Palo Alto Networks Firewall 10.1 Essentials : Configuration & Management EDU 210
Objective
Successful completion of this five-day, instructor-led course will enhance the student’s understanding of how to configure and manage Palo Alto Networks® next-generation firewalls. The student will learn and get hands-on experience configuring, managing, and monitoring a firewall in a lab environment.
This course is best positioned for Security Engineers, Networks Engineers and Support staff.
DAY 1
Module 1 – Platforms and Architecture
- Platforms
- Next Generation Firewall architecture
- Cloud public
Module 2 – Initial configuration
- Initial configuration of the system
- Configuration management
- Software updates & Licenses
- Account administration
Module 3 – Interface configuration
- Security zone
- L2 / L3, wire interface and TAP
- Virtual interface
- Sub interface
- Virtual router
- Policy Based Forwarding (PBF)
Module 4 – Security and NAT policies
- Policies concept
- Policies configuration
- Policies management
- NAT (Source & destination)
Module 5 – App-ID®
- App-ID Process
- Security policies
- Administration
Module 6 – Content-ID®
- Antivirus
- Anti-spyware
- Vulnerability
- URL Filtering
- File Blocking: WildFire
- Zone Protection
Module 7 – URL Filtering
- URL Filtering concept
- URL Filtering configuration
Module 8 – Decryption
- Decryption concept
- Certificate management
- Decryption SSL Inbound
- Decryption SSL Outbound
Module 9 – WildFire®
- WildFire concept
- Configuration & management
- Report
Module 10 – User-ID®
- Concept
- User-ID configuration
- User-ID agent type
Module 11 – GlobalProtect®
- Principle of operation
- Portal configuration
- Gateway configuration
- Agent configuration
Module 12 – VPN
- Concept
- Tunnel Site-to-Site configuration
Module 13 – Monitoring and Reporting
- Dashboard
- Report
- Log forwarding
- SNMP configuration
Module 14 – High Availability
- Concept High Availability
- High availability configuration
Module 15 – What’s Next
- Operational guide
- ACC
- Security profile optimisation
Students must have a basic familiarity with networking concepts including routing, switching, and IP addressing. Students should also be familiar with basic port-based security concepts. Experience with other security technologies (IPS, proxy, and content filtering) is a plus.
Duration: 5 Days
|
