Securing Your Web with IronPort™ S-Series

Rev 1.3

Course Overview

This comprehensive, two-day training course covers how to install, configure, operate and maintain the S-Series. The course consists of hands-on labs, demos and presentations to help students learn technical aspects of the S-Series Web Security Appliances.

After successful completion of the course, the participant will be able to describe, configure, administer, and troubleshoot:

  • Proxy Deployments
  • Policy Layers
    • Decryption Policies
    • Routing Policies
    • Access Policies
  • URL filtering
    • Predefined URL Categories
    • Custom URL Categories
  • Time Based Policies
  • Web reputation filtering
  • The DVS Anti-malware Engine
    • Webroot
    • McAfee
  • HTTPS inspection
  • Authentication
  • Layer 4 Traffic Monitor

Audience

  • Security Architects and System Designers
  • Network Administrators and Operations Engineers
  • Network or Security Managers responsible for web security

Prerequisites

Attendees should possess the following background knowledge and skills:

  • Familiarity with TCP/IP services, including DNS, SSH, FTP, SNMP and IP routing is assumed
  • Knowledge of HTTP, HTTPS and web proxy servers is assumed.

It is helpful but not mandatory that attendees have experience with IronPort Email Security Appliances.

 

Securing Your Web with IronPort™ S-Series

Day One Agenda

Module 1 - Course & Product Overview

  • S-Series Architecture
  • Installation and configuration
  • The Setup Wizard

Module 2 - Defining Deploying Proxy Services

  • Transparent and explicit forward mode
  • Configuration and management
  • Reading the access log

Module 3 - Describing S-Series Policies

  • Policy Layers
  • Policy Objects

Module 4 - Enforcing Acceptable Use

  • Pre-defined URL filters
  • Custom URL filters
  • Time based policies

Module 5 - Defending Against Malware

  • Web Reputation
  • DVS malware scanning engine

Day Two Agenda

Module 6 - Utilizing Authentication

  • Proxy authentication
  • Configuring LDAP (basic) authentication
  • Configuring Active Directory (NTLMSSP) authentication

Module 7 - Configuring Policies

  • Decryption Policies
  • Authentication Exemptions
  • The Policy Trace Tool

Module 8 - Detecting Compromised Clients

  • Layer 4 Traffic Monitor installation and configuration
  • Layer 4 Traffic Monitor operation, logging and reporting

Module 9 - System Administration

  • Reporting
  • Monitoring
  • Configuring Access
  • Centralized configuration

Module 10 - Troubleshooting