PaloAlto Firewall
Course Content
PALOALTO CONTENT :- New panos 10x
- In this 3-weeks class, you will learn how to use basic FortiGate UTM.
- In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more.
- These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security.
Introduction to firewalls 1 Generation and 2nd Gne firewalls :
- Understanding 1 Generation firewalls
- Understanding 2 Generation firewalls
- Understanding 2nd Gne Firewalls and futures
- Understanding UTM firewalls futures
Introduction to Paloalto Technologies :
- What’s new in Paloalto 8x
- Paloalto Architecture
- Packet flow
Introduction to Paloalto Hardware
- Small and SMB Firewalls
- Medium Hardware Firewalls
- ISP and Data center firewalls
Deployment Platforms:
- Installing Paloalto Windows o/s
- Configure Lab Setup
- Building own Lab
Basic Configurastion :
- Management interface
- Configure DNS,
- Configuare interfaces & Zones
- Configure virtual router
- Configure DHCP
PaloaltoCofigurastin backup:
- Exporting Backup and Importing Backup
- Licence and Next Gen firewall fetures
- Upgrade firewall
Basic policy creation Paloalto:
- Configure Basic policy
- Configure policy based on services
- Configure policy based protocols
- Configure policy based on applicastions
- Configure policy based on wild masks
- Configure policy based on region
- Configure policy based on devices
- Configure unidirectional and bidirectional policy ‘s
Paloalto Nat Configurastion :-
- Configure Basic policy
- Source nat
- Destinastion nat
- U-turn nat
Paloalto App-id concepts :
- Protocols Classificastion
- Signarure
- Decryption
- Decoders
- Actions
- App-id Overide
Paloalto SSL decrypstion :
- Create SSL Certificate
- Export SSl certificate
- Deploy on Client systems
- Create Decryption policy
- Configure SSL Decrypstion exceptions
Paloalto LDAP integrastion :
- Create LDAP Server profile
- Create Authication profile
- User identificastion
- Enable user-id on zone
Paloalto content Id:
- Antivurs security profiles
- Anti-spyware security profile
- File blocking profile
- URL filter profile
- Data Filter profile
- Wildfire private and public cloud configurastion
- Attaching security profiles to security policy rules
Paloalto content Id: PACKET BASED ATTACK PROTECTION
- ZONE PROTECTION
- DOS PROTECTION
- Configure dynamic block list
Paloalto Dynamic Routing Configurastion :
- RIP Configurastion
- Ospf configurastion
- BGP Configurastion
- Redistrubstion
- Configure multiple virtual routers
Paloalto ISP Redundancy
- Configure Dual ISP’S
- Configure policy based routing
Paloalto High Availability
- Configure Active-Standby
- Configure Active-Active
Paloalto VPN Configurastion :
- IPSEC VPN overview
- Paloalto to cisco ipsec vpn configuration
- Palaolto to paloalto ip sec vpn confiugarstion
- Palaolto to paloalto ip sec vpn Aggrasive mode confiugarstion
- Paloalto to cisco ASA vpn configuration
- Paloalto to paloalto hub and spoke configuration
- Palaolto to fortigate vpn configuration
Paloalto Global Protect vpn Configurastion :-
- Create LDAP Server profile
- Create Authication profile
- Configure global protect vpn
- Trouble shoot global protect vpn
Paloalto MONITOR:
- BASIC monitoring traffic
- Monitor based on content id traffic
- ACC monitor
PALOALTO MIGRATION :
- Configure migration vm
- Before migration setps
- Migration from asa to palaolto firewall