FortiGate II

Request a Quote for this class

About this Course

In this 3-day instructor-led classroom or online class, which follows FortiGate I, you will learn a selection of advanced FortiGate networking and security features. Topics include features commonly used in complex or larger enterprise/MSSP networks, such as advanced routing, transparent mode, redundant infrastructure, security-as-a-service (SaaS), advanced IPsec VPN, IPS, SSO, certificates, data leak prevention, diagnostics, and fine-tuning performance. 

This is part of the courses that prepare you for the NSE 4 certification exam. NSE 4 Certification exams are offered at Pearson Vue test centers worldwide.

Audience Profile

Networking and security professionals involved in the design, implementation, and administration of a security infrastructure using FortiGate appliances. 

This course assumes knowledge of basic yet FortiGate-specific fundamentals. As a result, if you know about firewalls, but are new to Fortinet, we do not recommend that you skip FortiGate I.

At Course Completion

After completing these courses, you will be able to:

  • Deploy FortiGate devices as an HA cluster for fault-tolerance & high performance
  • Inspect traffic transparently, forwarding as a Layer 2 device
  • Manage FortiGate device's route table
  • Route packets using policy-based and static routes for multi-path and load-balance deployments
  • Connect virtual domains (VDOMs) without packets leaving FortiGate
  • Implement a meshed / partially redundant VPN
  • Diagnose failed IKE exchanges
  • Fight hacking & denial of service (DoS)
  • Diagnose IPS engine performance issues
  • Offer Fortinet Single Sign On (FSSO) access to network services, integrated with Microsoft Active Directory
  • Inspect SSL/TLS-secured traffic to prevent encryption used to bypass security policies
  • Understand encryption functions and certificates
  • Defend against data leaks by identifying files with sensitive data, and blocking them from leaving your private network
  • Diagnose and correct common problems
  • Optimize performance by configuring to leverage ASIC acceleration chips, such as CP or NPs, instead of only the CPU resources
  • Implement IPv6 and hybrid IPv4-IPv6 networks

Prerequisites

  • Knowledge of OSI layers
  • Good knowledge of firewalling concepts in an IPv4 network
  • Familiarity with all topics presented in the prerequisite FortiGate I course

Course Outline

  • Module 11 Routing
  • Module 12 Virtual Networking
  • Module 13 Transparent Mode
  • Module 14 High Availability
  • Module 15 Advanced IPsec VPN
  • Module 16 IPS
  • Module 17 FSSO
  • Module 18 Certificate Operations
  • Module 19 DLP
  • Module 20 Diagnostics
  • Module 21 Hardware Acceleration
  • Module 22 IPv6