Vendor: Cisco
Mode :On Demand Digital
Level: Professional
Exam: SNCF 300-710
Exam at your place: yes, ask for a quote
Duration: Self Paced
Language: English

SKU: SSNGFW-DL Categories: , ,

Course Price

CHF 1'000.00

(excl. VAT)

Discount available for multiple students and dedicated classes.

What you’ll learn

The Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW) course instructs participants on the deployment and utilization of the Cisco Firepower® Threat Defense system. Through practical exercises, the course equips individuals with the knowledge and skills necessary for the configuration and utilization of Cisco® Firepower Threat Defense technology. The training covers various aspects, starting from the initial setup and configuration of the device, encompassing routing, high availability, migration from Cisco Adaptive Security Appliance (ASA) to Cisco Firepower Threat Defense, traffic control, and Network Address Translation (NAT).
Participants will gain insights into the implementation of advanced features of Next-Generation Firewall (NGFW) and Next-Generation Intrusion Prevention System (NGIPS). This includes aspects such as network intelligence, file type detection, network-based malware detection, and deep packet inspection. Additionally, the course covers the configuration of site-to-site VPN, remote-access VPN, and SSL decryption. The curriculum progresses to detailed analysis, system administration, and troubleshooting.
Successful completion of this course prepares individuals for the Securing Networks with Cisco Firepower (300-710 SNCF) exam, leading to CCNP Security and Cisco Certified Specialist–Network Security Firepower certifications. The 300-710 SNCF exam has an additional preparation course, Securing Networks with Cisco Firepower Next-Generation Intrusion Prevention System (SSFIPS), and participants can take these courses in any sequence. Moreover, completion of this course earns participants 40 Continuing Education (CE) credits, contributing towards recertification.

Who should enroll

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Cisco integrators and partners

Technology areas

  • Security

Training overview


To fully benefit from this course, you should have:

  • Knowledge of TCP/IP and basic routing protocols
  • Familiarity with firewall, VPN, and Intrusion Prevention System (IPS) concepts


  • Cisco Firepower Threat Defense Overview
    • Examining Firewall and IPS Technology
    • Firepower Threat Defense Features and Components
    • Examining Firepower Platforms
    • Examining Firepower Threat Defense Licensing
    • Cisco Firepower Implementation Use Cases
  • Cisco Firepower NGFW Device Configuration
    • Firepower Threat Defense Device Registration
    • FXOS and Firepower Device Manager
    • Initial Device Setup
    • Managing NGFW Devices
    • Examining Firepower Management Center Policies
    • Examining Objects
    • Examining System Configuration and Health Monitoring
    • Device Management
    • Examining Firepower High Availability
    • Configuring High Availability
    • Cisco ASA to Firepower Migration
    • Migrating from Cisco ASA to Firepower Threat Defense
  • Cisco Firepower NGFW Traffic Control
    • Firepower Threat Defense Packet Processing
    • Implementing QoS
    • Bypassing Traffic
  • Cisco Firepower NGFW Address Translation
    • NAT Basics
    • Implementing NAT
    • NAT Rule Examples
    • Implementing NAT
  • Cisco Firepower Discovery
    • Examining Network Discovery
    • Configuring Network Discovery
  • Implementing Access Control Policies
    • Examining Access Control Policies
    • Examining Access Control Policy Rules and Default Action
    • Implementing Further Inspection
    • Examining Connection Events
    • Access Control Policy Advanced Settings
    • Access Control Policy Considerations
    • Implementing an Access Control Policy
  • Security Intelligence
    • Examining Security Intelligence
    • Examining Security Intelligence Objects
    • Security Intelligence Deployment and Logging
    • Implementing Security Intelligence
  • File Control and Advanced Malware Protection
    • Examining Malware and File Policy
    • Examining Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
    • Examining Intrusion Prevention and Snort Rules
    • Examining Variables and Variable Sets
    • Examining Intrusion Policies
  • Site-to-Site VPN
    • Examining IPsec
    • Site-to-Site VPN Configuration
    • Site-to-Site VPN Troubleshooting
    • Implementing Site-to-Site VPN
  • Remote-Access VPN
    • Examining Remote-Access VPN
    • Examining Public-Key Cryptography and Certificates
    • Examining Certificate Enrollment
    • Remote-Access VPN Configuration
    • Implementing Remote-Access VPN
  • SSL Decryption
    • Examining SSL Decryption
    • Configuring SSL Policies
    • SSL Decryption Best Practices and Monitoring
  • Detailed Analysis Techniques
    • Examining Event Analysis
    • Examining Event Types
    • Examining Contextual Data
    • Examining Analysis Tools
    • Threat Analysis
  • System Administration
    • Managing Updates
    • Examining User Account Management Features
    • Configuring User Accounts
    • System Administration
  • Cisco Firepower Troubleshooting
    • Examining Common Misconfigurations
    • Examining Troubleshooting Commands
    • Firepower Troubleshooting

Information request
Please enable JavaScript in your browser to complete this form.
Your Name
How did you find us?
This site uses cookies to offer you a better browsing experience. By browsing this website, you agree to our use of cookies.