CCNP Security IPS 642-627 Official Cert Guide David Burns Odunayo Adesina, CCIE(R) No. 26695 Keith Barker, CCIE No. 6783 . Master CCNP Security IPS 642-627 exam topics . Assess your knowledge with chapter-opening quizzes . Review key concepts with exam preparation tasks . Practice with realistic exam questions on the CD-ROM Learn, prepare, and practice for exam success CCNP Security IPS 642-627 Official Cert Guide is a best-of-breed Cisco exam study guide that focuses specifically on the objectives for the CCNP Security IPS exam. Senior security engineers David Burns, Odunayo Adesina, and Keith Barker share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. CCNP Security IPS 642-627 Official Cert Guide presents you with an organized test-preparation routine through the use of proven series elements and techniques. "Do I Know This Already?" quizzes open each chapter and enable you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. The companion CD-ROM contains the powerful Pearson IT Certification Practice Test engine that enables you to focus on individual topic areas or take a complete, timed exam. The assessment engine also tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most. Well-regarded for its level of detail, assessment features, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time. CCNP Security IPS 642-627 Official Cert Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining. The official study guide helps you master all the topics on the CCNP Security IPS exam, including * Cisco IPS software, hardware, and supporting applications * Network IPS and IDS deployment architecture * Installing and maintaining Cisco IPS physical and virtual sensors * Traffic analysis * IPS signatures and responses * Anomaly-based operations * Improving alarm response and quality * Managing and analyzing events * High availability and performance * IPS modules for ASAs, routers, and switches Companion CD-ROM The CD-ROM contains a free, complete practice exam. Includes Exclusive Offer for 70% Off Premium Edition eBook and Practice Test Pearson IT Certification Practice Test minimum system requirements: Windows XP (SP3), Windows Vista (SP2), or Windows 7; Microsoft .NET Framework 4.0 Client; Microsoft SQL Server Compact 4.0; Pentium class 1GHz processor (or equivalent); 512 MB RAM; 650 MB disc space plus 50 MB for each downloaded practice exam CCNP Security Category: Cisco Press--Cisco Certification Covers: CCNP Security IPS 642-627
| ISBN | 1587142554 | | Pages | 672 | | ISBN13 | 9781587142550
(What's this?) | | Weight (grammes) | 1320 | | Publisher | Pearson Education (US) | | Published in | Indianapolis | | Imprint | Cisco Press | | Height (mm) | 232 | | Format | Multimedia Item | | Width (mm) | 194 | | Publication date | 25 Oct 2011 | | Spine width (mm) | 39 | | DEWEY | 005.8076 | | Academic level | Professional / Scholarly, Revision/study guides | | DEWEY edition | DC23 | |
|
|
|
Introduction xxviii Part I Introduction to Intrusion Prevention and Detection, Cisco IPS Software, and Supporting Devices 3 Chapter 1 Intrusion Prevention and Intrusion Detection Systems 5 "Do I Know This Already?" Quiz 5 Foundation Topics 8 Intrusion Prevention Overview 8 Intrusion Detection Versus Intrusion Prevention 8 Intrusion Prevention Terminology 9 Intrusion Prevention Systems 12 Features of Network Intrusion Prevention Systems 13 Limitations of Network Intrusion Prevention Systems 14 Network Intrusion Prevention Approaches 14 Endpoint Security Controls 16 Host-Based Firewalls 17 API and System Call Interception 17 Cisco Security Agent 17 Antimalware Agents 18 Data Loss Prevention Agents 19 Cryptographic Data Protection 19 A Systems Approach to Security 20 Exam Preparation Tasks 21 Review All the Key Topics 21 Complete the Tables and Lists from Memory 21 Define Key Terms 21 Chapter 2 Cisco IPS Software, Hardware, and Supporting Applications 23 Overview 23 "Do I Know This Already?" Quiz 23 Foundation Topics 26 Cisco IPS Network Sensors 26 Cisco IPS 4200 Series Sensors 27 Cisco IPS 4240 Sensor 28 Cisco IPS 4255 Sensor 29 Cisco IPS 4260 Sensor 30 Cisco IPS 4270 Sensor 32 Sensing Interface Details 33 10GE Interface Card 33 4GE Bypass Interface Card 33 2SX Interface Card 34 Cisco ASA AIP SSM and AIP SSC-5 Modules 34 Cisco Catalyst 6500 Series IDSM-2 Module 35 Cisco AIM-IPS and NME-IPS Supported on Cisco ISR Routers 36 Cisco IPS Software Architecture 38 Cisco IPS Management Products 41 Cisco IPS Device Manager 42 Cisco IPS Manager Express 42 Cisco Security Manager 43 Cisco Security MARS 43 Cisco Security Intelligence Operations and Cisco Security IntelliShield Alert Manager Service 45 Cisco Security IntelliShield Alert Manager Service 47 Summary 48 References 48 Exam Preparation Tasks 49 Review All the Key Topics 49 Definitions of Key Terms 49 Chapter 3 Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti-evasive Countermeasures 51 Overview 51 "Do I Know This Already?" Quiz 51 Foundation Topics 54 Network IPS Traffic Analysis Methods 54 Stateful Content Matching 54 Protocol Decoding 55 Traffic Correlation 55 Rate Analysis 55 Packet Header Matching 56 Packet Content Matching 56 Statistical Modeling 57 Event Correlation 57 Network IPS Evasion Techniques 57 Encryption and Tunneling 58 Timing Attacks 58 Resource Exhaustion 58 Traffic Fragmentation 59 Protocol-Level Misinterpretation 59 Traffic Substitution and Insertion 60 Summary 63 References 63 Exam Preparation Tasks 64 Review All the Key Topics 64 Complete the Tables and Lists from Memory 64 Definitions of Key Terms 64 Chapter 4 Network IPS and IDS Deployment Architecture 67 Overview 67 "Do I Know This Already?" Quiz 67 Foundation Topics 70 Sensor Deployment Considerations 70 Security Considerations 70 Prevention Mode Versus Detection Mode 70 Performance Considerations 71 Virtualization Requirements 72 Network IPS Implementation Guidelines 72 Enterprise or Provider Internet Edge 73 Wide-Area Network 75 Implementing an IPS in Data Centers 78 Centralized Campus 79 Design and Implementation Resources 81 Summary 81 Exam Preparation Tasks 82 Review All the Key Topics 82 Definitions of Key Terms 82 Part II Installing and Maintaining Cisco IPS Sensors 85 Chapter 5 Integrating the Cisco IPS Sensor into a Network 87 Overview 87 "Do I Know This Already?" Quiz 87 Foundation Topics 90 Sensor Deployment Modes 90 Deploying Sensors in Promiscuous Mode 90 Deploying Sensors in Inline Interface Pair Mode 100 Deploying Sensors in Inline VLAN Pair Mode 102 Deploying Sensors in Inline VLAN Group Mode 103 Deploying Sensors in Selective Inline Analysis Mode 105 Design and Implementation Resources 107 Summary 107 Exam Preparation Tasks 108 Review All the Key Topics 108 Definitions of Key Terms 108 Chapter 6 Performing the Cisco IPS Sensor Initial Setup 111 Overview 111 "Do I Know Th
Enlarge
