Chapter 4 Zone Configuration

Zone Detection

2.Choose ENTER. The following (partial sample) screen appears:

admin@DETECTOR-conf-zone-scannet# show policies statistics

Key

Rate

Policy

192.168.100.34

73.17

http/80/analysis/syns/dst_ip

N/A

0.17

http/80/analysis/syns/global

Key

Ratio

Policy

192.168.100.34

1.44

 

tcp_ratio/any/analysis/syn_by_fin/dst_ip_ratio

80

1.44

 

tcp_ratio/any/analysis/syn_by_fin/dst_port_ratio

Key

Connections

Policy

N/A

429.00

 

tcp_connections/any/analysis/in_nodata_conns/global

The sample screen displays that the detector policies are receiving traffic and functioning properly.

Zone Detection

After learning the zone traffic characteristics the Detector is ready for zone detection. The user may wish to command the Detector to detect right after completing the zone configurations. The Detector would then begin applying its detection policies.

To detect the zone perform the following:

1.From the Global command group level type the following:

admin@DETECTOR# detect <zone-name>

Or alternatively:

From the Zone command group level type the following:

admin@DETECTOR-conf-zone-<zone-name># detect

Where zone-namespecifies a zone name.

 

 

Cisco Traffic Anomaly Detector User Guide

 

 

 

 

 

 

OL-6109-01

 

 

4-19

 

 

 

Page 19
Image 19
Cisco Systems OL-6109-01 manual Zone Detection, Choose ENTER. The following partial sample screen appears

OL-6109-01 specifications

Cisco Systems OL-6109-01 is a versatile online training course designed to equip IT professionals with the knowledge and skills to prepare for the Cisco Certified Network Associate (CCNA) certification. This specialized program introduces participants to a wide array of networking concepts, addressing critical areas that are foundational for careers in networking and IT.

One of the main features of the OL-6109-01 course is its comprehensive curriculum that covers essential networking topics. Participants engage with content focused on building and configuring network systems, including foundational principles of routing, switching, and WAN technologies. This ensures that learners gain both practical skills and theoretical knowledge, making them proficient in handling diverse networking scenarios.

The course also delves into the latest industry-relevant technologies. Cisco's emphasis on the Internet of Things (IoT), cloud computing, and network security is reflected in the training modules. With the ever-increasing demand for network security, OL-6109-01 emphasizes cybersecurity fundamentals, enabling learners to understand potential threats and learn best practices for securing network infrastructures.

An essential characteristic of the OL-6109-01 course is its interactive learning experience. Using a mix of video lectures, hands-on labs, and quizzes, the course fosters an engaging environment for learners. Practical lab exercises allow participants to simulate real-world networking tasks, which enables them to enhance their troubleshooting and problem-solving skills.

Furthermore, Cisco Systems ensures that the OL-6109-01 course aligns with the latest networking trends and technologies. Regular updates to the course content make sure that learners are equipped with current knowledge, preparing them for future developments in the networking field.

In addition to delivering foundational knowledge, the OL-6109-01 course also features preparation tools for the CCNA exam. Practice tests and evaluation metrics help participants assess their readiness, providing a pathway to achieve Cisco certification. Overall, the OL-6109-01 course represents a substantial investment in professional development for anyone looking to advance in the networking domain. Its blend of essential content, modern technologies, and practical practice positions learners for success in a competitive industry.