StoneGate IPS v.5.0
Referencia: STS-400 ,
Duración: 3 días
Objetivos
Upon completing the StoneGate IPS course, the student should be able to install a StoneGate IPS and be able to explain different deployment options for IDS/IPS installations. The student should be able to correlate network events between IDS/IPS and firewall logs. The student should also be able to manage incident situations and customize the IPS policies. Finally, the student should be able to monitor the information generated by the StoneGate components and use the incident management and IPS to react to non-wanted traffic in the network.
Audiencia
Upon completing StoneGate IPS course, the student is able to:
- Explain basics of IDS/IPS technologies
- Realize what types of network security threats exist
- Understand the role of an IDS/IPS in the overall security framework
- Install and configure a StoneGate IPS system
- Explain the functioning of the IPS system
- Create custom situations
- Create new access and inspection rules
- Update the system using dynamic updates
- Use StoneGate IPS efficiently for daily network supervision purposes
3 StoneGate IPS Course Outline
Descripción
Introduction to Intrusion Prevention
Introduction to StoneGate IPS
- LAB 1: StoneGate Management Center installation
- LAB 2: IDS and Inline IPS Definition and Installation
StoneGate IPS Policies
- LAB 3: System Policy Installation
- LAB 4: Fine-Tuning IPS policies
Sensor Inspection Methods
- LAB 5: Creating Custom Situations
Analyzer Correlation Methods
- LAB 6: Using Correlation Situations
Incident Management
- LAB 7: Using Incident Management Tools
- LAB 8: Hold the fort
