Threat Protection System 3

For training/certification requests or questions, contact: training@a10networks.com

Course Description

This course provides users with the necessary skills to implement an effective threat protection system against DDoS attacks in an A10 ACOS data center environment.

 

Objectives

Students learn to:

  • Use aGalaxy to orchestrate TPS devices
  • Monitor traffic and detect attacks
  • Configure and apply mitigation strategies against the following DDoS attacks
    • volumetric
    • protocol
    • reflection
    • resource
  • Generate reports
  • Examine network traffic at the packet level

 

Class Structure

  • Classroom Discussion     50%
  • Lab Exercises     50%

 

Prerequisites

  • OSI reference model
  • Network topology and administration

 

Audience

  • Network Operations (NetOps)
  • Development Operations (DevOps)
  • Network Security (NetSec)
  • Architects (Arch)

 

Outline

TOPICLABTIME (Hours)

Overview

Types of DDoS Attacks
Mitigation Strategies

X1

Configuration

Components of A10 Threat Protection System
Deployment Topologies

X1

Attack Detection

Zones
Monitoring Traffic
Zone Escalation Process
Zone Operational Modes
Traffic Baseline

X1.5

Attack Mitigation

Incident Creation
Incident Mitigation

0.5

Traffic Rate Limiting

GLIDs
Zone-Templates
Zone Level Based Mitigation

X1

Layer 3/4 Security

TCP Security Measures
UDP Security Measures
ICMP Security Measures

X1

Layer 7 Security

DNS Security Measures
HTTP Security Measures
SSL Security Measures

X1.0

Reporting and Troubleshooting

Reports
Packet Capture
Packet Debugger

X1.0