Content

Mitigating DDoS Using Cisco Guard and Traffic Anomaly Detector v2.0

The Mitigating DDoS Using Cisco Guard and Traffic Anomaly Detector (DDOS) course describes basic deployment and configuration of the Cisco Guard and Cisco Traffic Anomaly Detector distributed denial of service (DDoS) attack mitigation solutions. You will learn to recognize threats posed by DDoS attacks, select the appropriate mitigation strategies and successfully deploy Cisco DDoS mitigation solutions.

Objectives

Upon finishing this course, you will be able to:

  • Describe how DDoS attacks work.
  • Describe the impact of DDoS attacks on service providers and enterprises.
  • Describe the deficiencies of common DDoS defense strategies.
  • Describe the key features and benefits offered by the Cisco Guard.
  • Describe the features and benefits offered by the Cisco Traffic Anomaly Detector.
  • Describe the overall procedure for configuring a zone.
  • Describe the procedure for configuring the Detector to remotely activate one or more Guard devices.
  • Describe the steps for conducting zone learning on the Guard and Detector.
  • Describe the methods used to divert IP traffic, also known as traffic hijacking, in the event of a DDoS attack.
  • Discuss the use of BGP to cause a diversion.
  • Explain when to use the policy-based routing traffic injection method.
  • Describe the processes that occur during Guard and Detector DDOS attack Mitigation.
  • Describe the Guard and Detectors internal packet flow process.
  • Understand how the Guard performs Anti-Spoofing.
  • Describe the DDOS Service Modules for the Catalyst 6500 and 7600 Router families.
  • Understand the process of Traffic Hijacking and Injection

Importance

The course is highly recommended to personnel involved in mitigating the denial of service attacks in modern networks.

Audience

Network designers, administrators, engineers, managers, systems engineers as well as program and project managers responsible for mitigating the denial of service attacks in their networks.

Prerequisite Knowledge

  • Interconnecting Cisco Network Devices (ICND)
  • Foundation-level network knowledge and skills necessary to install, configure, operate, and troubleshoot network devices and applications
  • Basic knowledge of Cisco IOS networking and concepts
  • Foundation-level network security knowledge and skills necessary to install, configure, operate, and troubleshoot network security devices and applications including firewalls, intrusion detection systems, and intrusion prevention systems
  • Understanding of routing protocols and functionality including the BGP routing protocol.

    • Course Outline

  • Mitigating DDoS Attacks
  • Getting Started with the Cisco Guard and Traffic Anomaly Detector
  • Configuring Zones
  • Diverting Traffic
  • Injecting Traffic
  • Mitigation at Work
  • Understanding Cisco Guard and Traffic Anomaly Detector Reports
  • Multi-Device Manager
  • Cisco Guard and Traffic Anomaly Detector Module

    The Mitigating DDoS Using Cisco Guard and Traffic Anomaly Detector course is offered as 2-day course with hands-on exercises.

    • Right sidebar

    Associated Products

    DDOS

    Classroom Training

     

    Details
    •  

    Get More Info

    More To Discover