Cisco Systems OL-6109-01 Zone Traffic Learning, Deactivating the Interactive Recommendation Mode

Page 12

Chapter 4 Zone Configuration

Zone Traffic Learning

To create a new zone with interactive recommendations mode perform the following:

1.From the Configuration command group level type the following:

admin@DETECTOR-conf# zone <new-zone-name> interactive

2.Choose ENTER.

The new zone is created with a DEFAULT zone template configured for interactive recommendations mode. See the “Defining a New Zone” section for further details.

Deactivating the Interactive Recommendation Mode

The user may deactivate the interactive recommendations mode for any desired zone or zones at any time. Deactivating this mode results in the Detector disregarding any recommendations and assuming an automatic detection functioning such as automatically producing dynamic filters, etc. The user may deactivate the interactive recommendations mode from the desired zone’s command group level.

To deactivate the interactive recommendation mode perform the following:

1.Type the following (sample):

admin@DETECTOR-conf-zone-<zone-name># no interactive

2.Choose ENTER.

Zone Traffic Learning

As the user initializes the Learning phase (see the “Learning Phase 1 – Policy Construction” section in this chapter), the Detector learns the zone’s (zones’) traffic characteristics. The results of this stage will be translated into detection policies. The Learning system constructs the Detector detection policies that instruct the Detector detection system as for how to regard the zone traffic flows.

Note For the learning phases to take place port mirroring must be configured on the switch or the Detector must be connected to a router using an optical splitter.

 

Cisco Traffic Anomaly Detector User Guide

4-12

OL-6109-01

Page 11 Page 13
Image 12
Page 11 Page 13
Contents Zone Configuration Basic Zone ConfigurationDefining a New Zone Duplicating a Zone Removing a Zone Removing All Zones Displaying Zone TemplatesEntering a Zone Command Level Describing a Zone Defining the Zone IP AddressRemoving a Zone IP Address Zone Remote Guard List Removing all Zone IP AddressesAdding a Guard to the Zone Remote Guard List Removing a Guard from the Zone Remote Guard ListInteractive Recommendations Mode Activating the Interactive Recommendation ModeDeactivating the Interactive Recommendation Mode Zone Traffic LearningLearning Phase 1 Policy Construction Terminating Learning Phase 1 -Policy Construction Accepting Learning Phase 1 Policy Construction Aborting Learning Phase 1 Policy ConstructionLearning Phase 2 Threshold Tuning Terminating Learning Phase 2 Threshold Tuning Accepting Learning Phase 2 Threshold TuningLearning Phase Verification Aborting Learning Phase 2 Tuning ThresholdZone Detection Choose ENTER. The following partial sample screen appearsGuard-Protection Activation Forms Zone Detection Verification Ending the Zone Detection

OL-6109-01 specifications

Cisco Systems OL-6109-01 is a versatile online training course designed to equip IT professionals with the knowledge and skills to prepare for the Cisco Certified Network Associate (CCNA) certification. This specialized program introduces participants to a wide array of networking concepts, addressing critical areas that are foundational for careers in networking and IT.

One of the main features of the OL-6109-01 course is its comprehensive curriculum that covers essential networking topics. Participants engage with content focused on building and configuring network systems, including foundational principles of routing, switching, and WAN technologies. This ensures that learners gain both practical skills and theoretical knowledge, making them proficient in handling diverse networking scenarios.

The course also delves into the latest industry-relevant technologies. Cisco's emphasis on the Internet of Things (IoT), cloud computing, and network security is reflected in the training modules. With the ever-increasing demand for network security, OL-6109-01 emphasizes cybersecurity fundamentals, enabling learners to understand potential threats and learn best practices for securing network infrastructures.

An essential characteristic of the OL-6109-01 course is its interactive learning experience. Using a mix of video lectures, hands-on labs, and quizzes, the course fosters an engaging environment for learners. Practical lab exercises allow participants to simulate real-world networking tasks, which enables them to enhance their troubleshooting and problem-solving skills.

Furthermore, Cisco Systems ensures that the OL-6109-01 course aligns with the latest networking trends and technologies. Regular updates to the course content make sure that learners are equipped with current knowledge, preparing them for future developments in the networking field.

In addition to delivering foundational knowledge, the OL-6109-01 course also features preparation tools for the CCNA exam. Practice tests and evaluation metrics help participants assess their readiness, providing a pathway to achieve Cisco certification. Overall, the OL-6109-01 course represents a substantial investment in professional development for anyone looking to advance in the networking domain. Its blend of essential content, modern technologies, and practical practice positions learners for success in a competitive industry.
Top Page Image Contents