Exam ID HP0-M208P
Exam type Proctored exam taken at dedicated testing center
Exam duration 4 hour(s)
Passing score 70%
Delivery languages English
Related Certifications
Supporting courses These recommended courses help you prepare for the exam
Additional study materials
  • Use the following tasks to help assess whether you are ready to take the exam. 1. Setup and configure the TippingPoint IPS Solution 2. Manage the device 3. Perform administrative tasks 4. Perform advanced management tasks

Register for this Exam

You will need an HP Learner ID.

During the exam, you can make specific comments about the exam and items. HP welcomes these comments as part of our continuous improvement process.
No online or hard copy reference material will be allowed at the testing site. This exam may contain beta test items for experimental purposes.

Exam description

This exam tests your ability to implement, plan, install, and configure the TippingPoint Intrusion Prevention System (IPS) solution. Using the standard interface modes, you will also
perform tuning and optimization tasks on your network, and perform advanced configuration management tasks using the Security Management System (SMS).

Who should take this exam?

To pass this exam, you should have at least 3 to 5 years of experience with complex enterprise networks and HP TippingPoint security devices. Exams are based on an assumed level of industry standard knowledge that may be gained from the training, hands on experience, or other prerequisite events. You should also be knowledgeable about general networking (switching/routing/VLANs), HP TippingPoint IPS and SMS devices, and security policies.

Exam contents

Here are types of questions to expect:
  • Other

Tips for taking this exam

This exam assess whether you have the knowledge and skills that surround HP TippingPoint IPS solution. Therefore, many test items present a scenario which outlines a particular environment or problem.
Please do not ask to be graded until you are sure you have tested your setup. Once the proctor stars grading, you will be graded on the current state of your configuration so please check and double-check your work. Do not proceed to the next step until you are told to do so, as you may undo your prior work before the proctor has a change to grade your work.

This exam is a proctored/private exam which will be administered at the conclusion of the course.    For additional information on registering for the related course, visit: http://www.hpenterprisesecurity.com/university

Objectives

This exam validates that you can successfully perform the following:
%

IPS Setup and Configuration

  • Explain the TippingPoint Product Portfolio
  • High Level Overview
  • Setup and Configure the IPS
  • Networking
  • User Management

%

SMS Setup and Configuration

  • Setup and Configure the SMS
  • Networking
  • User Management
  • Add IPS devices to SMS Management

%

TippingPoint DVLabs

  • Introduce TippingPoint DVLabs
  • Explore Service Offerings
  • Explain the Features of Online Tools

%

Basic Policy

  • Give a High-Level Security Overview of the TippingPoint Solution
  • Define the Basics of Policy Management
  • Describe the Basics of Filters
  • Create Action Sets
  • Create and Distribute a Policy

%

Device Configuration

  • Describe IPS to SMS Communication and SNMP
  • Explore Networking Concepts
  • Configure a Device
  • Perform a TOS Update and IPS Snapshot

%

Advanced Policy

  • Distinguish Flow-based versus Non-Flow-Based Filters
  • Define Inspection Filter Types
  • Describe TSE and Managed Streams
  • Identify Profile Configuration Methodologies
  • Perform Advanced Profile Management Tasks

%

Digital Vaccine Toolkit

  • Use the DV Toolkit Application
  • Load and manage a DV Toolkit package in the LSM and SMS
  • Create a DVT filter
  • Explore a real world DVT example
  • Explore sage of the DVT converter tool

%

CLI & LSM Management

  • Manage filters in the CLI/LSM
  • Reset a Policy on an IPS
  • Recover a Policy from an IPS
  • Restoring a Policy from an SMS

%

SMS Management

  • Review SMS Dashboard overview activity
  • Review SMS Health
  • Perform SMS Backups
  • Describe SMS High Availability
  • Describe SMS Management Features
  • Observe SMS events

%

Non- DV Filters

  • Distinguish flow-based filters from non-flow based inspection Filters
  • Deep inspection vs. behavioral and fixed-field
  • Identify the usage and configuration Filters:
  • Port Scan / Host Sweep Filters
  • Traffic Management Filters
  • IP / DNS Reputation Filters

%

Advanced DDoS

  • Describe the different DDoS attacks & mitigation
  • SYN Floods
  • Configure Advanced DDoS filters
  • Protect DMZ
  • Review Advanced DDoS Events and Reports
  • Monitor attack rates

%

IPS Quarantine

  • Recall IPS Quarantine Functionality
  • IPS Quarantine concepts
  • IPS Quarantine considerations
  • Configuring IPS Quarantine
  • Automatic release
  • Quarantine monitoring

%

Advanced Deployments

  • Implement Directional based Policy
  • Implement VLAN based Policy
  • Implement Policy by CIDR

%

Deployment, Architecture, and Performance Optimization

  • Recall Common Deployment Scenarios
  • Describe the TippingPoint IPS architecture in detail
  • N-platform & software-based platform flow
  • Describe how to diagnose and address performance issues
  • N Tiered Structure

%

SMS Responder

  • Describe SMS Active Response functionality
  • Describe Correlation and Thresholding
  • Configure external system alerts
  • Initiate Response Actions
  • Monitor notifications and enforcement
  • Create custom responses