Network Security with Palo Alto | Ingress Academy

Этот материал пока недоступен на языке Русский — показан на другом доступном языке. Доступно на: AZ, EN

Network Security & Ethical Hacking

Network Security with Palo Alto

This comprehensive course is designed for IT professionals, Network and Cybersecurity engineers looking to deepen their expertise in network security and Palo Alto NGFW based on legacy PCNSA/PCNSE certifications. Through hands-on labs, in-depth lessons, and practical exercises, participants will gain a robust understanding of Network Security principles and how to use Palo Alto Next Generation Firewall to protect their network and securely improve its functionality. By the end of the course, participants will be equipped to gain knowledge related to network security, configure and optimize Palo Alto from scratch according to best practices, troubleshoot and resolve network and security problems.

Эксперт Очно 12 недель 48 часов

О курсе

This comprehensive course is designed for IT professionals, Network and Cybersecurity engineers looking to deepen their expertise in network security and Palo Alto NGFW based on legacy PCNSA/PCNSE certifications. Through hands-on labs, in-depth lessons, and practical exercises, participants will gain a robust understanding of Network Security principles and how to use Palo Alto Next Generation Firewall to protect their network and securely improve its functionality. By the end of the course, participants will be equipped to gain knowledge related to network security, configure and optimize Palo Alto from scratch according to best practices, troubleshoot and resolve network and security problems.

Программа обучения

Скачать программу
  1. 1 Information and Network Security Basics (standards, terminology)
  2. 2 Next-Generation Firewall (NGFW)
  3. 3 Palo Alto Networks Security Platform Overview
  4. 4 NGFW Core Components and Deployment Architecture
  1. 1 Management Interfaces (GUI, CLI, API)
  2. 2 Initial Setup Wizard and Licensing
  3. 3 Interface Types and Zone-Based Architecture
  1. 1 Static Routing
  2. 2 Virtual Routers
  3. 3 Dynamic Routing (OSPF, BGP)
  4. 4 Routing Troubleshooting Tools
  5. 5 Lab: Static Route, OSPF, and BGP Configurations
  1. 1 Security Policy Rules
  2. 2 Application Identification (App-ID)
  3. 3 App-ID Use Cases
  4. 4 Lab: App-ID Based Policy Configuration
  1. 1 User-ID Concepts
  2. 2 User Mapping Techniques
  3. 3 Policy Enforcement with User-ID
  4. 4 Lab: User-ID Configuration and Testing
  1. 1 Source and Destination NAT
  2. 2 Static vs Dynamic NAT
  3. 3 Policy-Based Forwarding (PBF)
  4. 4 Lab: NAT and PBF Scenarios
  1. 1 Address and Service Objects
  2. 2 Dynamic Address Groups
  3. 3 Tags and Usage in Policies
  4. 4 Lab: Using Tags and Dynamic Groups
  1. 1 Importance of Decryption
  2. 2 SSL Forward Proxy & Inbound Inspection
  3. 3 Certificate Management
  4. 4 Lab: SSL Decryption Setup
  1. 1 Antivirus, Anti-Spyware, Vulnerability Protection
  2. 2 File Blocking
  3. 3 URL Filtering
  4. 4 Lab: Threat Prevention Configuration
  1. 1 WildFire Overview
  2. 2 File Analysis Flow
  3. 3 Security Policy Integration
  4. 4 Lab: WildFire Monitoring
  1. 1 Log Types and Filtering
  2. 2 Application Command Center (ACC)
  3. 3 Custom Reports
  4. 4 Lab: Logs and ACC Troubleshooting
  1. 1 HA Modes and Concepts
  2. 2 Configuration and Synchronization
  3. 3 Failover Testing
  4. 4 Lab: HA Setup
  1. 1 GlobalProtect Overview and Modes
  2. 2 Authentication, Portals, and Gateways
  3. 3 Split Tunneling and HIP Profiles
  4. 4 Lab: GlobalProtect Setup
  1. 1 IPSec Architecture and Crypto Profiles
  2. 2 Tunnel Interfaces and Routing
  3. 3 VPN Troubleshooting
  4. 4 Lab: IPSec Tunnel Configuration
  1. 1 Security Best Practices
  2. 2 Zero Trust Architecture
  3. 3 Common Pitfalls and Fixes
  4. 4 Lab: Real-World Scenario Implementation
  1. 1 Core Service Configuration (Routing, NAT, Policies)
  2. 2 User-ID, GlobalProtect, Threat Prevention
  3. 3 End-to-End Traffic Simulation and Monitoring

Преподаватели