Fortigate Firewall Security (NSE 4)

Networking and Security
Online & Offline

Pelatihan dan sertifikasi Fortigate Firewall Security (NSE 4) merupakan program intensif yang menghadirkan pemahaman mendalam tentang keamanan jaringan melalui platform Fortigate. Dengan pusat perhatian pada teknologi canggih yang disediakan oleh Fortinet, pelatihan ini mempersiapkan peserta untuk mengatasi tantangan kompleks dalam menjaga integritas, kerahasiaan, dan ketersediaan data dalam lingkungan jaringan yang terus berkembang. Melalui lab interaktif, peserta akan mempelajari kebijakan firewall, struktur keamanan, otentikasi pengguna, SSL VPN, serta cara melindungi jaringan dengan mengimplementasikan profil keamanan seperti IPS, antivirus, pemfilteran web, pengendalian aplikasi, dan beragam fitur lainnya. Dasar-dasar administrasi yang diajarkan akan memberikan pemahaman yang kuat tentang penerapan keamanan jaringan dasar, dengan penerapan langsung melalui perangkat lunak simulasi dan perangkat keras Fortigate.

  • Konsep dasar keamanan jaringan dan ancaman yang ada.
  • Konfigurasi dan administrasi perangkat fortigate.
  • Implementasi firewall, vpn, ids/ips, dan perlindungan terhadap serangan ddos.
  • Pemantauan dan manajemen lalu lintas jaringan.
  • Penanganan insiden keamanan dengan cepat dan efektif.
  • Peserta mampu mengontrol akses jaringan ke jaringan yang dikonfigurasi menggunakan kebijakan firewall.
  • Peserta mampu mengautentikasi pengguna menggunakan kebijakan firewall.
  • Peserta memahami fungsi enkripsi.

Pelatihan ini cocok untuk para profesional it, keamanan jaringan, administrator jaringan, dan siapa pun yang ingin memperdalam pemahaman mereka tentang keamanan jaringan menggunakan solusi fortigate.

Peserta diharapkan memiliki pengetahuan dasar tentang jaringan dan keamanan komputer, termasuk pengetahuan tentang lapisan osi, protokol jaringan, serta pemahaman dasar tentang konsep firewall dalam jaringan ipv4. Pengalaman sebelumnya dalam konfigurasi perangkat jaringan akan menjadi nilai tambah, tetapi tidak diwajibkan.

  • Module 1: Introduction to FortiGate
    • Understanding FortiGate
    • Overview of FortiGate features and capabilities
  • Module 2: Configuration of FortiGate via CLI
    • Introduction to command line interface (CLI)
    • Configuring FortiGate via CLI
    • Network topology
    • Verifying configuration results through CLI
    • Network connectivity testing
    • Checking configuration results in GUI
    • Accessing CLI console within GUI
  • Module 3: Backup and Restore Configuration
    • Creating backups to local PC
    • Backup encryption
    • Restoring configurations
    • Configuration revision
  • Module 4: Configuring Administrator Accounts
    • Changing admin passwords
    • Limiting administrator access
    • Viewing administrator login sessions
    • Creating admin profiles
    • Testing admin user accounts
  • Module 5: Firewall Policy
    • Lab 1: Creating firewall address objects and policies
      • Network topology
      • Creating firewall address objects
      • Creating firewall policies
      • Testing firewall policies and access logs
    • Lab 2: Re-ordering firewall policies
      • Creating policies for blocking ping
      • Testing reordering of firewall policies
    • Lab 3: ISDB object
    • Lab 4: Policy lookup
  • Module 6: Network Address Translation
    • Lab 1: Virtual IP
      • Network topology
      • Creating virtual IPs
      • Creating firewall policies
      • Testing virtual IPs (DNAT)
      • Testing SNAT
    • Lab 2: IP pool
      • Creating IP pools
      • Editing firewall policies
      • Testing IP pools
    • Lab 3: Port forwarding
  • Module 7: Firewall Authentication
    • Lab 1: Authentication through firewall policy
      • Creating user and group accounts
      • Editing firewall policies
      • Testing authentication
      • Monitoring firewall users
    • Lab 2: Configuring captive portal
      • Activating captive portal
      • Testing captive portal
      • Monitoring firewall users
  • Module 8: Logging and Monitoring
    • Lab 1: Configuring log settings
      • Configuring log settings
      • Configuring threat weight
    • Lab 2: Enabling logs in firewall policies
    • Lab 3: Log monitoring via alert email
  • Module 9: Certificate Operations
  • Module 10: Web Filtering
    • Lab 1: FortiGuard web filter categories
      • Configuring web filter categories
      • Attaching web filter to firewall policies
      • Testing web filtering
      • Logging and monitoring web filtering
    • Lab 2: URL filter
      • Configuring static URL in web filter
      • Attaching static URLs to firewall policies
      • Testing static URL web filtering
      • Checking static URL log
  • Module 11: Application Control
    • Application control overview
    • Configuring application control
    • Attaching application control to firewall policies
    • Testing application control
    • Monitoring application control logs
  • Module 12: Antivirus
    • Creating antivirus profiles
    • Attaching antivirus profiles to firewall policies
    • Testing antivirus
    • Monitoring antivirus logs
  • Module 13: Intrusion Prevention System (IPS) and Denial of Service (DoS)
    • Lab 1: Blocking known exploits
      • Configuring IPS profiles
      • Attaching IPS profiles to firewall policies
      • Testing IPS
      • Monitoring IPS logs
    • Lab 2: DoS attack
      • Creating DoS policies
      • Testing DoS policies
  • Module 14: SSL VPN
    • Lab 1: Configuring SSL VPN web mode
      • Configuring SSL-VPN settings
      • Creating firewall policies for SSL-VPN
      • Testing SSL-VPN web access
      • Creating bookmarks
      • Testing VPN access with bookmarks
      • Monitoring SSL VPN users
    • Lab 2: Configuring SSL-VPN tunnel mode
  • Module 15: Dialup IPsec VPN
    • Lab: Configuring dialup IPsec VPN between 2 FortiGate devices
      • Setting up dialup server on FGT-LAB1
      • Creating firewall policies for LAN-to-remote traffic
      • Creating firewall policies for remote-to-LAN traffic
      • Setting up dialup client on FGT-LAB2
      • Creating firewall policies for LAN-to-local traffic
      • Creating firewall policies for local-to-LAN traffic
      • Testing IPsec and monitoring VPN
  • Module 16: Routing
    • Lab 1: Configuring route failover
      • Checking route configurations
      • Adding static routes for ISP2 as backup
      • Creating firewall policies
      • Checking routing table
      • Configuring health checks
      • Testing from user-LAN
      • Testing routing failover
      • Restoring ISP1 internet connection
    • Lab 2: Equal cost multipath (ECMP) & policy routing
      • Configuring administrative distances
      • Changing ECMP load balancing method
      • Verifying traffic routing
      • Configuring priorities
      • Verifying ECMP
      • Configuring policy routing for HTTP traffic
      • Verifying policy routing
  • Module 17: SD-WAN
    • Lab 1: SD-WAN
      • Network topology
      • Initial CLI configuration
      • FortiGate FGT-LAB1 configuration
      • SD-WAN zones for internet
      • Routing SD-WAN for internet
      • Performance SLA for internet
      • SD-WAN rules for internet
      • Firewall policies for internet
      • VPN tunnel configuration
      • Creating VPN zone
      • Network performance SLA for VPN
      • Network performance SLA VPN traffic destination (CLI)
      • SD-WAN rule for VPN
      • Firewall policies for LAN-to-remote and remote-to-LAN
    • Lab 2: SD-WAN testing
      • Performance SLA configuration
      • Connection testing
      • IPsec monitor
      • SD-WAN zones
      • Failover testing
  • Module 18: Virtual Domains
    • Lab 1: Creating VDOMs
      • Creating VDOMs
      • Testing user LAN-VDOM-A
      • Configuring multi-VDOM
    • Lab 2: Split-VDOM
      • Network topology
      • CLI configuration
      • GUI login
      • Setting VDOM FG-traffic
      • Testing VDOM FGT-traffic
  • Module 19: Layer 2 Switching
    • Lab 1: Transparent mode
      • Network topology
      • CLI configuration
      • Accessing GUI
      • Creating firewall policies
      • Testing transparent mode
    • Lab 2: Virtual wire
      • Network topology
      • CLI configuration
      • Accessing FGT-virtualWire via GUI
      • Creating firewall policies
      • Testing virtual wire
      • Logging and reporting
  • Module 20: Site-to-Site IPsec VPN
    • Lab 1: Route-based IPsec VPN configuration
      • Network topology
      • CLI configuration
      • Creating IPsec VPN with VPN wizard
      • Testing site-to-site IPsec VPN
      • Monitoring VPN
  • Module 21: FortiNet Single Sign-On (FSSO)
    • Lab: FSSO using polling
      • Network topology
      • CLI configuration
      • LDAP connection
      • Polling active directory
      • Creating user groups
      • Creating firewall policies
      • Testing user authentication
  • Module 22: High Availability
    • Lab 1: High availability configuration
      • Network topology
      • CLI configuration on FGT-Primary
      • Accessing FGT-Primary GUI
      • Setting IP management on FGT-Secondary
      • Setting HA on FGT-Primary
      • Setting HA on FGT-Secondary
      • Verifying HA status on FGT-Primary
      • Verifying HA status on FGT-Secondary
      • Verification on both devices
      • Viewing session statistics
    • Lab 2: Triggering HA failover
      • Testing failover
      • Triggering HA failover with reset HA uptime
      • Observing HA failover using diagnostic commands
  • Module 23: Web Proxy
    • Lab: Web proxy configuration
      • Network topology
      • CLI configuration
      • Enabling explicit proxy
      • Setting explicit proxy
      • Configuring firewall policies for explicit proxy
      • Testing web proxy
  • Module 24: Diagnostic Commands
    • Lab 1: Introduction to diagnostic commands
    • Lab 2: Troubleshooting network problems
Bicarakan dengan Ahlinya !

Anda tertarik dengan Training ini? Tapi ingin mengetahui lebih detail program trainingnya atau Punya kebutuhan program training yang lain.

Training Corporate

Menyelenggarakan Training Khusus untuk perushaaan, yang materi bahasannya dapat disesuaikan/dirancang khusus untuk memenuhi kebutuhan perusahaan Anda.

Fasilitas Training

Berbagai bidang pelatihan dengan Fasilitas Lengkap, Infrastuktur, Media Pelatihan, serta Tenaga Ahli yang professional sebagai penunjang kegiatan Pelatihan & Sertifikasi.

Cek Jadwal Training Terdekat
Training Offline
  • Trainer yang berpengalaman minimal 5 tahun di bidangnya
  • Modul Hardcopy
  • Kaos Edutech
  • Godiebag Exclusive
  • Tas Waistbag
  • Sertifikat Cetak dan Softcopy
  • Coffebreak 2x, Lunch 1x
  • Software pendukung Praktikum
  • Alat – alat praktikum yang diperlukan dalam kelas training
  • Forum konsultasi pasca training selama 3 bulan
Training Online
  • Trainer yang berpengalaman minimal 5 tahun di bidangnya
  • Modul Softcopy
  • Kaos Edutech
  • Sertifikat Cetak dan Softcopy
  • Software pendukung Praktikum
  • Alat – alat praktikum yang diperlukan dalam kelas training
  • Forum konsultasi pasca training selama 3 bulan