
Cisco IPv6 Fundamentals, Design & Deployment - IP6FD
CODE: WGAC-CSC-IP6FD
Managing Enterprise Security with Cisco Security Manager - SSECMGT
CODE: WGAC-CSC-SSECMGT
Cisco Big Data Analytics& Architecture and Management - ANDMB
CODE: WGAC-CSC-ANDMB
Deploying Advanced Cisco Wireless LANs - WDAWL
CODE: WGAC-CSC-WDAWL
Implementing Cisco Quality of Service - QOS
CODE: WGAC-CSC-QOS
Cisco Aggregation Services Router 9000 Series Essentials - ASR9KE
CODE: WGAC-CSC-ASR9KE
Deploying Basic and Advanced Cisco Wireless LANs Bootcamp - WDBWL-WDAWL
CODE: WGAC-CSC-WDBWL-WDAWL
Securing Cloud Deployments With Cisco Technologies - SECCLD
CODE: WGAC-CSC-SECCLD
Implementing Cisco Service Provider VPN Services - SPVI
CODE: WGAC-CSC-SPVI
Configuring Cisco NXOS Switches and Fabrics in the Data Center - DCCNX
CODE: WGAC-CSC-DCCNX
Cisco Unified Contact Centre Express Bespoke UCCX CUCM CUC - CUCCE
CODE: WGAC-CSC-CUCCE
Implementing and Operating Cisco Security Core Technologies - SCOR
CODE: WGAC-CSC-SCOR
Operating and Implementing Cisco WAN Automation Engine - WAE200
CODE: WGAC-CSC-WAE200
Configuring BGP on Cisco Routers - BGP
CODE: WGAC-CSC-BGP
Cisco IOS XR Broadband Network Gateway Implementation and Verification - IOSXR304
CODE: WGAC-CSC-IOSXR304
Implementing and Operating Cisco Enterprise Network Core Technologies - ENCOR
CODE: WGAC-CSC-ENCOR
Cisco Meeting Server Implementation - CMSI
CODE: WGAC-CSC-CMSI
Cisco Optical Technology Advanced - OPT300
CODE: WGAC-CSC-OPT300
Cisco Meeting Server Advanced - COLLAB350
CODE: WGAC-CSC-COLLAB350
Protecting Against Malware Threats with Cisco AMP for Endpoints - SSFAMP
CODE: WGAC-CSC-SSFAMP
Implementing Cisco Collaboration Devices Express Collaboration for Systems Engineer - ECCICD
CODE: WGAC-CSC-ECCICD
Cisco BE6K CUCM TelePresence and Expressway Video Solutions - BE6KBC
CODE: WGAC-CSC-BE6KBC
Cisco Stealthwatch Tuning - SWAT
CODE: WGAC-CSC-SWAT
Cisco Unified Attendant Console Standard Administration - CUACS
CODE: WGAC-CSC-CUACS
Developing Solutions using Cisco IoT and Edge Platforms - DEVIOT
CODE: WGAC-CSC-DEVIOT
Implementing Automation for Cisco Data Center Solutions - DCAUI
CODE: WGAC-CSC-DCAUI
Securing Networks with Cisco Firepower NextGeneration IPS - SSFIPS
CODE: WGAC-CSC-SSFIPS
Implementing Segment Routing on Cisco IOS XR - SEGRTE201
CODE: WGAC-CSC-SEGRTE201
Cisco Meeting Server Support - SMSS
CODE: WGAC-CSC-SMSS
Securing Email with Cisco Email Security Appliance - SESA
CODE: WGAC-CSC-SESA
Bespoke Cisco Packaged Contact Centre Enterprise Workshop - BCPCCXW
CODE: WGAC-CSC-BCPCCXW
Troubleshooting Cisco Data Center Infrastructure - DCIT
CODE: WGAC-CSC-DCIT
Engineering Cisco Meraki Solutions Part 1 - ECMS1
CODE: WGAC-CSC-ECMS1
Introducing Cisco Unified Computing System - DCIUCS
CODE: WGAC-CSC-DCIUCS
Understanding Cisco Service Provider Network Foundations - SPFNDU
CODE: WGAC-CSC-SPFNDU
Implementing Cisco Advanced Call Control and Mobility Services - CLACCM
CODE: WGAC-CSC-CLACCM
Integrated Threat Defense Investigation and Mitigation - SECUR202
CODE: WGAC-CSC-SECUR202
Deploying Cisco Unified Contact Center Enterprise Software - DUCCE
CODE: WGAC-CSC-DUCCE
Implementing Cisco HyperFlex - DCIHX
CODE: WGAC-CSC-DCIHX
Implementing an Integrated Threat Defense Solution - SECUR201
CODE: WGAC-CSC-SECUR201
Implementing Cisco Enterprise Wireless Networks - ENWLSI
CODE: WGAC-CSC-ENWLSI
Cisco Unified Communications Manager Advanced Administration with Jabber - UCMAAJ
CODE: WGAC-CSC-UCMAAJ
Designing Cisco Enterprise Wireless Network - ENWLSD
CODE: WGAC-CSC-ENWLSD
Introduction to Cisco Sales Express Collaboration for Account Managers - ECICS
CODE: WGAC-CSC-ECICS
Cisco WebEx Teams Implementation - CWTI
CODE: WGAC-CSC-CWTI
Implementing and Operating Cisco Collaboration Core Technologies - CLCOR
CODE: WGAC-CSC-CLCOR
Implementing Cisco Unified Communications Manager with Jabber - ICUCMJ
CODE: WGAC-CSC-ICUCMJ
This website uses cookies to ensure you get the best experience on our website.