Securing Cisco Networks with Open Source Snort (SSFSNORT)

This training will help you:

• Learn how to implement Snort, an open-source, rule-based, intrusion detection and prevention system
• Gain leading-edge skills for high-demand responsibilities focused on security
• Earn 32 CE credits towards recertification

• Snort Technology Introduction
• Snort Installation
• Snort Operation Introduction
• Snort Intrusion Detection Output
• Rule Management
• Snort Configuration
• Inline Configuration and Operation
• Snort Rule Syntax and Usage
• Snort Rule Traffic Processing Flow
• Advanced Rule Options
• OpenAppID Detection Configuration
• Snort Tuning

1. Connecting to the Lab Environment
2. Snort Installation
3. Snort Operation
4. Snort Intrusion Detection Output
5. PulledPork Installation
6. Configuring Variables
7. Reviewing Preprocessor Configurations
8. Inline Operation
9. Basic Rule Syntax and Usage
10. Advanced Rule Options
11. OpenAppID Configuration
12. Tuning Snort

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

• Technical understanding of transmission control protocol/internet protocol (TCP/IP) networking and network architecture
• Proficiency with Linux and UNIX text editing tools, such as vi editor

These skills can be found in the following Cisco Learning Offering:

• Implementing and Administering Cisco Solutions (CCNA)

This course is designed for technical professionals who need to know how to deploy Open Source Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), as well as write Snort rules. The primary audience for this course includes:

• Security Administrators
• Security Consultants
• Network Administrators
• System Engineers
• Technical Support Personnel
• Channel Partners and Resellers