Firepower Threat Defense (FTD) by Arash Deljoo

1- Evolution of Next-Generation Firewall Introduction

2- Host-based firewall Introduction

3- Stateless Firewall  Introduction

4- Stateful Firewall  Introduction

5- Next-Generation firewall (NGFW) introduction

1- History of Sourcefire

2- Evolution of Firepower

3- FirePOWER Versus Firepower

4- Sourcefire Defense Center (DC)

5- FireSIGHT System or FireSIGHT Management Center (FMC)

6- Firepower System or Firepower Management Center (FMC)

1- Firepower Threat Defense (FTD)

2- FirePOWER Service Versus Firepower Threat Defense (FTD)

3- Firepower System Hardware Platforms

4- Firepower Accessories

1- Cisco Secure Firewall Solutions

2- Typical Architecture of Cisco Secure Firewall Deployment

3- Secure Firewall Device Manager (FDM)

4- Secure Firewall Management Center (FMC)

5- Cisco Defense Orchestrator (CDO)

6- Wide Range of Throughput Requirements in Different Deployment Use Cases

7- Evolution of Cisco Secure Firewall Solutions on Various Platforms

1- Firepower Device Manager (FDM)

2- Firepower Management Center (FMC)

3- Cisco Defense Orchestrator (CDO)

4- Adaptive Security Device Manager (ASDM)

5- FMC Component Essentials

6- On-Box Managers

7- Off-Box Managers

1- FTD Management Interface On an Adaptive Security Appliance (ASA) Introduction

2- Location of the Management Interface on ASA Hardware Introduction

3- ASA Logical Interfaces Introduction

4- FTD Management Interface On a Firepower Security Appliance Introduction

5- Location of the Management Interface on Firepower Security Appliances Introduction

1- Routed Mode Essentials

2- Configuring Routed Mode

3- Fulfilling Prerequisites

4- Configuring the Firewall Mode

5- Configuring an Interface with a Static IP Address

6- Verification and Troubleshooting Tools

1- Firepower Licenses Introduction

2- Base Licenses Introduction

3- Threat Licenses Introduction

4- Malware Licenses Introduction

5- URL Filtering Licenses Introduction

6- Capabilities of the Firepower Licenses Introduction

7- Firepower License Subscription Purchase Options Introduction

8- Best Practices for Licensing and Registration Introduction

1- DHCP Services

2- FTD as a DHCP Server

3- FTD as a DHCP Client

4- Verifying the Interface Configuration

5- Verifying DHCP Settings

1- IP Address Assignment in FTD

2- IP Address Verification in FTD

3- Static Route Configuration in FTD

4- Network Object Configuration

5- Static Route Verification in FTD

1- IPv6 Address Assignment in FTD

2- IPv6 Address Verification in FTD

3- IPv6 Static Route Configuration in FTD

4- Network Object Configuration

5- IPv6 Static Route Verification in FTD

1- RIP Enabling in FTD

2- RIP Network Statements in FTD

3- RIP Default Route Origination in FTD

4- RIP Version in FTD

5- RIP Authentication in FTD

6- RIP Passive Interface in FTD

1- OSPFv2 Configuration in FTD

2- OSPFv2 Authentication in FTD

3- OSPFv2 Interface Configuration in FTD

4- OSPFv2 Default Route Advertisement in FTD

5- OSPFv2 Verification in FTD

1- FTD Configuration in Transparent Mode

2- FTD Interface Configuration in Transparent Mode

3- FTD BVI Interface Configuration in Transparent Mode

4- FTD Transparent Mode Verification

1- FTD Default Access Control Policy [ACP]

2- FTD Network Based Access Control Policy Rule Configuration

3- FTD Access Control Policy Rule Verification

4- FTD Network Object Configuration

1- FTD Default Access Control Policy [ACP]

2- FTD Port Based Access Control Policy Rule Configuration

3- FTD Access Control Policy Rule Verification

4- FTD Port Object Configuration

1- Inline Mode Essentials Introduction

2- Available Actions, Including Blocking Actions Introduction

3- Ability to Block Traffic in Various Modes Introduction

4- Inline Mode Versus Passive Mode Introduction

5- Inline Mode Versus Transparent Mode introduction

6- Tracing a Packet Drop introduction

7- Possible Reasons for a Packet Drop Introduction

8- Best Practices for Inline Mode Configuration

1- FTD Inline Interface Mode Configuration Prerequisites Introduction

2- Creating an Inline Set in FTD

3- Verifying Packet Flow by Using packet-tracer

4- Verifying Packet Flow by Using Real Packet Capture

5- Enabling Fault Tolerance Features Introduction

6- FailSafe Fault Tolerance Feature Configuration

7- Propagate Link State Fault Tolerance Feature Configuration

8- Verifying Fault Tolerance Features

9- Blocking a Specific Port Using Inline Interface Mode Configuration

10- Verifying Blocking of a Specific Port

11- Analyzing a Packet Drop by Using a Simulated Packet

12- Analyzing a Packet Drop by Using a Real Packet

1- Intrusion Prevention System (IPS) Introduction

2- FTD Inline Mode Introduction

3- Compare Routed Firewall , Transparent Firewall and IPS

4- Intrusion Prevention System (IPS) Configuration

5- Access-Policy Allow , Block , Block with reset introduction

1- Traffic Capture Essentials Introduction

2- Best Practices for Capturing Traffic Introduction

3- Configuring Firepower System for Traffic Analysis

4- Capturing Traffic from a Firepower Engine

5- tcpdump Options introduction

6- Berkeley Packet Filter (BPF) introduction

7- Downloading a .pcap File Generated by Firepower Engine

8- Using the FMC GUI to Download a File Introduction

9- Using the CLI to Copy a File to an External Computer

1- Capturing Traffic from the Firewall Engine Introduction

2- The Difference Between the capture and capture-traffic Tools Introduction

3- Viewing Captured Traffic Introduction

4- Deleting a Capture Introduction

5- Downloading a .pcap File Generated by Firewall Engine introduction

6- Enabling HTTP Service in FTD introduction

1- Capturing Traffic from the FMC Introduction

2- ifconfi g Command Introduction

3- sudo tcpdump Command Introduction

4- Downloading a .pcap File Generated by FMC Introduction

5- Transferring a .pcap File from the FMC to an External Computer by SCP introduction

1- Adding an Access Rule to Block ICMP Traffic Configuration

2- Analyzing the Traffic Flow by Using a Block Rule

3- Packet Processing by an Interface Introduction

1- Traffic Inspection Essentials Introduction

2- Passive Monitoring Technology Introduction

3- Passive Monitoring Promiscuous Mode Introduction

4- Passive Monitoring SPAN port Introduction

5- Passive Monitoring with TAP Introduction

6- Inline Versus Inline Tap Versus Passive Introduction

7- Best Practices for Detection-Only Deployment Introduction

8- Fulfilling Prerequisites Introduction

9- Inline Tap Mode Introduction

10- Configuring Inline Tap Mode

11- Verifying an Inline Tap Mode Configuration

12- Passive Interface Mode Introduction

13- Passive Interface Mode Configuration

14- SPAN Port Configuration on a Switch

15- Verifying a Passive Interface Mode

16- Analyzing Traffic Inspection Operation

17- Analyzing a Connection Event with a Block Action

18- Analyzing Live Traffic

19- Analyzing a Simulated Packet

20- Analyzing an Intrusion Event with an Inline Result

1- GRE Encapsulated Packet Introduction

2- Position of a Prefilter Policy in the Workflow Introduction

3- Best Practices for Adding a Prefilter Rule Introduction

4- Fulfilling Prerequisites Introduction

5- Transferring and Capturing Traffic on the Firewall Engine Introduction

6- Scenario 1: Analyzing Encapsulated Traffic Introduction

7- Configuring Policies to Analyze Encapsulated Traffic Introduction

8- Prefilter Policy Settings Introduction

9- Access Control Policy Settings Introduction

10- Verifying the Configuration and Connection

11- Analyzing Packet Flows

1- Scenario 2: Blocking Encapsulated Traffic Introduction

2- Configuring Policies to Block Encapsulated Traffic Introduction

3- Verifying the Configuration and Connection Introduction

4- Analyzing Packet Flows Introduction

5- Scenario 3: Bypassing Inspection Introduction

6- Configuring Policies to Bypass Inspection

7- Custom Prefilter Policy Introduction