Cisco Intrusion Prevention System (IPS) sensors allow you to use multiple virtual contexts (also called virtual sensors) that allow the use of different IPS policies on different sets of inline or promiscuous interfaces. Additionally, Cisco IPS sensors are often used in environments that demand high-service availability and deterministic network performance and may require specific design decisions or configuration tuning to perform optimally. This course provides configuration guidance on Cisco IPS policy virtualization, and enables you to choose Cisco IPS network integration methods that can provide fault-tolerant IPS solutions as well as IPS solutions that provide optimal performance.Learning Objectives
- Recognize the elements of virtual sensors
- Describe how to configure a new virtual sensor
- Describe how to verify the operation of the virtual Cisco IPS sensor
- Configure policy virtualization
- Describe how to evaluate design options for switching-based high availability
- Identify how to evaluate design options for routing-based high availability
- Identify how to evaluate design options for Cisco ASA-based high availability
- Describe how to evaluate sensor performance issues
- Recognize options for sensor load sharing
- Recognize options for reducing traffic through an IPS sensor to increase its performance
Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security, Cisco Certified Security Professional CCSP Certification or Cisco IPS Specialist Certification designation.
Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure.
Candidates who have completed the Cisco Certified Network Associate Security Certification - Implementing Cisco IOS Network Security (IINS).