Forti Gate Essentials
Introduction
This accredited course equips the users to operate and administrate some fundamental FortiGate features. By the end of the course, they acquire a solid understanding of how to deploy and maintain a basic network security solution. This security-centered course covers enables users to remotely connect to the network in a secure way. In interactive labs, the users learn how to use firewall policies, user authentication, routing, SSL VPN, and how to protect your users using web filtering and application control.
Prerequisites
- Knowledge of network protocols
- Basic understanding of firewall concepts
Networking and security professionals involved in the management, configuration, administration, and monitoring of Forti Gate devices.
Course Objectives
After completing this course, you will be able to:
- Deploy the appropriate operation mode for your network
- Use the GUI and CLI for administration
- Control network access to configured networks using firewall policies
- Analyze a FortiGate route
- Route packets using policy-based and static routes for multipath and load balanced deployments
- Authenticate & use firewall policies
- Offer an SSL VPN for secure access to your private network
- Configure web filtering to block inappropriate and risky websites
- Apply application control techniques to monitor and control network applications that might use standard or non-standard protocols and ports
Course Content
Lesson 01: Internetworking Basic
- Network Security fundamentals
- Introduction to Firewall Technologies
- Introduction About Fortinet FortiGate
- Firewall Sizing
- Network analysis & Device deployment
Lesson 02: FortiGate Firewall Dashboard
- Install FortiGate Firewall On VMWare
- FortiGate Firewall Dashboard
- FortiGate Firewall Initial Working Lab
- FortiGate OS Upgradation (Online & Offline)
- Firewall operations & Services
Lesson 03: Redundant Interface of FortiGate with VLAN
- Firewall Administration
- Firewall deployment mood
- FortiGate Firewall Interfaces and
- Configure and Verify VLAN and Zone
- Configure and Verify One-Armed Sniffer Lab
- Configure Redundant Interface in FortiGate
- Configure Aggregate Interface in
- Configure Virtual Wire Pair in
Lesson 04: Configure Routing & Lab
- Administrative Access in FortiGate
- Configure DNS & DNS Server In
- Static, Default, Dynamic and Policy Route
- Configure & Verify Static & Default Route Lab
- Configure and Verify Policy Routing Lab
Lesson 05: Dynamic Protocols
- Configure and Verify Dynamic Protocol
- Configure and Verify Routing
- Configure and Verify Dynamic Protocol
- FortiGate Firewall Policies Theory
Lesson 06: Services and IP address Based Policy FortiGate Firewall
- MAC Address Based Policy in FortiGate Firewall
- Local User Based Policy in FortiGate Firewall
- IP Address Based Policy in FortiGate Firewall
- Services and Schedule Based Policy in FortiGate
- FortiGate Firewall DHCP Server Theory
Lesson 07: Fortigate Firewall as DHCP Server Lab
- FortiGate Firewall as DHCP Server
- FortiGate Firewall as DHCP Relay
- FortiGate Firewall License Activation
- FortiGate Firewall Security Profile & FortiGuard
- FortiGate Firewall Replacement Messages
Lesson 08: Security Profile
- Security Profile Antivirus Profile
- Security Profile Web Filter Profile
- Security Profile DNS Filter
- Security Profile Application Control
- Security Profile Intrusion Prevention
Lesson 09: Firewall Different Mode
- Security Profile File Filter
- FortiGate Firewall Inspection Mode
- FortiGate Firewall NGFW Modes
- Policy-Based Mode to Block Facebook App
- Policy-Based Mode for Default Services
Lesson 10: FortiGate Firewall Modes (Transparent)
- Configure & Verify IPv4 DoS Policy
- Network Address Translation Theory
- Policy, Source, Interface Overload NAT Lab
- Policy, Source, Overload NAT Lab
- FortiGate Firewall Modes (Transparent)
Lesson 11: NAT Theory
- Network Address Translation Theory
- Policy, Source, Interface Overload NAT
- Policy, Source, Overload NAT Lab
- Policy, Source, One-To-One NAT
- Policy, Source, Fixed Port Range NAT
- Policy, Source, Port Block Allocation NAT Lab
Lesson 12: High Availability Theory
- Destination NAT, Virtual IP with Central SNAT
- Addresses Objects in FortiGate Firewall
- Services Objects in FortiGate Firewall
- High Availability (HA) Theory
- High Availability HA Active-Passive Lab
Lesson 13: Authentication with AD
- High Availability HA Active-Active Lab
- FortiGate Authentication With AD & Lab Setup
- FortiGate Active Authentication(AD).
- FortiGate Passive Authentication (AD).
- Configure & Verify Virtual Domains (VDOMs).
Lesson 14: IPSec VPN and Firmware Upgrade
- Site-to-Site IPSec Route-Based VPN Template
- Site-to-Site IPsec Route-Based VPN Custom Lab
- Configure SNMP V1/V2 and SNMP V3 in FortiGate
Lesson 15: Traffic Shaping and SSL VPN
- Configure Syslog in FortiGate
- Traffic Shaping Shared Shaper and Per IP
- Remote Access SSL VPN Web Portal Theory &
- Remote Access IPSec VPN Theory and Lab
Lesson 16: Traffic Shaping and SSL VPN
- Troubleshooting FortiGate
- Fundamental CLI Commands in FortiGate
- Configure and Verify Packet Capture in FortiGate
- Source NAT, Central Secure NAT (SNAT)
- Destination NAT, Virtual IP in Security Policy
Job Roles
- Network Engineer
- NOC Engineer
- Network Security
Exam
- Fortinet NSE 4
Associated Certification
Upon successful completion of this course, participants will receive a Nodebook (Private) Limited certificate.
Course
Overview
Course Modality
- Onsite / Online
Course Duration
- 3 Days
Course Level
- Professional
Professional
- Forti Gate