Securing Cisco Networks with Open Source Snort (SSFSNORT) v3.0

Securing Cisco Networks with Open Source Snort (SSFSNORT) v3.0 Certification Training Course Overview

Enroll for the 4-day Securing Cisco Networks with Open Source Snort (SSFSNORT) v3.0 course from Koenig Solutions accredited by Cisco. This course helps you to understand you how to deploy Snort® in small to enterprise-scale implementations.

Through a blend of hands-on labs and interactive lectures, you will learn how to install, configure, and operate Snort in Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) modes. You’ll practice installing and configuring Snort, utilize additional software tools and define rules to configure and improve the Snort environment, and more.

Target Audience:

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Channel partners and resellers

Learning Objectives

  • Define the use and placement IDS/IPS components.
  • Identify Snort features and requirements.
  • Compile and install Snort.
  • Define and use different modes of Snort.
  • Install and utilize Snort supporting software.


Securing Cisco Networks with Open Source Snort (SSFSNORT) v3.0 (32 Hours) Download Course Contents

Live Virtual Classroom 2250
Group Training
18 - 21 Oct GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

01 - 04 Nov GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

06 - 09 Dec GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

1-on-1 Training (GTR)
4 Hours
8 Hours
Week Days

Start Time : At any time

12 AM
12 PM

GTR=Guaranteed to Run
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Special Solutions for Corporate Clients! Click here
Hire Our Trainers! Click here

Course Modules

Module 1: Detecting Intrusions with Snort 3.0
  • History of Snort
  • IDS
  • IPS
  • IDS vs. IPS
  • Examining Attack Vectors
  • Application vs. Service Recognition
Module 2: Sniffing the Network
  • Protocol Analyzers
  • Configuring Global Preferences
  • Capture and Display Filters
  • Capturing Packets
  • Decrypting Secure Sockets Layer (SSL) Encrypted Packets
Module 3: Architecting Nextgen Detection
  • Snort 3.0 Design
  • Modular Design Support
  • Plug Holes with Plugins
  • Process Packets
  • Detect Interesting Traffic with Rules
  • Output Data
Module 4: Choosing a Snort Platform
  • Provisioning and Placing Snort
  • Installing Snort on Linux
Module 5: Operating Snort 3.0
  • Topic 1: Start Snort
  • Monitor the System for Intrusion Attempts
  • Define Traffic to Monitor
  • Log Intrusion Attempts
  • Actions to Take When Snort Detects an Intrusion Attempt
  • License Snort and Subscriptions
Module 6: Examining Snort 3.0 Configuration
  • Introducing Key Features
  • Configure Sensors
  • Lua Configuration Wizard
Module 7: Managing Snort
  • Pulled Pork
  • Barnyard2
  • Elasticsearch, Logstash, and Kibana (ELK)
Module 8: Analyzing Rule Syntax and Usage
  • Anatomy of Snort Rules
  • Understand Rule Headers
  • Apply Rule Options
  • Shared Object Rule
  • Optimize Rules
  • Analyze Statistics
Module 9: Use Distributed Snort 3.0
  • Design a Distributed Snort System
  • Sensor Placement
  • Sensor Hardware Requirements
  • Necessary Software
  • Snort Configuration
  • Monitor with Snort
Module 10: Examining Lua
  • Introduction to Lua
  • Get Started with Lua
Module 11: Lab Outline
  • Capture and Analyze Packets
  • Initiate the Snort Installation
  • Complete an Installation of Snort
  • Configure and Run Snort
  • Tweak the Installation
  • Rapid Deployment with Lua
  • Integrate Snort Optimizers
  • Analyze Rule Syntax
  • Hello World Lua Style
Download Course Contents

Request More Information

Course Prerequisites
  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with firewall and IPS concepts

Recommended Training Courses




Yes, fee excludes local taxes.