Visão Geral

No Curso Forcepoint NGFW Administrator, você aprenderá as habilidades necessárias para atuar como administrador de sistema responsável pela instalação, configuração, administração e suporte do Forcepoint NGFW. Por meio de conteúdo instrucional, demonstrações e exercícios práticos de laboratório, você aprenderá os requisitos e recomendações para implantar com sucesso o Forcepoint NGFW em uma variedade de ambientes de rede. Você desenvolverá experiência na criação de regras e políticas de segurança, gerenciamento de usuários e autenticação, configuração de VPNs, inspeção profunda de tráfego e execução de tarefas administrativas comuns, incluindo monitoramento e relatórios de status.

Objetivo

Após concluir este Curso Forcepoint NGFW Administrator, você será capaz de:

• Acesse o ambiente virtual de treinamento, materiais de aula e ambiente de laboratório.
• Articular os benefícios e diferenciais do Sistema NGFW.
• Identifique os componentes do SMC e suas funções.
• Administre os componentes SMC e use-os para gerenciar e monitorar firewalls NGFW.
• Configure políticas de segurança e controle de acesso.
• Configure a tradução de endereços de rede.
• Configure um proxy Sidewinder.
• Implemente inspeção profunda por meio de políticas e modelos.
• Implemente filtragem de arquivos e detecção de malware.
• Implemente alertas e notificações.
• Gerenciar usuários e autenticação.
• Configure soluções VPN móveis.
• Configure uma VPN site a site.
• Gerencie a coleta e o armazenamento de logs.
• Utilize monitoramento, estatísticas e relatórios.
• Faça uso de ferramentas de gerenciamento de políticas.
• Execute a solução de problemas básicos do NGFW.

Publico Alvo

• Usuários finais do Forcepoint NGFW

Pre-Requisitos

• Compreensão geral de administração de sistemas e serviços de Internet
• Conhecimento básico de conceitos de redes e segurança de computadores

Materiais

Conteúdo Programatico

Introduction

NGFW Overview

1. Articulate NGFW key benefits and differentiators from other firewall products.
2. Differentiate the various NGFW operating modes.
3. Describe the NGFW Hardware Platform and Virtualization options.
4. Describe different installation methods.
5. Understand different NGFW deployment options.

SMC Overview

1. Articulate the NGFW system architecture.
2. Describe the components of the SMC and its supported platforms.
3. Identify the properties of the Management & Log server.
4. Identify the properties of the Web Portal Server.
5. Articulate the SMC Deployment options.
6. Understand communication between SMC components and NGFW.
7. Understand locations and contact addresses.

Getting Started with SMC

1. Describe a high-level overview of the functionality of the management client.
2. Prepare to perform system backups.
3. Describe SMC High Availability solutions.
4. Understand different SMC Administrator roles and access limitation.
5. Articulate SMC logging approach and how to utilize Logs view.

NGFW Policies and Templates

1. Describe the types of NGFW policies.
2. Understand firewall policy templates.
3. Explain automatic rules.
4. Understand a firewall policy hierarchy.

Access Control and NAT

1. Utilize the policy editor to customize NGFW policies.
2. Configure Access Control Rules.
3. Understand Rules Options.
4. Describe the supported types of NAT.
5. Configure the Network Address Translation.

Traffic Inspection

1. Understand the difference between stateful and proxy mode.
2. Configure web filtering.
3. Explain different ways to control applications.
4. Configure Sidewinder Proxy on the NGFW.
5. Describe integration with external solutions.

Inspection Policies

1. Describe the Inspection Policies and Inspection Policy hierarchy.
2. Configure the system policies and utilize the template for deep packet inspection.
3. Articulate the different inspection policy components and options..
4. Modify Inspection rules to react with various traffic.
5. Understand how to tune the Inspection Policy.

Malware Detection and File Filtering Policies

1. Explain the malware detection process in the NGFW.
2. Articulate the different options for detecting malware.
3. Configure a File Filtering Policy.
4. Explain the detection methods used in the NGFW Inspection.

Alerting and Notifications

1. Explain the alert escalation process in the NGFW system.
2. Create an alert policy and alert chain to escalate an alert.
3. Configure alert notifications channels.

Users and Authentication

1. Identify supported directory servers and authentication methods.
2. Explain and configure user authentication.
3. Comprehend user identification.
4. Understand how to integrate active directory interacts with the FUID agent.
5. Understand ECA agent integration in windows environments.

Mobile VPN and SSL VPN Portal

1. Understand client based and clientless remote access.
2. Articulate the different Forcepoint options for remote access.
3. Perform the SSL VPN Portal configuration.

Site-to-Site VPN

1. Understand NGFW VPN Terminology.
2. Differentiate between policy-based VPN and route-based VPN.
3. Understand different site-to-site VPN topologies.
4. Configure a policy-based VPN.

Using Logs

1. Describe the log entry types available in the NGFW.
2. Analyze how pruning filters affect log data.
3. Create permanent filters.
4. Illustrate the analysis and visualization tools for logs.
5. Configure log data management tasks.

Monitoring, Statistics, and Reporting

1. Understand status monitoring views and dashboards.
2. Understand Overviews and alert thresholds.
3. Create customizable reports from log data.
4. Comprehend the different third-party probing methods.

Policy Tools

1. Understand policy snapshots within the Management Server.
2. Run the Rule Search tool available for Access rules, NAT rules, and Inspection Policies.
3. Utilize the Policy Validation tool.
4. Understand the Rule Counter Analysis.
5. Comprehend the Policy Activation process in NGFW.

Troubleshooting

1. Understand the full troubleshooting process.
2. Recognize the different kinds of logs that SMC provides to perform troubleshooting.
3. Utilize various logs for troubleshooting and understand their meaning.
4. Capture traffic and run diagnostics.
5. Learn what to provide support when troubleshooting.
6. Apply knowledge through three common problem scenarios.

What’s new in NGFW

1. Describe the new features added in the latest update to the Force