Instructs Network Operations, Development Operations, Network Security, and Architects on implementing an effective threat protection system for A10 ACOS deployments in data center environment.

Objectives

Students learn to:

  • Use aGalaxy to orchestrate TPS devices
  • Monitor traffic and detect attacks
  • Configure and apply mitigation strategies against the following DDoS attacks:
    • volumetric
    • protocol
    • reflection
    • resource
  • Generate reports
  • Examine network traffic at the packet level

Class Structure

  • Classroom Discussion     50%
  • Lab Exercises     50%

Prerequisites

  • OSI reference model
  • Network topology and administration

Audience

  • Network Operations (NetOps)
  • Development Operations (DevOps)
  • Network Security (NetSec)
  • Architects (Arch)

Outline

TOPIC

LAB

TIME (Hours)

Overview

Types of DDoS Attacks
Mitigation Strategies

X

1

Configuration

Components of A10 Threat Protection System
Deployment Topologies

X

1

Attack Detection

Zones
Monitoring Traffic
Zone Escalation Process
Zone Operational Modes
Traffic Baseline

X

1.5

Attack Mitigation

Incident Creation
Incident Mitigation

 

0.5

Traffic Rate Limiting

GLIDs
Zone-Templates
Zone Level Based Mitigation

X

1

Layer 3/4 Security

TCP Security Measures
UDP Security Measures
ICMP Security Measures

X

1

Layer 7 Security

DNS Security Measures
HTTP Security Measures
SSL Security Measures

X

1.0

Reporting and Troubleshooting

Reports
Packet Capture
Packet Debugger

X

1.0

 

For training/certification requests or questions, contact: training@a10networks.com