CCVP TRAINING INDIA,CCVP BOOT CAMP TRAINING INDIA,CCVP CERTIFICATION TRAINING INDIA,BEST CCVP TRAINING INDIA,CCVP TRAINING BANGLORE,CCVP TRAINING RIYAD,CCVP TRAINING BAHRAIN,CCVP TRAINING HYDERABAD,CCVP TRAINING LONDON,CCVP TRAINING DUBAI,CCVP TRAINING SUDAN,CCVP TRAINING YEMEN,CCVP TRAINING NIGERIA,CCVP TRAINING QATAR,CCVP TRAINING OMAN,CCIE VOICE TRAINING INDIA,CCIE VOICE TRAINING BANGLORE,CCIE VOICE TRAINING HYDERABAD,CCIE VOICE OMAN,CCIE VOICE TRAINING LONDON,CCIE VOICE LAB TRAINING INDIA,CCSP TRAINING INDIA,CCSP TRAINING BANGLORE,CCNA TRAINING INDIA,CCNP TRAINING INDIA,CCNP TRAINING BANGLORE,CCIE SECURITY TRAINING INDIA,CCIE SECURITY TRAINING BANGLORE,CCIE SECURITY TRAINING HYDERABAD,IPCC TRAINING INDIA,CVPI TRAINING INDIA,CUCM TRAINING INDIA,VOICE TRAINING INDIA

Instant Messengers. Networldz99@yahoo.com Networldz99@hotmail.com Networldz99@gmail.com

Home | Feedback | Sitemap | Contact Us

HYDERABAD

+91-9000544423
+9140 - 40045060

BANGALORE

Email : info@networldz.com

INTERNATIONAL STUDENTS

CONSULTING

RACK RENTAL

CCNA TRAINING INDIA,CCNA TRAINING BANGLORE,CCNA TRAINING HYDERABAD,CCNA TRAINING CHENNAI,CCNA TRAINING BOMBAY,CCNA TRAINING DELHI,CCNP TRAINING INDIA,CCSP TRAINING INDIA,CCVP TRAINING INDIA,CCVP TRAINING BANGLORE,CCVP TRAINING HYDERABAD,CCVP TRAINING CHENNAI,CCVP TRAINING BOMBAY,CCVP TRAINING DELHI,IPCC TRAINING INDIA,IPCC ENTERPRISE TRAINING INDIA,IPCC TRAINING BANGLORE,IPCC TRAINING HYDERABAD.IPCC TRAINING DUBAI,CCVP TRAINING RIYAD,CCVP TRAINING OMAN,CCSP TRAINING OMAN,CCIP TRAINING HYDERABAD,CVPI TRAINING OMAN,CVPI TRAINING BANGLORE,CCNA VOICE TRAINING INDIA,CCNA VOICE TRAINING HYDERABAD,VOICE TRAINING INDIA,VOICE TRAINING BANGLORE,VOICE TRAINING DUBAI,VOICE TRAINING RIYAD,CISCO CERTIFICATION TRAINING,INDIA,VOCIE TRAINING OMANSECURITY TRAINING BANGLORE,SECURITY TRAINING HYDERABAD,SECURITY TRAINING INDIA,CCVP TRAINING LONDON,CCIE VOCIE TRAINING INDIA,BEST CCIE VOICE TRAINING INDIA,GOOD CCIE VOICE TRAINING INDIA,CCIE SECURITY TRAINING INDIA,CCIE VOICE TRAINING BANGLORE,CCIE VOICE TRAINING HYDERABAD,CISCO ICM TRAINING INDIA,ICM TRAINING BANGLORE,ICM TRAINING HYDERABAD.UNITY TRAINING INDIA,UNITY TRAINING BANGLORE.

News@ CISCO

Hertford Regional College Cuts Cost and Carbon Using Cisco Technology
Cisco Honored by California Governor and First Lady for Commitment to Volunteer Service
Inaugural Cisco Networkers Event in the Middle East a Resounding Success
CA Technologies and Cisco Collaborate to Optimize Virtualized Data Center Management Capabilities
Tata Communications Support Demands for High-Bandwidth Services by Enhancing Carrier Ethernet IP NGN
WIPRO,CISCO and LAVASA Collaborate to Develop India\'s First Sustainable, Intelligent and Connected City
CISCO and TATA Communications Choreograph Dancers\' Reunion over TelePresence
TATA Communications to Provide Managed TelePresence Services to Hannover Re
Cisco Hands Over More Than 500 Houses To The Government of Karnataka In Raichur To Mark Its Commitment To Support Rehabilitation Of Flood-Affected Areas
Global Study Shows a Shift in the Benefits of Video Collaboration, Beyond Cost and Travel Reductions
Cisco Inaugurates First TelePresence Room in Peru
Cisco to Present Research on Cloud Computing, Virtualization and Data Center Trends
NETWORLDZ announcess the launch of latest CCNP VOICE (8.0)/CCVP certification training in BANGALORE and HYDERABAD
Cisco Introduces Virtual Classroom Instruction Specialist Certification
Reliance Communications Ushers in Next-Generation Mobile Internet Services With Cisco MOVE Solutions
Cisco Learning Labs Provide Hands-On Training for Cisco IOS Routing and Core Switching

Examination Info.

CISCO Training Course Details

MARS v3.0 - Cisco Security Monitoring, Analysis and Response System

Duration:

Description

The Cisco Security Monitoring Analysis and Response System (CS-MARS) is part of the Cisco Security Management Suite which provides security monitoring for network security devices and host application made by Cisco or non-Cisco providers. In addition to event correlation and data reduction features found in SIM products, CS-MARS also provides topology awareness and automatic mitigation features. In knowing the topology of a network, CS-MARS can determine where the attack is originating and apply the appropriate remediation. CS-MARS is a key component in the Cisco Self Defending Network strategy. CS-MARS exchanges information with CS-Manager to provide a unified security management solution. For example, an administrator can view IPS signatures or the Firewall block / permit syslog messages received from sensors or firewalls. CS-MARS will communicate with CS-Manager and display the IPS signature table or firewall rule table. From there the IPS signature or firewall rule can be modified as necessary. Together CS-MARS and CS-Manager provide a unified management solution for monitoring and provisioning.

Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

Use CS-MARS to monitor security and host application devices.
Know CS-MARS architecture and how CS-MARS process events.
Know how to use archive and restore features.
Use CS-MARS to run / create / customize reports
Use CS-MARS to investigate an incident and mitigate the security threats.
Use CS-MARS to do customer parser for unknown devices in CS-MARS.
Use CS-MARS to create / customize rules that detects dark net through best practices example.
Know how to tune signature / log level on device side and CS-MARS side.

Prerequisites

Cisco CCSP certified or equivalent knowledge
Passage of the Securing Cisco IOS Networks (SECUR) exam (642-501), the Securing Networks with Cisco Routers and Switches (SNRS) exam (642-502), or both
At least six months of practical experience configuring Cisco routers and security products
Familiarity with implementing network security policies and these networking components and concepts:
- Perimeter security system components: Perimeter router, firewall, intrusion prevention system (IPS), virtual private network (VPN), and demilitarized zone (DMZ) host
- Servers: Cisco Security Manager; syslog; authentication, authorization, and accounting (AAA); Cisco Secure Access Control Server (Cisco Secure ACS); and FTP
- Protocols: syslog, Simple Network Management Protocol (SNMP), Secure Shell (SSH), FTP, and Telnet

Who Should Attend

Engineers who support sales of Cisco security product solutions
Cisco channel partners who sell, implement, and maintain secure networks
Cisco customers who implement and maintain secure networks

Course Outline

Lesson 1:Introducing Cisco Security Monitoring, Analysis, and Response System
- Effective Security Monitoring and Management
- Cisco Self-Defending Network and the Role of Cisco Security MARS
- Cisco Security MARS
- Cisco Security MARS Terminology
- Cisco Security MARS Technologies
- Cisco Security MARS User Interface
- Cisco Security MARS Product Portfolio
Lesson 2:Understanding the System Architecture
- Cisco Security MARS Software Components
- Cisco Security MARS Process Flow Details
Lesson 3:Configuring a Cisco Security MARS Appliance
- Initial Cisco Configuration Overview
- Scenario: Configuration Tasks
- Deployment Planning Guidelines
Lesson 4:Adding Reporting and Mitigation Devices
- Overview of Reporting and Mitigation Devices
- Scenario: Adding a Cisco Reporting Device and Enabling NetFlow
- Data-Enabling Features of Cisco Security MARS
- Integrating Cisco Security MARS with Third-Party Applications
Lesson 5:Viewing the Summary Page
- Summary Page Overview
- Dashboard
- Network Status
- My Reports
- Scenario: Getting Information from the Summary Page
Lesson 6:Managing Rules
- Rules Overview
- Working with System and User Inspection Rules
- Working with Drop Rules
- Rule Groups Overview
Lesson 7:Understanding Queries and Reports
- Query Page
- Scenario: Configuring a Query
- Reports Page
- Scenario: Configuring a System Report
Lesson 8:Investigating and Mitigating Incidents
- Incidents Overview
- Incidents
- Scenario: Role of Cisco Security MARS in Your Network
- False Positives
- Case Management
- Scenario: Configuring a Case to Track an Incident
- Configuring Notifications
- Case Study: Preventing the W32 Blaster Worm
Lesson 9:Working with User-Defined Log Parser Templates
- Overview of User-Defined Log Parser Templates
- Scenario: Configuring a Customer Parser
Lesson 10:Integrating with Cisco Security Manager
- Overview of Cisco Security Manager Policy Table Lookup
- Scenario: Invoking Cisco Security Manager Policy Table Lookup from Cisco Security MARS
Lesson 11:Managing and Administering the System
- Management Overview
- Overview of System Maintenance Tasks
- IPS Signature Dynamic Update Settings
- Upgrading the Cisco Security MARS Appliance Software
- Migrating Data from Cisco Security MARS 4.3.x to 5.3.x
Lesson 12:Troubleshooting and Optimizing Cisco Security MARS
- Hardware Installation Issues
- Device Configuration Issues
- Global Controller-to-Local Controller Communications
- Sizing Cisco Security MARS Deployment
- Tuning Cisco Security MARS
- Securing Cisco Security MARS
Lesson 13:Using the Cisco Security MARS Global Controller
- Cisco Security MARS Global Controller Overview
- Configuring the Cisco Security MARS Global Controller
- Summary Tab
- Incidents Tab
- Queries and Reports
- Rules Tab
- Management Tab
- System Maintenance Tab
Lesson 14:Course Review: Cisco Security MARS at Work
- Cisco Security MARS At Work

Back

Top

	CCNA Training India \| CCNP Training India \| CCVP Training India \| CCSP Training India \| IPCC Training India \| CCVP Training Banglore \| CCVP Training Hyderabad \| CCIE Voice Training India \| CCIE Voice Training Banglore \| Best CCIE Training India Home \| Class Schedule \| Client List \| Certifications \| Locations \| About Networldz
	Copyright © 2010 Networldz. All rights reserved. \| Terms of Use \| Privacy Policy.	Designed & developed by MediaPoint.