firesight

The video walks you through basic configuration of Intrusion Policy on Cisco ASA FirePower. We begin by explaining significance of the use of Variable Set, the concept of Base Policy, and various settings in an Intrusion Rule. We will adjust some of an Intrusion Rule settings including, Threshold, Suppression, and Dynamic State, and observe how they effect the rule behavior using ICMP Reply Undefined Code rule as our example.

The video demonstrates Cisco ASA FirePower ability to perform Malware file detection and blocking. We will look at how a file is determined to contain malware, specifically executable files. We will attempt to submit a file with unknown disposition for further cloud analysis, explain the meaning of threat score, and review file analysis report. Finally, we will introduce you to Clean and Detection list and how they can be used to overwrite the default malware detection behavior. 

The video demonstrates Cisco ASA FirePower ability to perform Malware file detection and blocking. We will look at how a file is determined to contain malware, specifically executable files. We will attempt to submit a file with unknown disposition for further cloud analysis, explain the meaning of threat score, and review file analysis report. Finally, we will introduce you to Clean and Detection list and how they can be used to overwrite the default malware detection behavior. 

The video introduces you to file policy used to perform file type filtering, and detection on Cisco ASA FirePower. Our lab scenarios include blocking and detecting file upload and download through Sharepoint web application and FTP protocol, as well as the ability to capture files. A caveat of having a file transfer in a HTTPS session is also demonstrated.

The video introduces you to file policy used to perform file type filtering, and detection on Cisco ASA FirePower. Our lab scenarios include blocking and detecting file upload and download through Sharepoint web application and FTP protocol, as well as the ability to capture files. A caveat of having a file transfer in a HTTPS session is also demonstrated.

The video demonstrates URL and Web category filtering capability on Cisco ASA FirePower. We will look at the difference between Block and Interactive Block on regular web traffic and their caveats on HTTPS traffic. We will also be spending time on customizing HTTP response page and its limitation.

The video demonstrates URL and Web category filtering capability on Cisco ASA FirePower. We will look at the difference between Block and Interactive Block on regular web traffic and their caveats on HTTPS traffic. We will also be spending time on customizing HTTP response page and its limitation.

The video shows you how to create an custom application detector on Cisco ASA FirePower. We will be simulating a custom business application using a TCP/IP Server/Client tool, perform a WireShark packet capture, and attempt to construct an application detector to match it. If you have an application that is not supported by the FireSight System and would like to build an access-control around it, this is a video to watch.

The video shows you how to create an custom application detector on Cisco ASA FirePower. We will be simulating a custom business application using a TCP/IP Server/Client tool, perform a WireShark packet capture, and attempt to construct an application detector to match it. If you have an application that is not supported by the FireSight System and would like to build an access-control around it, this is a video to watch.

The video demonstrates Cisco ASA FirePower capability to perform traffic filtering based on application and application categories. Some of the applications used in our scenarios are RDP, Bit Torrent, Facebook, and Social Networking. We will also touch upon the significance of HTTPS traffic and how it affects FirePower capability to analyze traffic.