Courses by Palo Alto Networks

  • Course: Firewall 8.1: Troubleshooting (EDU-330)
  • Length: 3 Days
SCHEDULE
Course Content - 
 
Successful completion of this three-day, instructor-led course will enhance the student’s understanding of how to troubleshoot the full line of Palo Alto Networks® next-generation firewalls. Students will receive hands-on experience troubleshooting the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks® PAN-OS® operating system. Upon completion of this class, students will have an in-depth knowledge of how to troubleshoot visibility and control over applications, users, and content. 
 
Target Audience -

Security Engineers, Security Administrators, Security Operations Specialists, Security Analysts, Network Engineers, and Support Staff
 
Scope - 

• Course level:Advanced
• Course duration: 3days
• Course format: Combines lecture and hands-on labs
• Platform support: PaloAlto Networks® next-generation enterprise firewallsrunningthePAN-OS® operatingsystem
 
Prerequisites - 

Students must complete the Firewall 8.0 Essentials: Configuration and Management (EDU-210) course and have an understanding of network concepts, including routing, switching, and IP addressing. They also will need in-depth knowledge of port-based security and security technologies such as IPS, proxy, and content filtering.
 
Outline - 

DAY 1

  • • Module 1: Troubleshooting Methodology
    • Module 6: Policy Troubleshooting
    • Module 2: Platform Comparisons When Troubleshooting
    • Module 7: User-ID™ Troubleshooting
    • Module 3: Flow Logic
    • Module 8: VPN Troubleshooting
    • Module 4: Administration Troubleshooting
    • Module 9: GlobalProtect™ Troubleshooting
    • Module 5: Layer 3 Troubleshooting
    • Module 10: Performance Troubleshooting

DAY 2

  • Lab Exercises 

DAY 3

  • Lab Exercises 
  • Course: Firewall 9.0 Essentials: Configuration and Management (EDU-210)
  • Length: 5 days
SCHEDULE
Overview - 
The Palo Alto Networks Firewall 9.0 Essentials: Configuration and Management (EDU-210) course is five days of instructor-led training that will help you to:
  • Configure and manage the essential features of Palo Alto Networks next-generation firewalls
  • Configure and manage GLobalProtect to protect systems that are located outside of the data-center perimeter
  • Configure and manage firewall high availability 
  • Monitor network traffic using the interactive web interface and firewall reports
Target Audience -
Security Engineers, Security Administrators, Security Operations Specialists, Security Analysts, Network Engineers, and Support Staff
 
Scope - 
• Course level: Introductory
• Course duration:
5 days
• Course format:
Combines lecture and hands-on labs
• Platform support:
PaloAlto Networks® next-generation enterprise firewalls running the PAN-OS® operating system
 
Prerequisites - 
Students must have a basic familiarity with networking concepts including routing, switching, and IP addressing. Students also should be familiar with basic security concepts. Experience with other security technologies (IPS, proxy, and content filtering) is a plus.
 
Outline - 
 Module 1: Security Platform and Architecture 
  • Module 2: Initial Configuration
  • Module 3: Interface Configuration
  • Module 4: Security and NAT Policies 
  • Module 5: App-ID
  • Module 6: Content-ID
  • Module 7: URL Filtering
  • Module 8: Dycryption 
  • Module 9: WildFire
  • Module 10: User-ID
  • Module 11: GlobalProtect
  • Module 12: Site-to-Site VPN's
  • Module 13: Monitoring and Reporting
  • Module 14: Active/Passive High Availability 
  • Module 15:Security Practices
 
  • Course: Panorama : Managing Firewalls at Scale (EDU-220)
  • Length: 2 Days
SCHEDULE
Course Content - 
 
Students attending this course will gain in-depth knowledge of how to configure and manage their Palo Alto Networks® Panorama® management server. Upon completion of this course, administrators will understand the Panorama™ management server’s role in managing and securing their overall network. Network professionals will learn to use Panorama™ aggregated reporting to provide them with a holistic view of a network of Palo Alto Networks® next-generation firewalls.
 
Target Audience -
Security Administrators, Security Analysts, Network Professionals, Security Engineers, Network Engineers, and Support Staff
 
Scope - 
• Course level: Intermediate
• Course duration: 2 days
• Course format: Combines lecture with hands-on labs
• Platform support: Panorama 8.0 running on a VM, M-100, or M-500 appliance
 
Prerequisites - 

Students must complete the Firewall 8.0 Essentials: Configuration and Management (EDU-210) class, have an understanding of Palo Alto next-generation firewall management, and understand basic networking concepts, including routing and IP addressing.
 
Outline - 
 
• Module 1: Overview
 
• Module 2: Initial Configuration
 
• Module 3: Templates
 
• Module 4: Device Groups 
 
• Module 5: Administration
 
• Module 6: Distributed Log Collection
 
• Module 7: Logging and Reporting
 
• Module 8: Panorama High Availability
 
 
  • Course: Traps 4.1: Install, Configure and Manage (EDU-281)
  • Length: 2 Days
Course Content - 
 
Students will learn how Traps protects against exploits and malware-driven attacks. In hands-on lab exercises, students will install and configure the Endpoint Security Manager (ESM) and Traps endpoint components; build rules; enable and disable process protections; and integrate Traps with Palo Alto Networks WildFire™, which provides prevention and detection of zero-day malware.
 
Target Audience -
Security Engineers, System Administrators, and Technical Support Engineers
 
Scope - 
• Course level: Introductory
• Course duration: 2 days
• Course format: Combines instructor-facilitated lecture with hands-on labs
• Software version: Palo Alto Networks Traps Advanced Endpoint Protection 3.4
 
Prerequisites - 
 
 
Students must have Windows system administration skills and familiarity with enterprise security concepts.
 
Outline - 
 
Mod 1: Traps Overview
• How sophisticated attacks work today
• The design approach of Traps
• Main features of Traps
• Traps resources
 
Mod 2: Installing Traps
• Planning the installation
• Installing ESM Server and database
• Installing ESM Console
• Installing agents
• Managing content updates
• Upgrading Traps Mod 3: Malicious Software Overview
• Exploitation techniques and their prevention
• Malware techniques and their prevention
 
Mod 4: Consoles Overview
• Introduction to ESM Console
• Introduction to the Traps Agent Console
 
Mod 5: Traps Protection Against Exploits
• Architecture and overview
• Configuring exploit protection
 
 
Mod 6: Traps Protection Against Malware (including WildFire)
• Architecture and Overview
• WildFire
• Local Analysis
• Trusted Publishers
• Malware Restrictions and Malware Protection Modules
 
Mod 7: Managing Traps
• System monitoring
• License administration
• Important server and agent settings
• Agent actions Mod 8: Traps Forensics
• Forensic information retrieval
• Responding to prevention events Mod 9: Basic Traps Troubleshooting
• Troubleshooting Resources
• Working with Technical Support
• Troubleshooting scenarios
 
  • Course: Traps 4.1: Deploy and Optimize (EDU-285)
  • Length: 2 Days
Course Content - 
 
Students will learn how to design, build, implement, and optimize largescale Traps deployments: those with multiple servers and/or thousands of endpoints. In hands-on lab exercises, students will distribute Traps endpoint software in an automated way; prepare master images for VDI deployment; build multi-ESM deployments; design and implement customized policies; test Traps with exploits created using Metasploit; and examine prevention dumps with windbg.
 
Target Audience -
Security Engineers, System Administrators, and Technical SupportEngineers
 
Scope - 
• Course level: Intermediate
• Course duration: 2 days
• Course format: Combines instructor-facilitated lecture with hands-on labs
• Software version: Palo Alto Networks Traps Advanced Endpoint Protection 3.4
 
Prerequisites - 
 
Students should have completed “Traps: Install, Configure, and Manage” or (for Palo Alto Networks employee and partner SEs) “PSE: Endpoint Associate” training. Windows system administration skills and familiarity with enterprise security concepts also are required
 
Outline - 
 
Mod 1: Deploying Traps
• Distributing endpoint software
• TLS/SSL options
• Virtual Desktop Infrastructure (VDI) deployment
• External logging and SIEM integration
 
Mod 2: Scaling Traps Deployments Up
• Role-based Access Control
• Deployment patterns, including Multi-ESM Server deployment
• Migration tasks Mod 3: Optimizing Traps
• Optimizing server settings
• Defining conditions
• Designing optimized policies
• Implementing ongoing maintenance
 
Mod 4: Advanced Traps Forensics
• Agent queries
• Resources for malicious software testing
• Exploit challenge testing with Metasploit
• Exploit dump analysis with windbg
 
Mod 5: Advanced Traps Troubleshooting
• Endpoint Security Manager and Traps architecture
• Troubleshooting scenarios using dbconfig and cytool
• Troubleshooting application compatibility
• Troubleshooting BITS connectivity
 
  • Course: Firewall 9.0: Optimizing Firewall Threat Prevention (EDU-214)
  • Length: 4 days
SCHEDULE

Overview:

The Palo Alto Networks Firewall 9.0: Optimizing Firewall Threat Prevention (EDU-214) course is four days of instructor-led training that emphasizes the PAN-OS® threat prevention capabilities. After completing this course, you should be able to: 

  • Describe the cyber-attack lifecycle and recognize common forms of attack
  • Describe PAN-OS® threat prevention capabilities §
  • Use firewall logs and reports to make better configuration decisions 
  • Configure the firewall to detect, block, and record threats

Modules:

  • Module 1: The Cyber-Attack Lifecycle 
  • Module 2: Blocking Packet- and Protocol-Based Attacks 
  • Module 3: Blocking Threats from Known-Bad Sources
  • Module 4: Blocking Threats Using App-ID™
  • Module 5: Blocking Threats Using Custom Applications 
  • Module 6: Creating Custom Threat Signatures   
  • Module 7: Blocking Threats in Encrypted Traffic
  • Module 8: Blocking Threats in Allowed Traffic
  • Module 9: Blocking Threats from Stolen Credentials 
  • Module 10: Viewing Threat and Traffic Information

Course Objectives:

Successful completion of this four-day, instructor-led course will enhance the student’s understanding of how to better configure, manage, and monitor PAN-OS® threat prevention features. The student will get hands-on experience configuring, managing, and monitoring threat prevention features in a lab environment. 

Scope

• Course level: Intermediate

• Course duration: 4  days

• Course format: Combines lecture and hands-on labs

• Platform support: Palo Alto Networks® next-generation enterprise firewalls running the PAN-OS® operating system

Target Audience:

Security Engineers, Security Administrators, Security Operations Specialists, Security Analysts, Network Engineers, and Support Staff 

Prerequisites:

Participants must complete the Firewall 8.1 Essentials: Configuration and Management courses, or have equivalent experience. Students must have a basic familiarity with networking concepts including routing, switching, and IP addressing.

 

Register Now