Implementing Cisco Intrusion Prevention System v6.0

The Implementing Cisco Intrusion Prevention Systems (IPS) course provides the knowledge and skills needed to design, install, configure, and maintain a Cisco IPS sensor and other Cisco IPS devices for small, medium, and enterprise networks. The course also describes the procedures for managing intrusion prevention system (IPS) alarms.


Upon finishing this course, you will be able to:
Explain how the Cisco IPS protects network devices from attacks

  • Install and configure the basic settings on a Cisco IPS 4200 Series Sensor
  • Use the Cisco IDM to configure built-in signatures to meet the requirements of a given security policy
  • Configure some of the more advanced features of the Cisco IPS product line
  • Initialize and install into your environment the rest of the Cisco IPS family of products
  • Use the CLI and the Cisco IDM to obtain system information, and configure the Cisco IPS sensor to allow an SNMP NMS to monitor the Cisco IPS sensor


The IPS course is a prerequisite for all students involved in planning, designing, deploying and operating firewall systems that include Cisco Intrusion Prevention solutions.


The primary audience for this course comprises network designers and network security administrators.
The secondary audience for this course includes network administrators, network engineers and systems engineers.

Prerequisite Knowledge

CCNA certification or the equivalent knowledge (optional)

  • Basic knowledge of the Windows operating system
  • Familiarity with the networking and security terms and concepts

Course Outline

Intrusion Prevention Overview

  • Explaining Intrusion Prevention
  • Examining Cisco IPS Products
  • Examining Cisco IPS Sensor Software Solutions
  • Examining Evasive Techniques

  • Installation of a Cisco IPS 4200 Series Sensor
    • Installing a Cisco IPS Sensor Using the CLI
    • Using the Cisco IDM
    • Configuring Basic Sensor Settings

    Cisco IPS Signatures
    • Configuring Cisco IPS Signatures and Alerts
    • Examining the Signature Engines
    • Customizing Signatures

    Advanced Cisco IPS Configuration
    • Performing Advanced Tuning of Cisco IPS Sensors
    • Monitoring and Managing Alarms
    • Configuring a Virtual Sensor
    • Configuring Advanced Features
    • Configuring Blocking

    Additional Cisco IPS Devices
    • Installing the Cisco Catalyst 6500 Series IDSM-2
    • Initializing the Cisco ASA AIP-SSM

    Cisco IPS Sensor Maintenance
    • Maintaining Cisco IPS Sensors
    • Managing Cisco IPS Sensors
    The Implementing Cisco Intrusion Prevention System course is offered as 4-day course with hands-on exercises.