Cisco IPS 7.0: IPS Traffic Analysis, Countermeasures, and Deployment Architecture

This course is included in our On-demand training solution.


Network intrusion prevention system (IPS) and intrusion detection system (IDS) sensors use various techniques to analyze network traffic in order to optimally detect suspicious and malicious traffic while maintaining the desired performance levels.
These sensors can be deployed in various situations and architectures to enhance network-based protection of enterprise assets.
This course describes network IPS traffic analysis methods, evasion methods that are used by attackers to avoid detection, and common anti-evasive countermeasures that network IPS engines use to avoid false negatives. It also describes common deployment scenarios and provides design guidelines for these scenarios.

Target Audience

Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security, Cisco Certified Security Professional CCSP Certification or Cisco IPS Specialist Certification designation. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure. Candidates who have completed the Cisco Certified Network Associate Security Certification – Implementing Cisco IOS Network Security (IINS)


Expected Duration

60 min.

Course Objectives

Network IPS Traffic Analysis Methods

  • describe network IPS traffic analysis methods
  • Network IPS and IDS Deployment Architecture

  • describe network IPS evasion techniques
  • Sensor Deployment Considerations

  • recognize where to deploy network IDS and IPS sensors
  • Implementing IPS at the Enterprise Internet Edge

  • select an appropriate IPS Internet edge network integration method for a particular scenario
  • describe firewall integration methods for network IPS at the enterprise Internet edge
  • WANs, Data Centers and Centralized Sensor Deployment

  • identify key considerations for deploying network IDS and IPS sensors in an enterprise WAN
  • identify key considerations for deploying network IDS and IPS sensors in enterprise data centers
  • recognize how to plan centralized sensor deployments in enterprise campus networks