Course Overview: PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Class is a two-day course that teaches students to configure and manage the entire line of Palo Alto Networks next-generation firewalls. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content. This course prepares the student for Palo Alto Networks Certified Network Security Engineer (PCNSE). Through hands-on training, students learn high end skills of how to integrate Palo Alto next-generation firewalls into their network infrastructure. This is not a virtualized theoretical course. This is hands-on, real world instruction, directly relevant to the DoD and Commercial implementations of Palo Alto Networks next-generation firewalls.
Each student is issued a physical Palo Alto firewall and a Cisco layer 3 switch at their desk. Real hardware per student for real experience and real skill development. TechNow provides a very comprehensive client infrastructure that includes Windows, Linux, and multiple packet sniffer agents.
This course sets up the foundation for the three day course PA-243: Palo Alto Networks Firewall Debug and Troubleshoot (EDU-311). The instructor for this course has been a lead in Unix kernel development to implement firewall and intrusion detection technologies. Additionally, the instructor has taught several security appliance products and carries several SANS, ISC2, ISACA, Cisco, Unix, and Windows certifications. Attendees to the PA-212: Palo Alto Networks Firewall Configure Extended Features (EDU-205) Training Course will receive TechNow approved course materials and expert instruction.
Dates/Locations:
Duration: 2 days
Course Objectives: Students attending this foundational-level training course will gain an in-depth knowledge of how to configure and manage their Palo Alto Networks firewall. Students also will be instructed on the basics of implementing and managing GlobalProtect™ and active/ active high availability. Students will gain an in-depth knowledge of how to optimize their visibility and control of applications, users, and content.
Day 1
- Module 0 – Introduction & Overview
- Mod 1: Advanced Interface
- Configuration
- Advanced NAT
- Policy-Based
- Forwarding
- Routing Protocols (OSPF)
- Mod 2: App-ID™ –
- Custom Applications
- Defining New Application Signatures
- Application Override
- Mod 3: Advanced Content-ID™
- Custom Threat Signatures
- Data Filtering
- DoS Protection
- Botnet Report
- Mod 4: Advanced User-ID™
- Terminal Server Agent
- Captive Portal
- XML API
|
Day 2
- Mod 5: Quality of Service
- Configuring Quality of Service
- Mod 6: GlobalProtect™
- Implementation of GlobalProtect
- Install and Configure Portal, Gateway, and Agents
- Mod 7: Monitoring and Reporting
- Log Forwarding
- SNMP
- Reporting
- Mod 8: Active/Active High Availability
- Configuring Active/Active HA
|
Prerequisites:
This course is in no way associated with Palo Alto Networks, Inc.
Comments
Latest comments from students
Like the class? Then let everyone know!
