NSE 4 Fortigate Infrastructure 6.0

In this two-day course, you will learn how to use advanced FortiGate networking and security.

Topics include features commonly applied in complex or larger enterprise or MSSP networks, such as advanced routing, transparent mode, redundant infrastructure, site-to-site IPsec VPN, SSO, web proxy, and diagnostics.

Participants

Networking and security professionals involved in the design, implementation, and administration of a security infrastructure using FortiGate appliances.

This course assumes knowledge of basic yet FortiGatespecific fundamentals. As a result, if you know about firewalls, but are new to Fortinet, we do not recommend that you skip FortiGate I.

Prerequisites

  • Knowledge of OSI layers
    • Knowledge of firewall concepts in an IPv4 network
    • Knowledge of the fundamentals of FortiGate, as presented in the FortiGate Security course
  • System Requirements

If you take the online format of this class, you must use a computer that has the following:

  • A high-speed Internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers or headphones

One of the following:

  • HTML5 support
  •  An up-to-date Java Runtime Environment (JRE) with Java plugin enabled in your web browser

You should use a wired Ethernet connection, not a Wi-Fi connection. Firewalls, including Windows Firewall or FortiClient, must allow connections to the online labs.

Program

  • 1. Routing
  • 2. Software-Defined WAN (SD-WAN)
  • 3. Layer 2 Switching
  • 4. Virtual Domains
  • 5. Site-to-Site IPsec VPN
  • 6. Fortinet Single Sign-On (FSSO)
  • 7. High Availability (HA)
  • 8. Web Proxy
  • 9. Diagnostics

After completing this course, you should be able to:

  • Analyze a FortiGate's route table.
  • Route packets using policy-based and static routes for multi-path and load balanced deployments.
  • Configure SD-WAN to load balance traffic between multiple WAN links effectively.
  • Inspect traffic transparently, forwarding as a Layer 2 device.
  • Divide FortiGate into two or more virtual devices, each operating as an independent FortiGate, by configuring virtual domains (VDOMs).
  • Establish an IPsec VPN tunnel between two FortiGate appliances.
  • Compare policy-based to route-based IPsec VPN.
  • Implement a meshed or partially redundant VPN.
  • Diagnose failed IKE exchanges.
  • Offer Fortinet Single Sign On (FSSO) access to network services, integrated with Microsoft Active Directory.
  • Deploy FortiGate devices as an HA cluster for fault tolerance and high performance.
  • Deploy implicit and explicit proxy with firewall policies, authentication, and caching.
  • Diagnose and correct common problems.
  • Understanding of all the topics covered in the FortiGate Security course before attending the FortiGate Infrastructure course.