CCNP Security IPS 642-627 Official Cert Guide: Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti-evasive Countermeasures

Contents

  1. Do I Know This Already? Quiz
  2. Foundation Topics
  3. Network IPS Evasion Techniques
  4. Summary
  5. References
  6. Exam Preparation Tasks
  7. Complete the Tables and Lists from Memory
  8. Definitions of Key Terms

Article Description

This chapter covers the various methods used for traffic analysis using a network IPS sensor, the various evasion techniques used by attackers to bypass detection & filtering while understanding the benefits and limitations of each method to assess the risk of evasion, and the various countermeasures, tools, and choosing the best approach based on the methods used by attackers.

From the Rough Cut

CCNP Security IPS 642-627 Official Cert Guide

CCNP Security IPS 642-627 Official Cert Guide

$55.99 (Save 20%)

Exam Preparation Tasks

Exam Preparation Tasks

Review all the Key Topics

Review the most important topics from inside the chapter, noted with the Key Topic icon in the outer margin of the page. Table 3-3 lists a reference of these key topics and the page numbers on which each is found

Table 3-3 Key Topics for Chapter 3

Key Topic

Element

Description

Page Number

Table 3-1

“Do I Know This Already?” Quiz

Common Methods of Traffic Analysis

Network IPS Evasion Techniques

Common Encryption and Tunneling Evasion Techniques

Different variations of Unicode decoding

Table 3-2

Cisco IPS Evasion Tools and Anti-Evasion Features

7. Complete the Tables and Lists from Memory | Next SectionPrevious Section