PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201)

Course Overview: PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Class is a three-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. This course prepares the student for the Palo Alto Networks Accredited Configuration Engineer (ACE) and progress to the Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.

Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.

This course sets up the foundation for the two day course PA-212: Palo Alto Networks Firewall Configure Extended Features. The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications.

Attendees to the PA-213: Palo Alto Networks Firewall Install, Configure, and Manage (EDU-201) Training Course will receive TechNow approved course materials and expert instruction.

TechNow PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) immediately follows this course in the schedule so that you can take both courses in the same week. We also offer a discount for attending both classes in the same week!!

Dates/Locations:

No Events

Duration: 3 days

Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall, including hands-on experience in configuring the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks Operating System (PAN-OS).

Day 1

Module 0 – Introduction & Overview
Module 1 – Platforms and Architecture
- Single-Pass Architecture
- Flow Logic
Module 2 – Initial Configuration
- Initial Access to the System
- Configuration Management
- Licensing and Software Updates
- Account Administration
Mod 3: Basic Interface Configuration
- Security Zones
  Layer 2, Layer 3, Virtual Wire, and Tap
- Subinterfaces
- DHCP
- Virtual Routers
Mod 4: Security and NAT Policies
- Security Policy Configuration
- Policy Administration
- NAT (source and destination)

Day 2

Mod 5: Basic App-ID™
- App-ID Overview
- Application Groups and Filters
Mod 6: Basic Content-ID™
- Antivirus
- Anti-spyware
- Vulnerability
- URL Filtering
Mod 7: File Blocking and WildFire™
- File Blocking
- WildFire
Mod 8: Decryption
- Certificate Management
- Outbound SSL Decryption
- Inbound SSL Decryption

Day 3

Mod 9: Basic User-ID™
- Enumerating Users
- Mapping Users to IP Addresses
- User-ID Agent
Mod 10: Site-to-Site VPNs
- IPSec Tunnels
Mod 11: Management and Reporting
- Dashboard
- Basic Logging
- Basic Reports
- Panorama
Mod 12: Active/Passive High
- Availability
- Configuring Active/Passive HA

Prerequisites:

Security+, Network+, CCNA and networking experience is recommended.

This course is in no way associated with Palo Alto Networks, Inc.

Comments

Latest comments from students

Like the class? Then let everyone know!

N-505: CISCO DoD Comply to Connect (C2C)

Course Overview:

Cisco DoD Comply-to-Connect (C2C) course teaches you how to implement and deploy a Department of Defense (DoD) Comply-to-Connect network architecture using Cisco Identity Services Engine (ISE). This training covers implementation of 802.1X for both wired and wireless devices and how Cisco ISE uses that information to apply policy control and enforcement. Additionally, other topics like supplicants, non-supplicants, ISE profiler, authentication, authorization, and accounting (AAA) and public key infrastructure (PKI) support, reporting and troubleshooting are covered. Finally, C2C specific use case scenarios are covered.

This training also earns you 32 Continuing Education (CE) credits toward recertification.

Dates/Locations:

No Events

Duration: 5 days

Course Outline:

Section 1: C2C Fundamentals

Comply to Connect Overview
From C2C to ZTA
Steps to Implement C2C

Section 2: Cisco Identity-Based Networking Services

Cisco IBNS Overview
AAA Role in Cisco IBNS
Compare Cisco IBNS and Cisco ISE Solutions
Explore Cisco IBNS Architecture Components

Section 3: Introducing Cisco ISE Architecture

Cisco ISE as a Network Access Policy Engine
Cisco ISE Use Cases
Cisco ISE Functions

Section 4: Introducing Cisco ISE Deployment

Cisco ISE Deployment Models
Cisco ISE Licensing and Network Requirements
Cisco ISE Context Visibility Features
New Features in Cisco ISE 3.X

Section 5: Introducing Cisco ISE Policy Enforcement Components

802.1X for Wired and Wireless Access
MAC Authentication Bypass for Wired and Wireless Access
Identity Management
Active Directory Identity Source
Additional Identity Sources
Certificate Services

Section 6: Introducing Cisco ISE Policy Configuration

Cisco ISE Policy
Cisco ISE Authentication Rules
Cisco ISE Authorization Rules

Section 7: PKI and Advanced Supplicants

Public Key Infrastructure (PKI)
TEAP in Comply to Connect (C2C)
Secure Client ISE features and Configuration for C2C

Section 8: Introducing the Cisco ISE Profiler

Web Access with Cisco ISE
ISE Profiler
Cisco ISE Probes
Profiling Policy
Custom Attributes in Profile

Section 9: Introducing Cisco ISE Endpoint Compliance Services

Endpoint Compliance Services Overview

Section 10: Configuring Client Posture Services and Compliance

Client Posture Services and Provisioning Configuration

Section 11: Introducing Profiling Best Practices and Reporting

Profiling Best Practices

Section 12: C2C Use Cases

Cisco CX ISE Reporting Tool
ISE Reporting
ISE Hardening
Profiling Best Practices for C2C

Section 13: C2C Third-Party Integrations-Tenable

Tenable Use Case
Tenable Overview and Capabilities
Tenable Integration Prerequisites
Tenable Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 14: C2C Third-Party Integrations-MECM

MECM Use Case
MECM Overview and Capabilities
MECM Integration Prerequisites
MECM Integration Configuration
Policy Design
Policy Enforcement
Enforcement Verification

Section 15: C2C Third-Party Integrations-Trellix

Trellix Use Case
Trellix Overview and Capabilities
Trellix Integration Prerequisites
Trellix Integration Configuration
Policy Enforcement
Enforcement Verification

Section 16: Troubleshooting Cisco ISE Policy and Third-Party NAD

Cisco ISE Third-Party Network Access Device Support
Troubleshooting Cisco ISE Policy Configuration

Section 17: Exploring Cisco TrustSec

Cisco TrustSec Overview
Cisco TrustSec Enhancements
Cisco TrustSec Configuration

Section 18: Working with Network Access Devices

Reviewing AAA
Cisco ISE TACACS+ Device Administration
Configuring TACACS+ Device Administration
TACACS+ Device Administration Guidelines and Best Practices

Course Prerequisites:

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

Familiarity with 802.1X
Familiarity with Microsoft Windows Operating Systems
Familiarity with Cisco IOS CLI for wired and wireless network devices
Familiarity with Cisco Identity Service Engine

N-485: In-Depth Securing Networks with Cisco Firepower Threat Defense NGFW

Course Overview:

An in-depth course on how to use and configure Cisco Firepower Threat Defense technology, from device setup and configuration and including routing, high availability, Firepower Threat Defense migration, traffic control, and Network Address Translation (NAT). Students implement advanced Next Generation Firewall (NGFW) and Next Generation Intrusion Prevention System (NGIPS) features, including network intelligence, file type detection, network based malware detection, and deep packet inspection.
Students will also learn how to configure site to site VPN, remote access VPN, and SSL decryption before moving on to detailed analysis, system administration, and troubleshooting. This course combines lecture materials and hands on labs throughout to make sure that students are able to successfully deploy and manage the Cisco Firepower system.

It is a five-day instructor-led course that is aimed at providing network security engineers with the knowledge and skills that are needed to implement and maintain perimeter solutions that are based on Cisco Firepower security appliances. At the end of the course, students will be able to reduce risk to their IT infrastructure and applications using Cisco Firepower security appliance features, and provide detailed operations support for the Firepower appliance.

Attendees to N-485: In-Depth Securing Networks with Cisco Firepower Threat Defense NGFW will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Duration: 5 days

Course Objectives:

Understand Sourcefire, Firepower 6.2, FireAMP, and Firepower Threat Defense (FTD)
Configure the Firepower Management Center (FMC)
Raise you confidence managing the Firepower Manager and Firepower tThreat Defense (FTD)
Describe the Cisco Firepower Systems infrastructure
Navigate the user interface and administrative features of the Cisco Firepower 6.2 system, including advanced analysis and reporting functionality to properly assess threats
Describe the System Configuration and Health policies and implement them
Describe the role Network Discovery (Firepower) technology plays in the Cisco devices
Describe, create, and implement objects for use in Access Control policies
Create DNS and URL policies and configure Sinkholes
Configure FTD policies such as Platform, Routing, Interface, Zones, PreFilter, QoS, NAT and Flex Config!
Describe advanced policy configuration and Firepower system configuration options
Configure Malware Policies to find and stop Malware
Understand Security Intelligence, and how to configure SI to stop attacks NOW!
Configure policies to find and stop Ransomware
Understand how to fine tune IPS policies
Understand how to find tun Snort Preprocessor policies (NAP)
Configure Correlation events, white rules, traffic profiles and create respective events and remediate them
Analyze events
Create reporting templates and schedule them
Configure backups, rule updates, Firepower Recommendations, URL updates, and more to run every week automatically
Set up external authentication for users using LDAP/Realms
Configuring system integration, realms, and identity sources
Configure FMC domains and implement them
Configure FTD HA with two FTD devices
SSL Policy – decrypt your traffic
AnyConnect and Site-to-Site VPN
Understand network and host based AMP. Configure and analyze host based AMP
Understand Cisco Identity Services Engine (ISE)
Configure ISE and integrate with Cisco FMC identity policy using PxGrid

Prerequisites:

Cisco Certified Network Associate (CCNA) certification. or equivalent
Cisco Certified Network Associate Security (CCNA Security) certification. or equivalent
Working knowledge of the Microsoft Windows operating system.

Comments

Latest comments from students

Liked the class? Then let everyone know!

Security

Twenty years of experience in the area of information assurance ensures that you are benefiting from a very mature and successful security training program. TechNow offers the full suite of security training courses to meet any DoD 8570 requirements.

Security Course Flow

Here is our list of security related courses.

All Security Courses

Security Course Flow

Here is our list of security related courses.