• |

Threat Protection System 3

For training/certification requests or questions,
contact: training@a10networks.com

All courses: System Administration 4Application Delivery Control 4 | Carrier Grade NAT 4 | SSL Inspection 4 | Threat Protection System 3

Course Description

This course provides users with the necessary skills to implement an effective threat protection system against DDoS attacks in an A10 ACOS data center environment.

 

Objectives

Students learn to:

  • Use aGalaxy to orchestrate TPS devices
  • Monitor traffic and detect attacks
  • Configure and apply mitigation strategies against the following DDoS attacks
    • volumetric
    • protocol
    • reflection
    • resource
  • Generate reports
  • Examine network traffic at the packet level

 

Class Structure

  • Classroom Discussion     50%
  • Lab Exercises     50%

 

Prerequisites

  • OSI reference model
  • Network topology and administration

 

Audience

  • Network Operations (NetOps)
  • Development Operations (DevOps)
  • Network Security (NetSec)
  • Architects (Arch)

Outline

TOPIC

LAB

TIME (Hours)

Overview

Types of DDoS Attacks
Mitigation Strategies

X

1

Configuration

Components of A10 Threat Protection System
Deployment Topologies

X

1

Attack Detection

Zones
Monitoring Traffic
Zone Escalation Process
Zone Operational Modes
Traffic Baseline

X

1.5

Attack Mitigation

Incident Creation
Incident Mitigation

 

0.5

Traffic Rate Limiting

GLIDs
Zone-Templates
Zone Level Based Mitigation

X

1

Layer 3/4 Security

TCP Security Measures
UDP Security Measures
ICMP Security Measures

X

1

Layer 7 Security

DNS Security Measures
HTTP Security Measures
SSL Security Measures

X

1.0

Reporting and Troubleshooting

Reports
Packet Capture
Packet Debugger

X

1.0