This three-day course discusses the configuration of Juniper Intrusion Detection and Prevention (IDP) sensors in a typical network environment. Key topics include sensor configuration, creating and fine-tuning security policies, managing attack objects, creating custom signatures, and troubleshooting. This course is based upon IDP software version 4.0 and Security Manager 2006.1.
Through demonstrations and hands-on labs, students will gain experience in configuring, testing, and troubleshooting the IDP sensor.
Deploy an IDP sensor on the network
Monitor and understand IDP logs
Configure, install, and fine-tune IDP policies
Configure the Profiler
Troubleshoot sensor problems
Create custom signature attack objects
Configure sensors for high availability using third-party devices
This course is intended for network engineers, support personnel, reseller support, and others responsible for implementing Juniper Networks IDP products.
Intrusion Detection and Prevention Concepts
Initial Configuration of IDP Sensor
IDP Policy Basics
Configuring Additional Rulebases
Sensor Operation and Sensor Commands
Managing Attack Objects
Creating Custom Signatures
Configuring Sensors for External High Availability
This course assumes that students have basic networking knowledge and experience in the following areas:
It also assumes that students have attended the Security Manager Fundamentals (2-day) course