Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Firepower Threat Defense (FTD) by Arash Deljoo
Rating: 4.9 out of 5(33 ratings)
199 students

Firepower Threat Defense (FTD) by Arash Deljoo

Cisco Firepower
Created byArash Deljoo
Last updated 7/2023
English

What you'll learn

  • Evolution of Next-Generation Firewall
  • Cisco Firepower History
  • Firepower Threat Defense (FTD)
  • Cisco Secure Firewall Solutions
  • Managing Firepower
  • The FTD Management Interface
  • Routed Firewall - Static IP Address Assignment
  • Firepower Licenses
  • Routed Firewall - Dynamic IP Address Assignment with DHCP
  • Routed Firewall - IPv4 Static Routing
  • Routed Firewall - IPv6 Static Routing
  • Routed Firewall - RIPv2
  • Routed Firewall - OSPFv2
  • Transparent Firewall - BVI Configuration
  • Transparent Firewall - Access Control Policy Based on Network Address
  • Transparent Firewall - Access Control Policy Based on Port
  • Blocking Traffic Using Inline Interface Mode Concept
  • Blocking Traffic Using Inline Interface Mode Configuration
  • IPS - Inline Mode
  • Capturing Traffic from a Firepower Engine
  • Capturing Traffic from a Firewall Engine
  • Capturing Traffic from the FMC
  • Verification and Troubleshooting Tools
  • Inspecting Traffic without Blocking It
  • Handling Encapsulated Traffic

Course content

1 section26 lectures11h 49m total length
  • Evolution of Next-Generation Firewall7:06

    1- Evolution of Next-Generation Firewall Introduction

    2- Host-based firewall Introduction

    3- Stateless Firewall  Introduction

    4- Stateful Firewall  Introduction

    5- Next-Generation firewall (NGFW) introduction


  • Cisco Firepower History18:13

    1- History of Sourcefire

    2- Evolution of Firepower

    3- FirePOWER Versus Firepower

    4- Sourcefire Defense Center (DC)

    5- FireSIGHT System or FireSIGHT Management Center (FMC)

    6- Firepower System or Firepower Management Center (FMC)

  • Firepower Threat Defense (FTD)7:53

    1- Firepower Threat Defense (FTD)

    2- FirePOWER Service Versus Firepower Threat Defense (FTD)

    3- Firepower System Hardware Platforms

    4- Firepower Accessories

  • Cisco Secure Firewall Solutions7:13

    1- Cisco Secure Firewall Solutions

    2- Typical Architecture of Cisco Secure Firewall Deployment

    3- Secure Firewall Device Manager (FDM)

    4- Secure Firewall Management Center (FMC)

    5- Cisco Defense Orchestrator (CDO)

    6- Wide Range of Throughput Requirements in Different Deployment Use Cases

    7- Evolution of Cisco Secure Firewall Solutions on Various Platforms

  • Managing Firepower15:40

    1- Firepower Device Manager (FDM)

    2- Firepower Management Center (FMC)

    3- Cisco Defense Orchestrator (CDO)

    4- Adaptive Security Device Manager (ASDM)

    5- FMC Component Essentials

    6- On-Box Managers

    7- Off-Box Managers

  • The FTD Management Interface9:32

    1- FTD Management Interface On an Adaptive Security Appliance (ASA) Introduction

    2- Location of the Management Interface on ASA Hardware Introduction

    3- ASA Logical Interfaces Introduction

    4- FTD Management Interface On a Firepower Security Appliance Introduction

    5- Location of the Management Interface on Firepower Security Appliances Introduction

  • Routed Firewall - Static IP Address Assignment56:39

    1- Routed Mode Essentials

    2- Configuring Routed Mode

    3- Fulfilling Prerequisites

    4- Configuring the Firewall Mode

    5- Configuring an Interface with a Static IP Address

    6- Verification and Troubleshooting Tools

  • Firepower Licenses6:25

    1- Firepower Licenses Introduction

    2- Base Licenses Introduction

    3- Threat Licenses Introduction

    4- Malware Licenses Introduction

    5- URL Filtering Licenses Introduction

    6- Capabilities of the Firepower Licenses Introduction

    7- Firepower License Subscription Purchase Options Introduction

    8- Best Practices for Licensing and Registration Introduction

  • Routed Firewall - Dynamic IP Address Assignment with DHCP24:30

    1- DHCP Services

    2- FTD as a DHCP Server

    3- FTD as a DHCP Client

    4- Verifying the Interface Configuration

    5- Verifying DHCP Settings


  • Routed Firewall - IPv4 Static Routing24:31

    1- IP Address Assignment in FTD

    2- IP Address Verification in FTD

    3- Static Route Configuration in FTD

    4- Network Object Configuration

    5- Static Route Verification in FTD

  • Routed Firewall - IPv6 Static Routing25:18

    1- IPv6 Address Assignment in FTD

    2- IPv6 Address Verification in FTD

    3- IPv6 Static Route Configuration in FTD

    4- Network Object Configuration

    5- IPv6 Static Route Verification in FTD

  • Routed Firewall - RIPv244:43

    1- RIP Enabling in FTD

    2- RIP Network Statements in FTD

    3- RIP Default Route Origination in FTD

    4- RIP Version in FTD

    5- RIP Authentication in FTD

    6- RIP Passive Interface in FTD

  • Routed Firewall - OSPFv243:32

    1- OSPFv2 Configuration in FTD

    2- OSPFv2 Authentication in FTD

    3- OSPFv2 Interface Configuration in FTD

    4- OSPFv2 Default Route Advertisement in FTD

    5- OSPFv2 Verification in FTD

  • Transparent Firewall - BVI Configuration40:18

    1- FTD Configuration in Transparent Mode

    2- FTD Interface Configuration in Transparent Mode

    3- FTD BVI Interface Configuration in Transparent Mode

    4- FTD Transparent Mode Verification

  • Transparent Firewall - Access Control Policy Based on Network Address33:37

    1- FTD Default Access Control Policy [ACP]

    2- FTD Network Based Access Control Policy Rule Configuration

    3- FTD Access Control Policy Rule Verification

    4- FTD Network Object Configuration

  • Transparent Firewall - Access Control Policy Based on Port25:41

    1- FTD Default Access Control Policy [ACP]

    2- FTD Port Based Access Control Policy Rule Configuration

    3- FTD Access Control Policy Rule Verification

    4- FTD Port Object Configuration

  • Blocking Traffic Using Inline Interface Mode Concept19:31

    1- Inline Mode Essentials Introduction

    2- Available Actions, Including Blocking Actions Introduction

    3- Ability to Block Traffic in Various Modes Introduction

    4- Inline Mode Versus Passive Mode Introduction

    5- Inline Mode Versus Transparent Mode introduction

    6- Tracing a Packet Drop introduction

    7- Possible Reasons for a Packet Drop Introduction

    8- Best Practices for Inline Mode Configuration


  • Blocking Traffic Using Inline Interface Mode Configuration50:45

    1- FTD Inline Interface Mode Configuration Prerequisites Introduction

    2- Creating an Inline Set in FTD

    3- Verifying Packet Flow by Using packet-tracer

    4- Verifying Packet Flow by Using Real Packet Capture

    5- Enabling Fault Tolerance Features Introduction

    6- FailSafe Fault Tolerance Feature Configuration

    7- Propagate Link State Fault Tolerance Feature Configuration

    8- Verifying Fault Tolerance Features

    9- Blocking a Specific Port Using Inline Interface Mode Configuration

    10- Verifying Blocking of a Specific Port

    11- Analyzing a Packet Drop by Using a Simulated Packet

    12- Analyzing a Packet Drop by Using a Real Packet

  • IPS - Inline Mode38:06

    1- Intrusion Prevention System (IPS) Introduction

    2- FTD Inline Mode Introduction

    3- Compare Routed Firewall , Transparent Firewall and IPS

    4- Intrusion Prevention System (IPS) Configuration

    5- Access-Policy Allow , Block , Block with reset introduction

  • Capturing Traffic from a Firepower Engine45:49

    1- Traffic Capture Essentials Introduction

    2- Best Practices for Capturing Traffic Introduction

    3- Configuring Firepower System for Traffic Analysis

    4- Capturing Traffic from a Firepower Engine

    5- tcpdump Options introduction

    6- Berkeley Packet Filter (BPF) introduction

    7- Downloading a .pcap File Generated by Firepower Engine

    8- Using the FMC GUI to Download a File Introduction

    9- Using the CLI to Copy a File to an External Computer

  • Capturing Traffic from a Firewall Engine35:11

    1- Capturing Traffic from the Firewall Engine Introduction

    2- The Difference Between the capture and capture-traffic Tools Introduction

    3- Viewing Captured Traffic Introduction

    4- Deleting a Capture Introduction

    5- Downloading a .pcap File Generated by Firewall Engine introduction

    6- Enabling HTTP Service in FTD introduction

  • Capturing Traffic from the FMC10:09

    1- Capturing Traffic from the FMC Introduction

    2- ifconfi g Command Introduction

    3- sudo tcpdump Command Introduction

    4- Downloading a .pcap File Generated by FMC Introduction

    5- Transferring a .pcap File from the FMC to an External Computer by SCP introduction

  • Verification and Troubleshooting Tools10:59

    1- Adding an Access Rule to Block ICMP Traffic Configuration

    2- Analyzing the Traffic Flow by Using a Block Rule

    3- Packet Processing by an Interface Introduction

  • Inspecting Traffic without Blocking It44:32

    1- Traffic Inspection Essentials Introduction

    2- Passive Monitoring Technology Introduction

    3- Passive Monitoring Promiscuous Mode Introduction

    4- Passive Monitoring SPAN port Introduction

    5- Passive Monitoring with TAP Introduction

    6- Inline Versus Inline Tap Versus Passive Introduction

    7- Best Practices for Detection-Only Deployment Introduction

    8- Fulfilling Prerequisites Introduction

    9- Inline Tap Mode Introduction

    10- Configuring Inline Tap Mode

    11- Verifying an Inline Tap Mode Configuration

    12- Passive Interface Mode Introduction

    13- Passive Interface Mode Configuration

    14- SPAN Port Configuration on a Switch

    15- Verifying a Passive Interface Mode

    16- Analyzing Traffic Inspection Operation

    17- Analyzing a Connection Event with a Block Action

    18- Analyzing Live Traffic

    19- Analyzing a Simulated Packet

    20- Analyzing an Intrusion Event with an Inline Result

  • Handling Encapsulated Traffic (A)35:29

    1- GRE Encapsulated Packet Introduction

    2- Position of a Prefilter Policy in the Workflow Introduction

    3- Best Practices for Adding a Prefilter Rule Introduction

    4- Fulfilling Prerequisites Introduction

    5- Transferring and Capturing Traffic on the Firewall Engine Introduction

    6- Scenario 1: Analyzing Encapsulated Traffic Introduction

    7- Configuring Policies to Analyze Encapsulated Traffic Introduction

    8- Prefilter Policy Settings Introduction

    9- Access Control Policy Settings Introduction

    10- Verifying the Configuration and Connection

    11- Analyzing Packet Flows

  • Handling Encapsulated Traffic (B)27:55

    1- Scenario 2: Blocking Encapsulated Traffic Introduction

    2- Configuring Policies to Block Encapsulated Traffic Introduction

    3- Verifying the Configuration and Connection Introduction

    4- Analyzing Packet Flows Introduction

    5- Scenario 3: Bypassing Inspection Introduction

    6- Configuring Policies to Bypass Inspection

    7- Custom Prefilter Policy Introduction

Requirements

  • Installed EVE-NG for implementing scenarios
  • CCNA Level Knowledge

Description

Mastering Firepower Threat Defense (FTD) for a Secure Future

In today’s rapidly evolving cybersecurity landscape, mastering Firepower Threat Defense (FTD) is a crucial skill for any network security professional. Organizations worldwide rely on FTD to protect their critical assets, making expertise in this technology highly valuable in the job market.

This course is designed to provide you with the knowledge and hands-on skills needed to confidently work with FTD in real-world scenarios. Whether you are an aspiring security engineer, network administrator, or seasoned professional looking to expand your expertise, this course will enhance your ability to configure, manage, and troubleshoot FTD effectively.

By gaining proficiency in FTD, you position yourself as a valuable asset in the cybersecurity industry, improving your career prospects and opening doors to opportunities in network security roles. Companies are actively seeking professionals with FTD skills to strengthen their security posture, making this knowledge a strong addition to your resume.

Invest in your future by developing in-demand skills that employers are looking for. This course will empower you with the confidence to implement, optimize, and troubleshoot security policies using FTD, helping you stay ahead in the competitive IT security field.

Take the next step in advancing your career and securing networks with Firepower Threat Defense!

Who this course is for:

  • Network Administrators
  • Security Administrators
  • Network Support Engineers