Exam ID HP0-M207P
Exam type Performance based exams
Exam duration 4 hour(s)
Passing score 70%
Delivery languages English
Related Certifications
Supporting courses These recommended courses help you prepare for the exam
  • 00818591 - HP TippingPoint Next Generation Firewall ASE Security Training, Rev 1.0
Additional study materials
  • Use the following tasks to help assess whether you are ready to take the exam. 1. Setup and configure the TippingPoint NGFW Solution 2. Manage the device 3. Perform administrative tasks 4. Perform advanced management tasks

Register for this Exam

You will need an HP Learner ID.

During the exam, you can make specific comments about the exam and items. HP welcomes these comments as part of our continuous improvement process. No online or hard copy reference material will be allowed at the testing site. This exam may contain beta test items for experimental purposes.

Exam description

This exam tests your ability to implement,
plan, install, and configure the TippingPoint Next Generation Firewall (NGFW) solution. Using the standard interface modes, you will also
perform tuning and optimization tasks on your network, and perform advanced configuration management tasks using the Security Management System (SMS).

Who should take this exam?

To pass this exam, you should have at least 3 to 5 years of experience with complex enterprise networks and HP TippingPoint security devices. Exams are based on an assumed level of industry standard knowledge that may be gained from the training, hands on experience, or other prerequisite events. You should also be knowledgeable about general networking (switching/routing/VLANs), HP TippingPoint IPS and SMS devices and general security policies.

Exam contents

Here are types of questions to expect:
  • Other

Tips for taking this exam

This exam assesses whether you have the knowledge and skills that surround HP TippingPoint NGFW solution. Therefore, many test items present a scenario which outlines a particular environment or problem. Please do not ask to be graded until you are sure you have tested your setup. Once the proctor stars grading, you will be graded on the current state of your configuration so please check and double check your work. Do not proceed to the next step until you are told to do so, as you may undo your prior work before the proctor has a change to grade your work.

This exam is a proctored/private exam which will be administered at the conclusion of the course.    For additional information on registering for the related course, visit: http://www.hpenterprisesecurity.com/university
 

Objectives

This exam validates that you can successfully perform the following:
0%

Networking Review

  • Describe Theoretical Models
  • Define the OSI Model
  • Apply the OSI Model to data transmission
  • Explain the difference between switching and routing

6%

Introduction to the HP TippingPoint NGFW

  • Explain NGFW features
  • Identify HP TippingPoint NGFW Products and Solutions
  • Describe NGFW Product Architecture
  • List NGFW Management Options
  • Setup and Configure the NGFW

1%

HP TippingPoint NGFW Deployment

  • Compare and contrast deployment modes
  • Distinguish network interface types
  • Describe interface configuration
  • Assign IP addresses to NGFW ports
  • Explain NGFW DHCP server/client options
  • List NGFW routing support options
  • Configure NGFW interfaces

6%

Security Zones

  • Distinguish security zone types
  • Describe zone properties
  • List the benefits of security zones
  • Create security zones in the LSM

8%

Firewall Rules

  • Describe the Firewall Policy Model
  • Manage the Zone-based Firewall Rules
  • Explain the Relationship Between Permit/Block Action in Zone-based Firewall Rules
  • List General Recommendations for Zone-based Firewall Rules
  • Create and Manage Zone-based Firewall Rules
  • Describe the NGFW TippingPoint Firewall Solution

16%

Application Management

  • Describe application management
  • Identify application filters
  • List application filter categories
  • Create custom application groups

4%

SMS Setup and Configuration

  • Explain deployment requirements for SMS
  • Navigate the SMS GUI
  • Add devices to SMS Management
  • Set up and configure the SMS

12%

Device Configuration and Firewall Policies in SMS

  • Describe NGFW to SMS Communication and SNMP
  • Configure NGFW ports and interfaces in SMS
  • Perform TOS Update/NGFW Snapshot
  • Create and Apply Firewall Policy in the SMS

12%

DV Labs and Inspection Profiles

  • Define Digital Vaccines (DV)
  • Define the Function of Digital Vaccine Labs
  • List and describe Digital Vaccine Online Tools
  • Create Inspection Profiles
  • Describe the Basics of Profile Management
  • Recall Filter Functionality
  • Create Action Sets
  • Create and Reference Policies

6%

SMS Management

  • Review SMS Dashboard overview activity
  • Review SMS Health
  • Perform SMS Backups
  • Describe SMS High Availability
  • Describe SMS Management Features
  • Observe SMS events

4%

Transparent Mode

  • Manage filters
  • Create an Action Set
  • Import a Policy
  • Describe NGFW Policies
  • Reset NGFW policies
  • Recover and restore policies to and from an NGFW and SMS

5%

Network Address Translation

  • Explain source and destination NAT concepts
  • Describe static and dynamic NAT
  • Create source and destination NAT objects on the NGFW
  • Monitor NAT activity
  • Verify NAT Operation

11%

User Management

  • Manage user groups in the NGFW
  • Describe external authentication mechanisms
  • Describe authorization mechanisms

0%

Digital Vaccine Toolkit

  • Describe the Digital Vaccine Toolkit Application
  • Load and manage a Digital Vaccine Toolkit package in the SMS
  • Create a Digital Vaccine Toolkit filter
  • Explore a real world Digital Vaccine Toolkit example

4%

NGFW Quarantine and Advanced DDoS

  • Describe Quarantine concepts
  • Summarize NGFW Quarantine operation
  • Configure NGFW Quarantine
  • Monitor Quarantined hosts
  • Describe the different DDoS attacks & mitigation
  • Configure Advanced DDoS filters
  • Review Advanced DDoS Events and Reports

5%

Virtual Private Networks

  • List the types of VPN connections
  • List Tunneling Options for NGFW
  • Describe Internet Key Exchange Protocols
  • Configure the NGFW to operate in a VPN environment

0%

SMS Responder

  • Describe SMS Active Response functionality
  • Describe Correlation and Thresholding
  • Configure external system alerts
  • Initiate Response Actions
  • Monitor notifications and enforcement
  • Create custom responses

0%

Maintenance and Performance

  • Describe High Availability and Clustering
  • Configure Failover Groups
  • Monitor State Synchronization
  • Manage a Cluster
  • Describe common deployment scenarios
  • Explain the TippingPoint NGFW architecture in detail
  • Physical→Flow→Filter Application→Optimization→Trouble Shooting
  • Optimize system performance
  • Diagnose and address performance issues
  • Review system performance