|
 Registration form    |
|
|
Patriot Technologies, Inc. |
|
|
9:00 a.m. - 5:00 p.m. |
|
Product Versions
- SiteProtector 2.0 SP 6
- Network Sensor 7.0/Server Sensor 7.0 SR 4.3
Course Description
The Introduction to Proventia Network Intrusion Prevention System System course provides concepts, methods and practices necessary to successfully use Proventia Network IPS with the SiteProtector management tool.
Starting with an introduction to the SiteProtector architecture and the different components, students will learn about the role of each component and how they act in concert to monitor and protect a real-world network. Students will learn how to install and configure SiteProtector, as well as how to monitor network assets in the SiteProtector environment.
The course provides in-depth practices necessary to successfully manage Proventia Network IPS appliances, focusing on hands-on exercises supported by demonstrations, presentations and lecture. Students will learn about the appliance's operational modes and how to properly deploy the appliance in a high availability environment. Students will also master managing and configuring a Proventia Network IPS appliance and security monitoring and analyzing.
Key Instructional Focus and Objectives
- Installing and configuring SiteProtector components: Deployment Manager, Application Server, Site Database, Event Collector, Agent Manager, X-Press Update Server
- Deploying SiteProtector components on a network
- SiteProtector user groups and permissions
- SiteProtector console to monitor security events, and to manage SiteProtector components
- SiteProtector Web portal to monitor security events and run reports
- SiteProtector and network assets to facilitate effective management and analysis
- Best practices user events, analysis views, guided analysis tools, data filters, incidents/exceptions, and baselining
- SiteProtector reporting module to schedule and run reports
- Configuring SiteProtector components and X-Press Updates to SiteProtector
- Manage the Proventia Network IPS, including configuring Proventia Network IPS to communicate with and be managed by SiteProtector
- Describe predefined appliance responses and configure response objects
- Configure protection domains and various types of security events for Proventia Network IPS
- Configure connection events, firewall settings, and user defined events in the appliance policy
- Tune advanced parameters for Proventia Network IPS
- Use Proventia Manager to manage and monitor Proventia Network IPS
Key Hands-on Lab Focus and Objectives
- Installing and configuring SiteProtector components: Deployment Manager, Application Server, Site Database, Event Collector, Agent Manager, X-Press Update Server, RealSecure Network Sensor, RealSecure Server Sensor, and Internet Scanner
- Using the SiteProtector Console to monitor event data, and manage sensors and scanner.
- Applying X-Press Updates to SiteProtector components, sensors, and scanners
- Creating Analysis views and data filters
- Creating a Baseline view
- Displaying detailed information about security events
- Creating incidents and exceptions
- Exporting Analysis view data
- Running Site and Enterprise reports
- Using the Policy Editor to configure policies and responses
- Configuring Network Sensor security events and filters
- Configuring Server Sensor security events and dynamic blocking
- Configuring predefined and user defined sensor responses
- Configuring event propagation settings
- Applying policies to sensors and groups
- Running a discovery scan and a vulnerability scan
Who Should Attend
Network and security professionals evaluating, implementing, managing, or monitoring ISS Proventia Intrusion Prevention System or Proventia Management SiteProtector.
Prerequisites
Working knowledge of TCP/IP and Windows 2000/2003 Server.
