DDOS

DDoS is a 2-day, instructor-led, lecture / lab course. You will learn how to deploy and configure of the Cisco Guard and Cisco Traffic Anomaly Detector distributed denial of service (DDoS) attack mitigation solutions. You will learn to recognize threats posed by DDoS attacks, select the appropriate mitigation strategies and successfully deploy Cisco DDoS mitigation solutions.

Course Contents
• Introducing DDoS
• Mitigating DDoS Attacks
• Getting Started with the Cisco Guard and Traffic Anomaly Detector
• Configuring Zones
• Diverting Traffic
• Injecting Traffic
• Understanding Cisco Guard and Traffic Anomaly Detector Reports
• Multi-Device Manager
• Cisco Guard and Traffic Anomaly Detector Module

Course Objective
After completing this course, the student will be able to:
• Describe how DDoS attacks work.
• Describe the impact of DDoS attacks on service providers and enterprises.
• Describe the deficiencies of common DDoS defense strategies.
• Describe the key features and benefits offered by the Cisco Guard.
• Describe the features and benefits offered by the Cisco Traffic Anomaly Detector.
• Describe the overall procedure for configuring a zone.
• Describe the procedure for configuring the Detector to remotely activate one or more Guard devices.
• Describe the steps for conducting zone learning on the Guard and Detector.
• Describe the methods used to divert IP traffic, also known as traffic hijacking, in the event of a DDoS attack.
• Discuss the use of BGP to cause a diversion.
• Explain when to use the policy-based routing traffic injection method.
• Describe the processes that occur during Guard and Detector DDOS attack Mitigation.
• Describe the Guard and Detectors internal packet flow process.
• Understand how the Guard performs Anti-Spoofing.
• Describe the DDOS Service Modules for the Catalyst 6500 and 7600 Router families.
• Understand the process of Traffic Hijacking and Injection.

DDOS