PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201)

Course Overview: PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Class is a three-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. This course prepares the student for the Palo Alto Networks Accredited Configuration Engineer (ACE) and progress to the Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.

Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.

This course sets up the foundation for the two day course PA-212: Palo Alto Networks Firewall Configure Extended Features. The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications.

Attendees to the PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Course will receive TechNow approved course materials and expert instruction.

TechNow PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) immediately follows this course in the schedule so that you can take both courses in the same week. We also offer a discount for attending both classes in the same week!!

Dates/Locations: No Events

Duration: 3 days

Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall, including hands-on experience in configuring the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks Operating System (PAN-OS).

Day 1

Module 0 – Introduction & Overview
Module 1 – Platforms and Architecture
- Single-Pass Architecture
- Flow Logic
Module 2 – Initial Configuration
- Initial Access to the System
- Configuration Management
- Licensing and Software Updates
- Account Administration
Mod 3: Basic Interface Configuration
- Security Zones
  Layer 2, Layer 3, Virtual Wire, and Tap
- Subinterfaces
- DHCP
- Virtual Routers
Mod 4: Security and NAT Policies
- Security Policy Configuration
- Policy Administration
- NAT (source and destination)

Day 2

Mod 5: Basic App-ID™
- App-ID Overview
- Application Groups and Filters
Mod 6: Basic Content-ID™
- Antivirus
- Anti-spyware
- Vulnerability
- URL Filtering
Mod 7: File Blocking and WildFire™
- File Blocking
- WildFire
Mod 8: Decryption
- Certificate Management
- Outbound SSL Decryption
- Inbound SSL Decryption

Day 3

Mod 9: Basic User-ID™
- Enumerating Users
- Mapping Users to IP Addresses
- User-ID Agent
Mod 10: Site-to-Site VPNs
- IPSec Tunnels
Mod 11: Management and Reporting
- Dashboard
- Basic Logging
- Basic Reports
- Panorama
Mod 12: Active/Passive High
- Availability
- Configuring Active/Passive HA

Prerequisites:

Security+, Network+, CCNA and networking experience is recommended.

This course is in no way associated with Palo Alto Networks, Inc.

Comments

Latest comments from students

Like the class? Then let everyone know!

PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205)

Course Overview: PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Class is a two-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content. This course prepares the student for Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.

Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.

This course sets up the foundation for the three day course PA-243: Palo Alto Networks Firewall Debug and Troubleshoot (EDU-311). The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications. Attendees to the PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Course will receive TechNow approved course materials and expert instruction.

Dates/Locations: No Events

Duration: 2 days

Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content.

Day 1

Module 0 – Introduction & Overview
Mod 1: Advanced Interface
- Configuration
- Advanced NAT
- Policy-Based
- Forwarding
- Routing Protocols (OSPF)
Mod 2: App-ID™ –
- Custom Applications
- Defining New Application Signatures
- Application Override
Mod 3: Advanced Content-ID™
- Custom Threat Signatures
- Data Filtering
- DoS Protection
- Botnet Report
Mod 4: Advanced User-ID™
- Terminal Server Agent
- Captive Portal
- XML API

Day 2

Mod 5: Quality of Service
- Configuring Quality of Service
Mod 6: GlobalProtect™
- Implementation of GlobalProtect
- Install and Configure Portal, Gateway, and Agents
Mod 7: Monitoring and Reporting
- Log Forwarding
- SNMP
- Reporting
Mod 8: Active/Active High Availability
- Configuring Active/Active HA

Prerequisites:

PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201)

This course is in no way associated with Palo Alto Networks, Inc.

Comments

Latest comments from students

Like the class? Then let everyone know!

TN-525: Certified Penetration Testing Professional (CPENT)

Course Overview:

A rigorous Pen Testing program that, unlike contemporary Pen Testing courses, teaches you how to perform an effective penetration test across filtered networks. The course requires you to Pen Test IoT systems, OT systems, builds on your ability to write your own exploits, build your own tools, conduct advanced binaries exploitation, double pivot to access hidden networks, and various technologies.

What’s Included:

- EC-Council official E-Courseware
- EC-Council official Certificate of Attendance
- EC-Council iLabs with access for 6 months
- EC-Council CPENT Range access
- CEH Exam Voucher
Dates/Locations:

No Events

Duration: 5 days

Course Content:
- - Module 01. Introduction to Penetration Testing
  - Module 02. Penetration Testing Scoping and Engagement
  - Module 03. Open Source Intelligence (OSINT)
  - Module 04. Social Engineering Penetration Testing
  - Module 05. Network Penetration Testing – External
  - Module 06. Network Penetration Testing – Internal
  - Module 07. Network Penetration Testing – Perimeter Devices
  - Module 08. Web Application Penetration Testing
  - Module 09. Wireless Penetration Testing
  - Module 10. IoT Penetration Testing
  - Module 11. OT/SCADA Penetration Testing
  - Module 12. Cloud Penetration Testing
  - Module 13. Binary Analysis and Exploitation
  - Module 14. Report Writing and Post Testing Actions
Prerequisites:
- - - Pass the CEH exam
    - Pass the CND exam
Target Audience:

Penetration Testers, Ethical Hackers, Information Security Consultants/ Testers/ Analysts/ Engineers, Network Server Administrators, Firewall & System Administrators, Risk Assessment Professionals

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-939: Hacker Techniques, Exploits, and Incident Handling Course

Course Overview:

A skills focus enables the student to better absorb the subject matter and perform successfully on the exam. This is not death by power point. The course is aligned with information assurance operators and executing hands-on labs. Lecture and labs walk the student through the knowledge required to truly understand the mechanics of the attacks and the effectiveness. Students then gain network experience and use sniffing to help exemplify the benefit of learning wired and wireless security configurations. The course concludes with exercising real attack strategies to demonstrate the techniques acquired throughout the course.

Attendees to TN-939: Hacker Techniques, Exploits, and Incident Handling will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Duration: 9 days

Course Objectives:

Backdoors & Trojan Horses
Buffer Overflows
Covering Tracks: Networks
Covering Tracks: Systems
Denial of Service Attacks
Exploiting Systems Using Netcat
Format String Attacks
Incident Handling Overview and Preparation
Incident Handling Phase 2: Identification
Incident Handling Phase 3: Containment
Incident Handling: Recovering and Improving Capabilities
IP Address Spoofing
Network Sniffing
Password Attacks
Reconnaissance
Rootkits
Scanning: Host Discovery
Scanning: Network and Application Vulnerability scanning and tools
Scanning: Network Devices (Firewall rules determination, fragmentation, and IDS/IPS evasion)
Scanning: Service Discovery
Session Hijacking, Tools and Defenses
Types of Incidents
Virtual Machine Attacks
Web Application Attacks
Worms, Bots & Bot-Nets

Prerequisites:

GSEC or equivalent experience
UNIX, Windows, Networking, and Security Experience
This is a hands-on skill course requiring comfort with command line interaction and network communications

Comments

Latest comments from students

User: m_jurrens

Instructor comments: Both instructors Mr. Askey and Mr. Hackney, were very good. the open learning environment was extremely productive and I felt we all learned far more that we ever would out of a structured rote memorization course.

User: natebonds

Instructor comments: Both Mr. Askey and Hackney were extremely knowledgeable. They were also extremely interested in helping each student learn. I was particularly impressed with the way they tailored the course to optimize our time since we weren't testing. I feel like I know much much more than I did when the class started.

Facilities comments: The facilities were fine. I would have preferred it be closer to Lackland.

Liked the class? Then let everyone know!

Microsoft

The Microsoft platform is arguably the largest component in any IT architecture, and rate of change in this arena makes training in the Microsoft platform a must. TechNow can and does teach the entire gamut of Microsoft technologies, from Servers to application development.

Here is a list of all of our Microsoft courses: