Home > Articles > Cisco Certification > CCNP > CCNP Security IPS 642-627 Official Cert Guide: Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti-evasive Countermeasures

CCNP Security IPS 642-627 Official Cert Guide: Network IPS Traffic Analysis Methods, Evasion Possibilities, and Anti-evasive Countermeasures

  • Date: Jul 18, 2011.

Article Description

This chapter covers the various methods used for traffic analysis using a network IPS sensor, the various evasion techniques used by attackers to bypass detection & filtering while understanding the benefits and limitations of each method to assess the risk of evasion, and the various countermeasures, tools, and choosing the best approach based on the methods used by attackers.
Exam Preparation Tasks

Exam Preparation Tasks

Review all the Key Topics

Review the most important topics from inside the chapter, noted with the Key Topic icon in the outer margin of the page. Table 3-3 lists a reference of these key topics and the page numbers on which each is found

Table 3-3 Key Topics for Chapter 3

Key Topic

Element

Description

Page Number

Table 3-1

“Do I Know This Already?” Quiz



Common Methods of Traffic Analysis



Network IPS Evasion Techniques



Common Encryption and Tunneling Evasion Techniques



Different variations of Unicode decoding


Table 3-2

Cisco IPS Evasion Tools and Anti-Evasion Features


7. Complete the Tables and Lists from Memory | Next Section Previous Section

Cisco Press Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from Cisco Press and its family of brands. I can unsubscribe at any time.