Fortigate Firewall Training (NSE-4)

  • In this 2-weeks class, you will learn how to use FortiGate UTM.

  • In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more.

  • These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security.

Duration: 12 Days
Prerequisites:

  • Strong Knowledge of TCP/IP Protocols

  • Basic Knowledge of Firewalls

COURSE OUTLINE:
 Introduction to firewalls 1 Generation and 2nd Gne firewalls

  • Understanding 1 Generation firewalls

  • Understanding 2 Generation firewalls

  • Understanding 2nd Gne Firewalls and futures

  •  Understanding UTM firewalls futures

Module-1: Introduction to fortigate

  • Understanding Features of Fortigate

  • Understanding Fortigaurd Queries & Packages

  • Initial Configuration

  • Upgrading Firmware

  • Backup & Restore

  • Configuring DHCP

Module-2: Introduction to Routing

  • configure static and dynamic routing

  • Configure ospf and redistribution

  • configure rip and redistribution

  • BGP Configuration

Module-3: Firewall Policies

  • Basic Firewall  Policies

  • configure policies for internet

  • Understanding NAT

  • Configuring Static  NAT

  • Configuring Static nat (port forwarding) using Virtual Server

Module-4: Authentication

  • Create Authentication Policies

  • Creating User and policies

  • Create Admin privilege accounts

  • Monitor firewall Users

Module-5: Logging & Monitoring

  • Understanding Log severity levels

  • Understanding Logs &Sublog types

  • Understanding  Log structures

  • Configuring log settings

  • Redirect logs to Syslog & SNMP

Module-6: Antivirus

  • Types of Virus & Malware

  • Proxy based vs flow based scans

  • Configure Antivirus scanning

  • Test  Antivirus scanning

  • Monitor antivirus logs

Module-7: Webfilter

  • Understanding FortigateWeb-filtering Mechanism

  • Configuring Content Filtering

  • Configuring URL Filtering

  • Monitor Webfilter logs

Module-8: Application Control

  • Updating Application Control Database

  • Configuring Application control profile

  • Traffic Shaping

  • Logging Application control event

 Module-9: Intrusion Prevention system

  • Choose IPS Signatures

  • Configure Anomaly based Detection

  • Configure signature based detection

  • Configure DOS Sensor

  • Monitor & Recognize Attacks using IPS

Module-10: Certificate Operations

  • Generating a CSR

  • Configuring SSL/SSH inspection

  • Generating Self signed Certificate

  • Enable SSL Inspection in Foritigate

Module-11: Virtual Domains

  • Understanding VDOM’s

  • VDOM resource vs Global resource

  • Configuring Independent VDOM

Module-12: Data Leakage Prevention

  • Understanding Function of DLP

  • Filter files & Messages

Module-13: Basic IPSEC VPN

  • Understanding Architecture of IPSEC

  • Understanding IKE Phase 1 & 2

  • Configure IPSEC between two networks

  • Monitor VPN Traffic

Module-14: SSL VPN

  • Understanding SSL Architecture

  • Operation Modes of SSL

  • Configuring SSL VPN WebMode

  • Configuring Bookmark

  • Configure firewall policies for SSL VPN

  • Monitor SSL Users

TRAINER PROFILE

© 2023 by The Talent School. Proudly created with Wix.com