Cisco Firepower Threat Defense (FTD): Configuration and Troubleshooting Best Practices for the Next-Generation Firewall (NGFW), Next-Generation ... (AMP) (Networking Technology: Security)
暫譯: Cisco Firepower 威脅防禦 (FTD):下一代防火牆 (NGFW) 的配置與故障排除最佳實踐 (AMP) (網路技術:安全性)
Nazmul Rajib
- 出版商: Cisco Press
- 出版日期: 2017-12-04
- 定價: $2,450
- 售價: 9.0 折 $2,205
- 語言: 英文
- 頁數: 800
- 裝訂: Paperback
- ISBN: 1587144808
- ISBN-13: 9781587144806
-
相關分類:
Cisco、資訊安全
-
相關翻譯:
Cisco Firepower 威脅防禦 (FTD) 設備的高級排錯與配置 (簡中版)
立即出貨 (庫存 < 3)
買這商品的人也買了...
-
資訊安全管理-防火牆與網路安全 (Firewalls and Internet Security: Repelling the Wily Hacker, 2/e)$620$496 -
JavaScript 大全, 6/e (JavaScript: The Definitive Guide: Activate Your Web Pages, 6/e)$1,200$948 -
$301大型網站技術架構 -- 核心原理與案例分析 -
接案我最行:jQuery 經典範例必殺技$480$408 -
Speaking JavaScript|簡明完整的 JS 精要指南 (Speaking JavaScript)$780$616 -
$352大型IT系統性能測試入門經典 -
$403零成本實現 Web 性能測試 : 基於 Apache JMeter 和 Gatling -
$403Zabbix 監控系統深度實踐, 2/e -
$352區塊鏈技術指南 -
$277LoadRunner 12七天速成寶典 -
$560Node.js 硬實戰:115個核心技巧 (Node.js in Practice) -
外掛 OUT! jQuery 高手精技$450$383 -
Effective SQL 中文版 | 寫出良好 SQL 的 61個具體做法 (Effective SQL : 61 Specific Ways to Write Better SQL)$450$356 -
$265Web API 的設計與開發 (Web API : the Good Parts) -
Docker 這樣學才有趣:從入門,到玩直播、挖礦$450$297 -
$199CSS重構樣式表性能調優 -
$403Vue.js 實戰 -
$352Yii框架深度剖析 -
$296前端工程師必備技能:Vue 移動開發實戰技巧 -
$352軟件性能測試學習筆記之 LoadRunner 實戰 -
$403Docker 實踐 -
前端設計範式三大天王之 Vue.js$540$459 -
飆網不設限!CDN 內容傳遞網路開發手札 (熱銷版)$520$442 -
$2,484Integrated Security Technologies and Solutions - Volume I: Cisco Security Solutions for Advanced Threat Protection with Next Generation Firewall, ... Security (CCIE Professional Development) -
無瑕的程式碼-整潔的軟體設計與架構篇 (Clean Architecture: A Craftsman's Guide to Software Structure and Design)$580$452
相關主題
商品描述
The authoritative visual guide to Cisco Firepower Threat Defense (FTD)
This is the definitive guide to best practices and advanced troubleshooting techniques for the Cisco flagship Firepower Threat Defense (FTD) system running on Cisco ASA platforms, Cisco Firepower security appliances, Firepower eXtensible Operating System (FXOS), and VMware virtual appliances.
Senior Cisco engineer Nazmul Rajib draws on unsurpassed experience supporting and training Cisco Firepower engineers worldwide, and presenting detailed knowledge of Cisco Firepower deployment, tuning, and troubleshooting. Writing for cybersecurity consultants, service providers, channel partners, and enterprise or government security professionals, he shows how to deploy the Cisco Firepower next-generation security technologies to protect your network from potential cyber threats, and how to use Firepower’s robust command-line tools to investigate a wide variety of technical issues.
Each consistently organized chapter contains definitions of keywords, operational flowcharts, architectural diagrams, best practices, configuration steps (with detailed screenshots), verification tools, troubleshooting techniques, and FAQs drawn directly from issues raised by Cisco customers at the Global Technical Assistance Center (TAC). Covering key Firepower materials on the CCNA Security, CCNP Security, and CCIE Security exams, this guide also includes end-of-chapter quizzes to help candidates prepare.
· Understand the operational architecture of the Cisco Firepower NGFW, NGIPS, and AMP technologies
· Deploy FTD on ASA platform and Firepower appliance running FXOS
· Configure and troubleshoot Firepower Management Center (FMC)
· Plan and deploy FMC and FTD on VMware virtual appliance
· Design and implement the Firepower management network on FMC and FTD
· Understand and apply Firepower licenses, and register FTD with FMC
· Deploy FTD in Routed, Transparent, Inline, Inline Tap, and Passive Modes
· Manage traffic flow with detect-only, block, trust, and bypass operations
· Implement rate limiting and analyze quality of service (QoS)
· Blacklist suspicious IP addresses via Security Intelligence
· Block DNS queries to the malicious domains
· Filter URLs based on category, risk, and reputation
· Discover a network and implement application visibility and control (AVC)
· Control file transfers and block malicious files using advanced malware protection (AMP)
· Halt cyber attacks using Snort-based intrusion rule
· Masquerade an internal host’s original IP address using Network Address Translation (NAT)
· Capture traffic and obtain troubleshooting files for advanced analysis
· Use command-line tools to identify status, trace packet flows, analyze logs, and debug messages
商品描述(中文翻譯)
Cisco Firepower 威脅防禦 (FTD) 的權威視覺指南
這是針對在 Cisco ASA 平台、Cisco Firepower 安全設備、Firepower 可擴展操作系統 (FXOS) 和 VMware 虛擬設備上運行的 Cisco 旗艦 Firepower 威脅防禦 (FTD) 系統的最佳實踐和高級故障排除技術的權威指南。
資深 Cisco 工程師 Nazmul Rajib 憑藉其在全球支持和培訓 Cisco Firepower 工程師方面的無與倫比的經驗,提供了有關 Cisco Firepower 部署、調整和故障排除的詳細知識。針對網絡安全顧問、服務提供商、渠道合作夥伴以及企業或政府安全專業人員,他展示了如何部署 Cisco Firepower 下一代安全技術,以保護您的網絡免受潛在的網絡威脅,以及如何使用 Firepower 的強大命令行工具來調查各種技術問題。
每個組織一致的章節包含關鍵詞定義、操作流程圖、架構圖、最佳實踐、配置步驟(附詳細截圖)、驗證工具、故障排除技術以及直接來自 Cisco 客戶在全球技術支援中心 (TAC) 提出的問題的常見問題解答。涵蓋 CCNA Security、CCNP Security 和 CCIE Security 考試的關鍵 Firepower 資料,本指南還包括章末測驗,以幫助考生準備。
· 了解 Cisco Firepower NGFW、NGIPS 和 AMP 技術的操作架構
· 在 ASA 平台和運行 FXOS 的 Firepower 設備上部署 FTD
· 配置和故障排除 Firepower 管理中心 (FMC)
· 在 VMware 虛擬設備上計劃和部署 FMC 和 FTD
· 設計和實施 FMC 和 FTD 的 Firepower 管理網絡
· 了解和應用 Firepower 許可證,並將 FTD 註冊到 FMC
· 在 Routed、Transparent、Inline、Inline Tap 和 Passive 模式下部署 FTD
· 使用僅檢測、阻擋、信任和旁路操作來管理流量
· 實施速率限制並分析服務質量 (QoS)
· 通過安全情報黑名單可疑的 IP 地址
· 阻擋對惡意域名的 DNS 查詢
· 根據類別、風險和聲譽過濾 URL
· 探索網絡並實施應用可見性和控制 (AVC)
· 控制文件傳輸並使用高級惡意軟體保護 (AMP) 阻擋惡意文件
· 使用基於 Snort 的入侵規則阻止網絡攻擊
· 使用網絡地址轉換 (NAT) 偽裝內部主機的原始 IP 地址
· 捕獲流量並獲取故障排除文件以進行高級分析
· 使用命令行工具識別狀態、追蹤數據包流、分析日誌和調試消息
