
Fortigate Firewall Training (NSE-4)
-
In this 2-weeks class, you will learn how to use FortiGate UTM.
-
In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more.
-
These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security.
Duration: 12 Days
Prerequisites:
-
Strong Knowledge of TCP/IP Protocols
-
Basic Knowledge of Firewalls
-
​
COURSE OUTLINE:
Introduction to firewalls 1 Generation and 2nd Gne firewalls
-
Understanding 1 Generation firewalls
-
Understanding 2 Generation firewalls
-
Understanding 2nd Gne Firewalls and futures
-
Understanding UTM firewalls futures
Module-1: Introduction to fortigate
-
Understanding Features of Fortigate
-
Understanding Fortigaurd Queries & Packages
-
Initial Configuration
-
Upgrading Firmware
-
Backup & Restore
-
Configuring DHCP
Module-2: Introduction to Routing
-
configure static and dynamic routing
-
Configure ospf and redistribution
-
configure rip and redistribution
-
BGP Configuration
Module-3: Firewall Policies
-
Basic Firewall Policies
-
configure policies for internet
-
Understanding NAT
-
Configuring Static NAT
-
Configuring Static nat (port forwarding) using Virtual Server
Module-4: Authentication
-
Create Authentication Policies
-
Creating User and policies
-
Create Admin privilege accounts
-
Monitor firewall Users
Module-5: Logging & Monitoring
-
Understanding Log severity levels
-
Understanding Logs &Sublog types
-
Understanding Log structures
-
Configuring log settings
-
Redirect logs to Syslog & SNMP
Module-6: Antivirus
-
Types of Virus & Malware
-
Proxy based vs flow based scans
-
Configure Antivirus scanning
-
Test Antivirus scanning
-
Monitor antivirus logs
Module-7: Webfilter
-
Understanding FortigateWeb-filtering Mechanism
-
Configuring Content Filtering
-
Configuring URL Filtering
-
Monitor Webfilter logs
Module-8: Application Control
-
Updating Application Control Database
-
Configuring Application control profile
-
Traffic Shaping
-
Logging Application control event
Module-9: Intrusion Prevention system
-
Choose IPS Signatures
-
Configure Anomaly based Detection
-
Configure signature based detection
-
Configure DOS Sensor
-
Monitor & Recognize Attacks using IPS
Module-10: Certificate Operations
-
Generating a CSR
-
Configuring SSL/SSH inspection
-
Generating Self signed Certificate
-
Enable SSL Inspection in Foritigate
Module-11: Virtual Domains
-
Understanding VDOM’s
-
VDOM resource vs Global resource
-
Configuring Independent VDOM
Module-12: Data Leakage Prevention
-
Understanding Function of DLP
-
Filter files & Messages
Module-13: Basic IPSEC VPN
-
Understanding Architecture of IPSEC
-
Understanding IKE Phase 1 & 2
-
Configure IPSEC between two networks
-
Monitor VPN Traffic
Module-14: SSL VPN
-
Understanding SSL Architecture
-
Operation Modes of SSL
-
Configuring SSL VPN WebMode
-
Configuring Bookmark
-
Configure firewall policies for SSL VPN
-
Monitor SSL Users
