Forcepoint NGFW Administrator Course Training

  • Learn via: Classroom / Virtual Classroom / Online
  • Duration: 3 Days
  • Download PDF
  • We can host this training at your preferred location. Contact us!

During this four day training course, you will learn how to install, configure, administer, and support Stonesoft NGFW.

Through instruction, demonstrations, and hands-on lab practice exercises, you will learn the requirements and recommendations to successfully deploy Stonesoft NGFW in a variety of network environments. You will develop expertise in creating security rules and policies, managing users and authentication, understanding multi-link technology, configuring VPNs, deep traffic inspection, performing common administration tasks including status monitoring and reporting.

Working knowledge of Microsoft Windows administration, system administration concepts, a basic understanding of computer security concepts, and a general understanding of Internet services.

Who should attend?

Channel Partners:

  • Consultants, system architects, integrators and planners who help customers with Stonesoft NGFW implementations.

Forcepoint Sales Engineers:

  • Forcepoint personnel who provide pre-sales and post-sales support for Stonesoft NGFW.

  • Understand the fundamentals of NGFW
  • Understand different installation methods
  • Understand SMC capabilities
  • Understand FW/VPN roles and clustering
  • Configure routing
  • Configure security policies
  • Understand Multi-Link technology
  • Configure Multi-Link VPNs
  • Manage users and authentication
  • Configure IPsec and SSL VPNs
  • Perform traffic and deep inspection
  • Perform common administration tasks
  • Understand monitoring capabilities
  • Configure reporting

Day 1
1) Introductions

  • Participant introductions
  • Logistics
  • Course Objectives

2) Next Generation Firewall Engine

  • NGFW History & Background
  • Key Benefits and Differentiators
  • Operating Modes
  • Hardware Platforms and Virtualization
  • Installation Methods
  • Licensing and Add-ons

3) SMC Overview

  • NGFW System Architecture
  • SMC Components / Supported Platforms
  • Management & Log Server Properties
  • WebPortal Server Properties
  • Deployment Options
  • Status View / Configuration View
  • Management Client Tools
  • Local Manager

4) FW/VPN Role and Clustering

  • NGFW FW/VPN Role & Requirements
  • Multi-layer Inspection
  • Single NGFW Overview
  • Clustering Technology
  • Firewall Cluster
  • IPS Serial Clustering
  • Additional Firewall Features
  • NGFW Engine Architecture

5) Routing and Anti-Spoofing

  • Static Routing Configuration
  • Special Routing Conditions
  • Policy Routing
  • Dynamic Routing Overview

6) Security Policies

  • Policy Types
  • Packet Processing Flow
  • Firewall Templates and Policy
  • Structure
  • Firewall Policy
  • Policy Tools & Rule Options
  • NAT Definition
  • Address Translation Options
  • Proxy ARP and NAT

Day 2
7) Log Data Management

  • Purpose of Logs
  • Log Entry Types
  • Logging Generation
  • Log Data Pruning
  • Logs View
  • Visualizing Logs
  • Filters
  • Third Party Logs

8) Multi-Link Technology

  • Outbound Traffic Management
  • Link Selection Methods
  • Outbound Multi-Link Configuration
  • Server Pools
  • Multi-Link for Inbound Traffic
  • Configuring Server Pools and
  • Inbound Multi-Link

9) Multi-Link VPN

  • Overview of VPNs
  • VPN Topologies
  • VPN High Availability
  • Policy-Based VPN Configuration
  • VPN Tools
  • Route-Based VPN

10) Users and Authentication

  • Managing Users
  • Directory Servers
  • Supported Authentication Methods
  • User Authentication Process
  • Browser Based Authentication

Day 3
11) IPsec VPN Client

  • Mobile VPN Connections
  • IPsec VPN vs SSL VPN Tunneling
  • VPN Client Configuration - Gateway Side
  • VPN Client Configuration - Client Side
  • Troubleshooting Tools

12) SSL VPN

  • Client Based and Clientless Access
  • SSL VPN Portal Overview
  • SSL VPN Services
  • Routing Methods
  • SSL VPN Portal Configuration

13) Traffic Inspection in Access Rules

  • Traffic Inspection
  • Protocol Agents
  • Applications
  • Web Filtering
  • Anti-Virus
  • Anti-Spam
  • GTI and ATD
  • Deep Inspection
  • TLS Inspection

Day 4
14) Inspection and File Policies

  • Deep Inspection
  • NGFW Policy Templates
  • Predefined Inspection Policies
  • Situation Concepts
  • Inspection Rules Tree
  • Fine-Tuning Inspection
  • Inspection Exception Rules
  • Rule Options
  • Blacklist
  • Packet Inspection Procedure

15) Administration Tasks

  • Role-Based Access Control
  • Alert Process
  • Log Management Tasks
  • Log Forwarding
  • System Upgrades and Backups
  • SMC High Availability
  • Location and Contact Addresses
  • Troubleshooting / Support

16) Monitoring, Statistics and Reports

  • Status Monitoring
  • Overviews
  • Reports
  • Report Designs, Sections, and Items
  • Geolocation Maps
  • Session Monitoring
  • Third-Party Monitoring
Contact us to register for a training, to plan a customized training and for all other enquiries!

Upcoming Trainings

Join our public courses in our Istanbul, London and Ankara facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

09 November 2020

3 Days
Classroom / Virtual Classroom

Istanbul, Ankara, London
Bilgi iste & Kayıt ol Istanbul, Ankara, London

30 November 2020

3 Days
Classroom / Virtual Classroom

Istanbul, Ankara, London
Bilgi iste & Kayıt ol Istanbul, Ankara, London

18 January 2021

3 Days
Classroom

Istanbul, Ankara, London
Bilgi iste & Kayıt ol Istanbul, Ankara, London

22 March 2021

3 Days
Classroom

Istanbul, Ankara, London
Bilgi iste & Kayıt ol Istanbul, Ankara, London
+90 212 282 7700
info@bilginc.com