insoft

Cisco-opplæring

Insoft Services er en av få opplæringsleverandører i EMEAR som tilbyr hele spekteret av Cisco-sertifisering og spesialisert teknologiopplæring.

Les mer

Cisco Sertifisering

Opplev en blandet læringstilnærming som kombinerer det beste av instruktørledet opplæring og e-læring i eget tempo for å hjelpe deg med å forberede deg til sertifiseringseksamen.

Les mer

Cisco Learning Credits

Cisco Learning Credits (CLC) er forhåndsbetalte opplæringskuponger innløst direkte med Cisco som gjør planleggingen for suksessen din enklere når du kjøper Cisco-produkter og -tjenester.

Les mer

Etterutdanning

Cisco Continuing Education Program tilbyr alle aktive sertifiseringsinnehavere fleksible alternativer for å resertifisere ved å fullføre en rekke kvalifiserte opplæringselementer.

Les mer

Cisco Digital Learning

Sertifiserte ansatte er verdsatte eiendeler. Utforsk Ciscos offisielle digitale læringsbibliotek for å utdanne deg gjennom innspilte økter.

Les mer

Cisco Business Enablement

Cisco Business Enablement Partner Program fokuserer på å skjerpe forretningsferdighetene til Cisco Channel Partners og kunder.

Les mer

Cisco opplæringskatalog

Les mer

Fortinet Sertifisering

Fortinet Network Security Expert (NSE)-programmet er et opplærings- og sertifiseringsprogram på åtte nivåer for å lære ingeniører om nettverkssikkerheten for Fortinet FW-ferdigheter og -erfaring.

Tekniske kurs

Fortinet-opplæring

Insoft er anerkjent som Fortinet Autorisert Opplæringssenter på utvalgte steder i EMEA.

Les mer

Fortinet opplæringskatalog

Utforsk et bredt utvalg av Fortinet Schedule på tvers av forskjellige land så vel som online kurs.

Les mer

ATC-status

Sjekk atc-statusen vår på tvers av utvalgte land i Europa.

Les mer

Pakker for Fortinet-tjenester

Insoft Services har utviklet en spesifikk løsning for å effektivisere og forenkle prosessen med å installere eller migrere til Fortinet-produkter.

Les mer

Microsoft-opplæring

Insoft Services gir Microsoft opplæring i EMEAR. Vi tilbyr Microsofts tekniske opplærings- og sertifiseringskurs som ledes av instruktører i verdensklasse.

Tekniske kurs

Extreme-opplæring

Lær eksepsjonell kunnskap og ferdigheter i ekstreme nettverk.

Les mer

Teknisk sertifisering

Vi tilbyr omfattende læreplan over tekniske kompetanseferdigheter om sertifiseringsprestasjonen.

Les mer

Extreme opplæringskatalog

Tekniske kurs

ATP-akkreditering

Som autorisert opplæringspartner (ATP) sørger Insoft Services for at du får de høyeste utdanningsstandardene som er tilgjengelige.

Les mer

Løsninger og tjenester

Vi tilbyr innovativ og avansert støtte for design, implementering og optimalisering av IT-løsninger. Vår kundebase inkluderer noen av de største Telcos globalt.

Les mer

Globalt anerkjent team av sertifiserte eksperter hjelper deg med å gjøre en jevnere overgang med våre forhåndsdefinerte konsulent-, installasjons- og migrasjonspakker for et bredt spekter av Fortinet-produkter.

Om oss

Insoft Tilbyr autoriserte opplærings- og konsulenttjenester for utvalgte IP-leverandører. Finn ut hvordan vi revolusjonerer bransjen.

Les mer
  • +47 23 96 21 03
  • Registrer

    • Network Forensics Administration

    Enroll Now
    Duration
    1 Dag
    Delivery
    (Online Og På stedet)
    Price
    Pris på forespørsel

    This entry-level course covers deployment options, basic administration, and configuration of the integrated Trellix technologies for the Trellix Network Forensics appliances—Packet Capture and Investigation Analysis.

     

    Hands-on activities include post-installation tasks, system health checks, pairing a Packet Capture appliance with the Investigation Analysis system, daily system administration tasks, configuring Event Based Capture, and integration of another Trellix system for alerts.

    • Provide an overview of Packet Capture and Investigation Analysis appliances.
    • Describe the common deployment of Packet Capture and Investigation Analysis in the context of other Trellix products and services.
    • Access the various administration interfaces for Packet Capture and Investigation Analysis.
    • Perform primary management and administration tasks for Packet Capture and Investigation Analysis.
    • Configure and integrate Packet Capture and Investigation Analysis with various supported Trellix technologies.

    1. Appliance Overview and Network Placement

    • Packet Capture
    • Packet Capture: Deployments
    • Investigation Analysis
    • Investigation Analysis: Deployments
    • Network Forensics: Appliance relationship
    • Basic hardware components
    • Network Forensics integrations overview
    • Lab: Start up the training environment

    2. Network Forensics Administration Interfaces

    • Network Forensics administration interfaces
    • CLI via SSH
    • CLI via the IPMI
    • Accessing admin-level commands
    • Configuration mode
    • Accessing the Web UI
    • Lab: Configure Packet Capture (PX)
    • Lab: Configure Investigation Analysis (IA)

    3. Network Forensics Administration Tasks

    • Identity management
    • Authentication
    • CLI authentication type
    • CAC/PIV authentication
    • Local users and roles
    • System management
    • Processes
    • Restarting processes
    • Logs
    • Web UI admin pages
    • Show command
    • IA appliance groups
    • Rules and software management
    • Uploading software on Investigation Analysis
    • Updating software from Investigation Analysis
    • Configuring and deploying EBC
    • Load management
    • PX metadata filtering
    • DNS aggregation management
    • Lab: Pair Packet Capture and Investigation Analysis

    4. Configuring Trellix Integrations

    • Packet Capture and Helix
    • Packet Capture and Threat Intelligence
    • Packet Capture and Network Security
    • Investigation Analysis and Packet Capture
    • Investigation Analysis and Trellix alert aggregation
    • Investigation Analysis and Malware Analysis
    • Utilizing Network Security as a sensor
    • Investigation Analysis and Endpoint Security (HX for host metadata)
    • Lab: Set up Network Forensics aggregated alerts with an integrated Trellix system

    Network security professionals and system administrators who operate and administer Trellix Packet Capture and Investigation Analysis appliances and integrate them with other Trellix technologies.

    A working understanding of the command line interface (CLI) and the Linux Operating system, and familiarity with network security.

    Overview

    This entry-level course covers deployment options, basic administration, and configuration of the integrated Trellix technologies for the Trellix Network Forensics appliances—Packet Capture and Investigation Analysis.

     

    Hands-on activities include post-installation tasks, system health checks, pairing a Packet Capture appliance with the Investigation Analysis system, daily system administration tasks, configuring Event Based Capture, and integration of another Trellix system for alerts.

    • Provide an overview of Packet Capture and Investigation Analysis appliances.
    • Describe the common deployment of Packet Capture and Investigation Analysis in the context of other Trellix products and services.
    • Access the various administration interfaces for Packet Capture and Investigation Analysis.
    • Perform primary management and administration tasks for Packet Capture and Investigation Analysis.
    • Configure and integrate Packet Capture and Investigation Analysis with various supported Trellix technologies.

    1. Appliance Overview and Network Placement

    • Packet Capture
    • Packet Capture: Deployments
    • Investigation Analysis
    • Investigation Analysis: Deployments
    • Network Forensics: Appliance relationship
    • Basic hardware components
    • Network Forensics integrations overview
    • Lab: Start up the training environment

    2. Network Forensics Administration Interfaces

    • Network Forensics administration interfaces
    • CLI via SSH
    • CLI via the IPMI
    • Accessing admin-level commands
    • Configuration mode
    • Accessing the Web UI
    • Lab: Configure Packet Capture (PX)
    • Lab: Configure Investigation Analysis (IA)

    3. Network Forensics Administration Tasks

    • Identity management
    • Authentication
    • CLI authentication type
    • CAC/PIV authentication
    • Local users and roles
    • System management
    • Processes
    • Restarting processes
    • Logs
    • Web UI admin pages
    • Show command
    • IA appliance groups
    • Rules and software management
    • Uploading software on Investigation Analysis
    • Updating software from Investigation Analysis
    • Configuring and deploying EBC
    • Load management
    • PX metadata filtering
    • DNS aggregation management
    • Lab: Pair Packet Capture and Investigation Analysis

    4. Configuring Trellix Integrations

    • Packet Capture and Helix
    • Packet Capture and Threat Intelligence
    • Packet Capture and Network Security
    • Investigation Analysis and Packet Capture
    • Investigation Analysis and Trellix alert aggregation
    • Investigation Analysis and Malware Analysis
    • Utilizing Network Security as a sensor
    • Investigation Analysis and Endpoint Security (HX for host metadata)
    • Lab: Set up Network Forensics aggregated alerts with an integrated Trellix system

    Network security professionals and system administrators who operate and administer Trellix Packet Capture and Investigation Analysis appliances and integrate them with other Trellix technologies.

    A working understanding of the command line interface (CLI) and the Linux Operating system, and familiarity with network security.

      Datoer
      Date on Request

    Follow Up Courses

    Filtrer
    Kategori

    Order A-Z

    Order Z-A

    42 results

    • Drive Encryption for PC Administration
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Data Loss Prevention Network Administration
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Alert Analysis and Investigations with Network Security and Endpoint Security (HX)
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Investigations with Endpoint Security (HX)
      3 Dager
      Date on Request
      Price on Request
      Book Now

    • Investigations with Helix, Network and Endpoint Bundle (Helix, HX, NX)
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Data Loss Prevention Endpoint Complete Administration
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • EPO – ePolicy Orchestrator Administration
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Enterprise Security Manager Advanced Topics
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Threat Hunting Fundamentals
      4 Dager
      Date on Request
      Price on Request
      Book Now

    • Alert Analysis and Diagnostics with Email Security – Server
      2 Dager
      Date on Request
      Price on Request
      Book Now

    Know someone who´d be interested in this course?
    Let them know...

    Use the hashtag #InsoftLearning to talk about this course and find students like you on social media.