Securing Your Web with Cisco IronPort S-Series (SYW) — A 2-day course
Synopsis
The S-Series Administration course is an instructor-led training class for IronPort customers. It has hands-on labs, demos and presentations to help students learn technical aspects of the S-Series Web Security Appliances. This comprehensive, two-day training course covers how to install, configure, operate and maintain the S-Series.
Extensive lab exercises provide attendees with critical hands-on product experience. The live lab facilities provide a safe environment to experiment with malware, and also to try configurations that might not be appropriate for a production network. At the end of the course attendees will be able to install, operate and maintain the S-Series appliances.
Course Objectives:
After completing this course, the student will understand:
- Different deployment options, covering the best ways to integrate the S-Series into different customer environments
- “Best practices” for configuration, operations and system administration
- How to manage, monitor, and troubleshoot the flow of Internet traffic
- Using access controls and policies to block malware, specific web sites or content types
- How to integrate the S-Series with your directory servers, firewalls and L4 switches
- How to use the S-Series together with your existing proxies
Intended Audience
This course may be of interest to the following people:
- Security Architects and System Designers
- Network Administrators and Operations Engineers
- Network or Security Managers responsible for web security
Prerequisites
It is assumed that attendees possess the following background knowledge and skills:
- A good understanding of IP routing, Network Address Translation, CIDR addresses, DNS and TCP/IP services such as SSH, FTP, NTP and SNMP
- Basic experience using Command Line Interfaces (CLI) and Graphical User Interfaces (GUI) to configure network devices
Publicly scheduled dates, locations, and prices
London — £1250 (+VAT)
- 27–28 Jan 2011
- 24–25 Mar 2011
- 12–13 May 2011
- 14–15 Jul 2011
Windsor — £1250 (+VAT)
- 16–17 Sep 2010
- 18–19 Nov 2010
Dublin — £1250 (+VAT)
- 7–8 Oct 2010
Contents:
Introduction
- Course background
Product and Malware Overview
- Overview of S-Series and Malware threats Basic L4TM Setup
- Network integration options for L4TM
- Introduction to L4TM reports
Layer 4 Traffic Monitor
- Configuring Layer 4 Traffic Monitor
Proxy and Caching
- Proxy concepts
- Transparent vs. Forward Explicit modes Web Reputation Filtering
- Theory of Web Reputation Filtering
- Configuring WBRS
- WBRS compared with SBRS
Webroot Anti-Malware
- Understanding Anti-Malware scanning
- Tuning Malware categories Authentication
- LDAP Authentication options
- Windows NTLM Authentication options
Web Security Manager
- URL Content Filtering categories
- L4TM, Proxy and other blocking policies
- The Pipeline
System Administration
- Reports, Logs, Alerts, SNMP and Monitoring
Troubleshooting
- Troubleshooting and Administration Other Deployment Scenarios
- Transparent mode with L4 switching
- Transparent mode with WCCP routing
- Integrating with existing proxies
- Integrating multiple S-Series appliances
