{"title":"Networking Technology: Security","description":null,"products":[{"product_id":"cisco-firepower-threat-defense-ftd-book-nazmul-rajib-9781587144806","title":"Cisco Firepower Threat Defense (FTD)","description":"The authoritative visual guide to Cisco Firepower Threat Defense (FTD)       This is the definitive guide to best practices and advanced troubleshooting techniques for the Cisco flagship Firepower Threat Defense (FTD) system running on Cisco ASA platforms, Cisco Firepower security appliances, Firepower eXtensible Operating System (FXOS), and VMware virtual appliances.       Senior Cisco engineer Nazmul Rajib draws on unsurpassed experience supporting and training Cisco Firepower engineers worldwide, and presenting detailed knowledge of Cisco Firepower deployment, tuning, and troubleshooting. Writing for cybersecurity consultants, service providers, channel partners, and enterprise or government security professionals, he shows how to deploy the Cisco Firepower next-generation security technologies to protect your network from potential cyber threats, and how to use Firepower’s robust command-line tools to investigate a wide variety of technical issues.       Each consistently organized chapter contains definitions of keywords, operational flowcharts, architectural diagrams, best practices, configuration steps (with detailed screenshots), verification tools, troubleshooting techniques, and FAQs drawn directly from issues raised by Cisco customers at the Global Technical Assistance Center (TAC). Covering key Firepower materials on the CCNA Security, CCNP Security, and CCIE Security exams, this guide also includes end-of-chapter quizzes to help candidates prepare.       ·        Understand the operational architecture of the Cisco Firepower NGFW, NGIPS, and AMP technologies   ·         Deploy FTD on ASA platform and Firepower appliance running FXOS   ·         Configure and troubleshoot Firepower Management Center (FMC)   ·         Plan and deploy FMC and FTD on VMware virtual appliance   ·         Design and implement the Firepower management network on FMC and FTD   ·         Understand and apply Firepower licenses, and register FTD with FMC   ·         Deploy FTD in Routed, Transparent, Inline, Inline Tap, and Passive Modes   ·         Manage traffic flow with detect-only, block, trust, and bypass operations   ·         Implement rate limiting and analyze quality of service (QoS)   ·         Blacklist suspicious IP addresses via Security Intelligence   ·         Block DNS queries to the malicious domains   ·         Filter URLs based on category, risk, and reputation   ·         Discover a network and implement application visibility and control (AVC)   ·         Control file transfers and block malicious files using advanced malware protection (AMP)   ·         Halt cyber attacks using Snort-based intrusion rule   ·         Masquerade an internal host’s original IP address using Network Address Translation (NAT)   ·         Capture traffic and obtain troubleshooting files for advanced analysis   ·         Use command-line tools to identify status, trace packet flows, analyze logs, and debug messages","brand":"WoB","offers":[{"title":"GB \/ VERY_GOOD \/ INTERNAL","offer_id":49574715064593,"sku":"GOR011083568","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ GOOD \/ SBYB","offer_id":49677214220561,"sku":"CIN1587144808G","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ GOOD \/ INTERNAL","offer_id":50114761097489,"sku":"GOR013860536","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ VERY_GOOD \/ SBYB","offer_id":51205668765969,"sku":"CIN1587144808VG","price":0.0,"currency_code":"GBP","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/1587144808.jpg?v=1769689060"},{"product_id":"cisco-ise-for-byod-and-secure-unified-access-book-aaron-woland-9781587144738","title":"Cisco ISE for BYOD and Secure Unified Access","description":"Fully updated: The complete guide to Cisco Identity Services Engine solutions   Using Cisco Secure Access Architecture and Cisco Identity Services Engine, you can secure and gain control of access to your networks in a Bring Your Own Device (BYOD) world.   This second edition of Cisco ISE for BYOD and Secure Unified Accesscontains more than eight brand-new chapters as well as extensively updated coverage of all the previous topics in the first edition book to reflect the latest technologies, features, and best practices of the ISE solution. It begins by reviewing today’s business case for identity solutions. Next, you walk through ISE foundational topics and ISE design. Then you explore how to build an access security policy using the building blocks of ISE. Next are the in-depth and advanced ISE configuration sections, followed by the troubleshooting and monitoring chapters. Finally, we go in depth on the new TACACS+ device administration solution that is new to ISE and to this second edition.   With this book, you will gain an understanding of ISE configuration, such as identifying users, devices, and security posture; learn about Cisco Secure Access solutions; and master advanced techniques for securing access to networks, from dynamic segmentation to guest access and everything in between.   Drawing on their cutting-edge experience supporting Cisco enterprise customers, the authors offer in-depth coverage of the complete lifecycle for all relevant ISE solutions, making this book a cornerstone resource whether you’re an architect, engineer, operator, or IT manager.   · Review evolving security challenges associated with borderless networks, ubiquitous mobility, and consumerized IT   · Understand Cisco Secure Access, the Identity Services Engine (ISE), and the building blocks of complete solutions   · Design an ISE-enabled network, plan\/distribute ISE functions, and prepare for rollout   · Build context-aware security policies for network access, devices, accounting, and audit   · Configure device profiles, visibility, endpoint posture assessments, and guest services   · Implement secure guest lifecycle management, from WebAuth to sponsored guest access   · Configure ISE, network access devices, and supplicants, step by step   · Apply best practices to avoid the pitfalls of BYOD secure access   · Set up efficient distributed ISE deployments   · Provide remote access VPNs with ASA and Cisco ISE   · Simplify administration with self-service onboarding and registration   · Deploy security group access with Cisco TrustSec   · Prepare for high availability and disaster scenarios   · Implement passive identities via ISE-PIC and EZ Connect   · Implement TACACS+ using ISE   · Monitor, maintain, and troubleshoot ISE and your entire Secure Access system   · Administer device AAA with Cisco IOS, WLC, and Nexus","brand":"WoB","offers":[{"title":"GB \/ GOOD \/ INTERNAL","offer_id":49661621666065,"sku":"GOR013635035","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ GOOD \/ SBYB","offer_id":50384389079313,"sku":"CIN1587144735G","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ VERY_GOOD \/ INTERNAL","offer_id":50959486517521,"sku":"GOR013160612","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ VERY_GOOD \/ SBYB","offer_id":51324890087697,"sku":"CIN1587144735VG","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ NEW \/ INGRAM","offer_id":51826458263825,"sku":"NIN9781587144738","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ NEW \/ GARDNERS","offer_id":53029626741009,"sku":"NGR9781587144738","price":0.0,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/1587144735.jpg?v=1779961890"},{"product_id":"zero-trust-architecture-book-cindy-green-ortiz-9780137899739","title":"Zero Trust Architecture","description":"Today's organizations need a new security model that more effectively adapts to the complexity and risks of modern environments, embraces hybrid workplaces, and protects people, devices, apps, and data wherever they're located. Zero Trust is the first model with the potential to do all that. Zero Trust Architecture: Theory, Implementation, Maintenance, and Growth is the first comprehensive guide for architects, engineers, and other technical professionals who want to move from Zero Trust theory to implementation and successful ongoing operation.    A team of Cisco's leading experts and implementers offer the most comprehensive and substantive guide to Zero Trust, bringing clarity, vision, practical definitions, and real-world expertise to a space that's been overwhelmed with hype. The authors explain why Zero Trust identity-based models can enable greater flexibility, simpler operations, intuitive context in the implementation and management of least privilege security. Then, building on Cisco's own model, they systematically illuminate methodologies, supporting technologies, and integrations required on the journey to any Zero Trust identity-based model.    Through real world experiences and case study examples, you'll learn what questions to ask, how to start planning, what exists today, what solution components still must emerge and evolve, and how to drive value in the short-term as you execute on your journey towards Zero Trust.","brand":"WoB","offers":[{"title":"GB \/ NEW \/ GARDNERS","offer_id":49743826223377,"sku":"NGR9780137899739","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ VERY_GOOD \/ SBYB","offer_id":51321923338513,"sku":"CIN0137899734VG","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ VERY_GOOD \/ INTERNAL","offer_id":51890793971985,"sku":"GOR014448807","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ GOOD \/ SBYB","offer_id":51895047553297,"sku":"CIN0137899734G","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ NEW \/ INGRAM","offer_id":53222500237585,"sku":"NIN9780137899739","price":0.0,"currency_code":"GBP","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/0137899734.jpg?v=1780652778"},{"product_id":"securing-enterprise-networks-with-cisco-meraki-book-ryan-chaney-9780138298180","title":"Securing Enterprise Networks with Cisco Meraki","description":"Securing Enterprise Networks with Cisco Meraki   Discover the Power of Cisco Meraki   Unlock the full potential of Cisco Meraki with this in-depth guide, designed to help you build and secure modern, cloud-managed networks. Cisco Meraki offers a unique, cloud-managed IT platform that integrates seamlessly with Cisco’s traditional products and other third-party tools. Whether you’re a new Meraki customer, an experienced network engineer, or an IT manager looking to streamline operations, this book provides you with the knowledge and practical steps needed to secure enterprise networks effectively.   In a world where cybercrime is an ever-present threat, Meraki’s cloud-managed solutions offer a robust alternative to traditional wired and wireless networks. This book not only introduces you to the fundamentals of Meraki but also dives deep into advanced security configurations, industry best practices, and real-world use cases. By the end of this book, you’ll be equipped to implement Meraki solutions that meet stringent IT security standards and frameworks, ensuring your network is not just operational but resilient and secure.   With this book as your guide, you will gain the skills to deploy secure, cloud-managed networks using Cisco Meraki. You will learn     Meraki’s History: Understand the evolution of Meraki from a research project at MIT to a key player in Cisco’s portfolio. Security Frameworks and Industry Best Practices: Learn about the essential IT security standards and frameworks and how Meraki can help you meet these requirements. Meraki Dashboard and Trust: Get familiar with the Meraki management portal and understand the considerations for adopting cloud-managed infrastructure. Role-Based Access Control (RBAC): Discover how to implement RBAC to enforce the principle of least privilege within your network. Securing Administrator Access to Meraki Dashboard: Master the configuration of strong authentication methods, including multifactor authentication (MFA) and SAML single sign-on (SSO). Security Operations: Explore the native Meraki tools and external solutions for compliance reporting, centralized logging, and incident response. User Authentication: Delve into the setup of authentication infrastructures supporting wired, wireless, and VPN access, including Meraki Cloud Authentication, SAML, and RADIUS. Wired and Wireless LAN Security: Learn how to secure your LAN with features like 802.1X authentication, firewalling, and adaptive policies.","brand":"WoB","offers":[{"title":"US \/ NEW \/ INGRAM","offer_id":50999401906449,"sku":"NIN9780138298180","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ NEW \/ GARDNERS","offer_id":51133180182801,"sku":"NGR9780138298180","price":0.0,"currency_code":"GBP","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/0138298181.jpg?v=1781350541"},{"product_id":"ikev2-ipsec-virtual-private-networks-book-graham-bartlett-9781587144608","title":"IKEv2 IPsec Virtual Private Networks","description":"Create and manage highly-secure Ipsec VPNs with IKEv2 and Cisco FlexVPN   The IKEv2 protocol significantly improves VPN security, and Cisco’s FlexVPN offers a unified paradigm and command line interface for taking full advantage of it. Simple and modular, FlexVPN relies extensively on tunnel interfaces while maximizing compatibility with legacy VPNs. Now, two Cisco network security experts offer a complete, easy-tounderstand, and practical introduction to IKEv2, modern IPsec VPNs, and FlexVPN.   The authors explain each key concept, and then guide you through all facets of FlexVPN planning, deployment, migration, configuration, administration, troubleshooting, and optimization. You’ll discover how IKEv2 improves on IKEv1, master key IKEv2 features, and learn how to apply them with Cisco FlexVPN.   IKEv2 IPsec Virtual Private Networks offers practical design examples for many common scenarios, addressing IPv4 and IPv6, servers, clients, NAT, pre-shared keys, resiliency, overhead, and more. If you’re a network engineer, architect, security specialist, or VPN administrator, you’ll find all the knowledge you need to protect your organization with IKEv2 and FlexVPN.      Understand IKEv2 improvements: anti-DDoS cookies, configuration payloads, acknowledged responses, and more  Implement modern secure VPNs with Cisco IOS and IOS-XE  Plan and deploy IKEv2 in diverse real-world environments  Configure IKEv2 proposals, policies, profiles, keyrings, and authorization  Use advanced IKEv2 features, including SGT transportation and IKEv2 fragmentation  Understand FlexVPN, its tunnel interface types, and IOS AAA infrastructure  Implement FlexVPN Server with EAP authentication, pre-shared keys, and digital signatures  Deploy, configure, and customize FlexVPN clients  Configure, manage, and troubleshoot the FlexVPN Load Balancer  Improve FlexVPN resiliency with dynamic tunnel source, backup peers, and backup tunnels  Monitor IPsec VPNs with AAA, SNMP, and Syslog  Troubleshoot connectivity, tunnel creation, authentication, authorization, data encapsulation, data encryption, and overlay routing  Calculate IPsec overhead and fragmentation  Plan your IKEv2 migration: hardware, VPN technologies, routing, restrictions, capacity, PKI, authentication, availability, and more","brand":"WoB","offers":[{"title":"- \/ - \/ -","offer_id":51104472236305,"sku":"","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ VERY_GOOD \/ SBYB","offer_id":51104472826129,"sku":"CIN1587144603VG","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ NEW \/ INGRAM","offer_id":53620563116305,"sku":"NIN9781587144608","price":0.0,"currency_code":"GBP","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/1587144603.jpg?v=1779962885"}],"url":"https:\/\/www.worldofbooks.com\/en-gb\/collections\/networking-technology-security-book-series.oembed","provider":"World of Books ","version":"1.0","type":"link"}