Only 1 day
Classroom
22/10/2024 (Tuesday)
Overview
On this accelerated Forcepoint Next Generation Firewall (NGFW): Administrator course, hands-on virtual instructor-led training (VILT) course, you will learn the skills needed to practice as a system administrator responsible for installation, configuration, administration, and support of Forcepoint NGFW. Through instructional content, demonstrations, and hands-on lab practice exercises, you will learn the requirements and recommendations to successfully deploy Forcepoint NGFW in a variety of network environments. You will develop expertise in creating security rules and policies, managing users and authentication, configuring VPNs, performing deep traffic inspection, and accomplishing common administration tasks including status monitoring and reporting.
Upon completion of this course you will be able to:
- Access the virtual training environment, class materials and lab environment.
- Articulate the NGFW System benefits and differentiators.
- Identify the components of the SMC and their roles.
- Administer the SMC components and use them to manage and monitor NGFW firewalls.
- Configure security policies and access control.
- Configure network address translation.
- Configure a Sidewinder Proxy.
- Implement deep inspection through policies and templates.
- Implement file filtering and malware detection.
- Implement alerting and notification.
- Manage users and authentication.
- Configure mobile VPN solutions.
- Configure a site-to-site VPN.
- Manage log collection and storage.
- Utilize monitoring, statistics, and reporting.
- Make use of policy management tools.
- Perform basic troubleshooting of NGFW
At the end of this course, you’ll achieve your Forcepoint Next Generation Firewall (NGFW): Administrator certification.
Through Firebrand’s Lecture | Lab | Review methodology you’ll certify at twice the speed of traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.
Audience
This course is ideal for:
- New and existing customers of Forcepoint NGFW
- Forcepoint channel partners
- Forcepoint NGFW end users
Curriculum
Module 0: Introduction
- Prepare to use the virtual training environment.
- Module 1: NGFW Overview List NGFW benefits and/or differentiators.
- Explain the differences between the operating roles.
- Describe the NGFW engine and appliances.
- Describe at least one of the installation methods.
- Explain the three platforms on which the NGFW can be deployed.
Module 2: SMC Overview
- Describe the Security Management Center and its key features.
- Describe the NGFW system architecture.
- Identify the ports used for communication between SMC components.
- Explain the use of locations and contact addresses.
- Explain the use of SMC Domains.
Module 3: Getting Started with SMC
- Describe the management client and how it works.
- Create system backups.
- Describe SMC high availability options.
- Configure SMC Administrator Access
- Apply configuration to NGFW engines.
- Describe how logs work.
Module 4: NGFW Policies and Templates
- Describe the types of NGFW policies.
- Define firewall policy templates.
- Create a firewall policy hierarchy.
- Describe the benefits of aliases and continue rules.
Module 5: Access Control and NAT
- Explain how traffic is matched in access rules.
- Explain the different types of access rules.
- Describe the actions for processing traffic in access rules.
- Explain the different types of NAT.
- Configure NAT rules.
Module 6: Traffic Inspection.
- Explain the difference between service, service with protocol, and proxy.
- Explain enhanced access control methods.
- Explain different ways to control applications.
- List the detection methods used in the NGFW Inspection.
- Describe AETs and normalization.
- Describe TLS Inspection.
- Configure Snort inspection on the NGFW.
- List the Forcepoint products that integrate with the NGFW.
Module 7: Inspection Policies
- Explain how to send traffic for deep packet inspection.
- Describe Situations and how to use them.
- Define the different type of rules in the inspection policy.
- Tune an inspection policy.
Module 8: Malware Detection and File Filtering Policies
- List the different options for detecting malware.
- Explain how to send traffic for malware detection.
- Configure a file filtering policy.
- Integrate the NGFW with a Data Loss Prevention system
Module 9: Alerting and Notifications
- Explain the alert escalation process in the NGFW system.
- Create an alert policy and alert chain to escalate an alert.
Module 10: Users and Authentication
- Identify supported directory servers and authentication methods.
- Explain the browser-based user authentication mechanism.
- Configure user authentication.
- Differentiate between user authentication and user identification.
- Explain the difference between the Forcepoint FUID and ECA.
- Configure user behavior monitoring
Module 11: Mobile VPN and SSL VPN Portal
- List NGFW Mobile VPN Access options.
- Describe the SSL VPN Portal and the URL Rewrite translation method.
- Configure an SSL VPN Portal.
Module 12: Site-to-Site VPN
- Define the terms used in NGFW VPN Terminology.
- Explain how Site-to-site VPNs work
- Describe Full Mesh, Star and Hub VPN topologies
- List SD-WAN features supported by the NGFW.
- Configure a Policy-Based VPN.
- Describe How a Route-based VPN Works.
Module 13: Using Logs
- Describe the log entry types available in the NGFW.
- Use the interface to interpret and analyze logs.
- Configure and Manage Logs.
- Create permanent filters.
- Analyze how pruning filters affect log data.
- Configure the log server to forward logs to third-party SIEM systems.
- Describe the methods available for managing the space consumed by log data.
Module 14: Monitoring, Statistics, and Reporting
- Describe the benefits of Policy Snapshots.
- Search rules in an NGFW Policy.
- Analyze policy structure and apply tools to optimize the access rules.
Module 15: Policy Tools
- Monitor the system and firewall activity.
- Describe the use of overviews in the SMC user interface.
- Configure and generate reports.
- Monitor third-party components.
Module 16: Troubleshooting
- Explain the troubleshooting process.
- Use the SMC to troubleshoot your systems.
- Explain how to collect diagnostics for Support.
- Resolve common SMC issues.
- Explain how NGFW packet processing works.
Module 17: Single Firewall Installation (classroom only)
- Describe NGFW deployment options.
- List features specific to single firewalls.
- Configure a single firewall in the SMC.
- Configure an NGFW engine for initial contact with the SMC.
- Establish the trust between SMC and a newly installed NGFW engine.
Module 18: What’s new in NGFW
- Identify key features new to the NGFW in version 6.10.
- Locate the documentation needed to implement these features.
Exam Track
At the end of this accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:
Forcepoint Next Generation Firewall (NGFW): Administrator
This course prepares you for the Certified Forcepoint Next Generation Firewall Administrator exam.
A minimum score of 80% on the multiple-choice online exam is required to obtain certification.
Prerequisites
Before attending this accelerated course, you will have a:
- General understanding of system administration and Internet services
- Basic knowledge of networking and computer security concepts
- A computer that meets the requirements noted at the end of this document
What's Included
Your accelerated course includes:
- Accommodation *
- Meals, unlimited snacks, beverages, tea and coffee *
- On-site exams **
- Exam vouchers **
- Practice tests **
- Certification Guarantee ***
- Courseware
- Up-to 12 hours of instructor-led training each day
- 24-hour lab access
- Digital courseware **
* For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
** Some exceptions apply. Please refer to the Exam Track or speak with our experts.
*** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.
Benefits
Seven reasons why you should sit your course with Firebrand Training
- Two options of training. Choose between residential classroom-based, or online courses
- You'll be certified fast. With us, you’ll be trained in record time
- Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
- Pass the first time or train again for free. This is our guarantee. We’re confident you’ll pass your course the first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
- You’ll learn more. A day with a traditional training provider generally runs from 9 am – 5 pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day of quality learning time, with your instructor
- You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
- You’ll be studying with the best. We’ve been named in the Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 135,000 professionals
*For residential training only. Doesn't apply for online courses
**Some exceptions apply. Please refer to the Exam Track or speak with our experts
Think you are ready for the course? Take a FREE practice test to assess your knowledge! Free Practice Test