About this Course
In this 3-day instructor-led classroom or online class, which follows FortiGate I, you will learn a selection of advanced FortiGate networking and security features. Topics include features commonly used in complex or larger enterprise/MSSP networks, such as advanced routing, transparent mode, redundant infrastructure, security-as-a-service (SaaS), advanced IPsec VPN, IPS, SSO, certificates, data leak prevention, diagnostics, and fine-tuning performance.
This is part of the courses that prepare you for the NSE 4 certification exam. NSE 4 Certification exams are offered at Pearson Vue test centers worldwide.
Audience Profile
Networking and security professionals involved in the design, implementation, and administration of a security infrastructure using FortiGate appliances.
This course assumes knowledge of basic yet FortiGate-specific fundamentals. As a result, if you know about firewalls, but are new to Fortinet, we do not recommend that you skip FortiGate I.
At Course Completion
After completing these courses, you will be able to:
- Deploy FortiGate devices as an HA cluster for fault-tolerance & high performance
- Inspect traffic transparently, forwarding as a Layer 2 device
- Manage FortiGate device's route table
- Route packets using policy-based and static routes for multi-path and load-balance deployments
- Connect virtual domains (VDOMs) without packets leaving FortiGate
- Implement a meshed / partially redundant VPN
- Diagnose failed IKE exchanges
- Fight hacking & denial of service (DoS)
- Diagnose IPS engine performance issues
- Offer Fortinet Single Sign On (FSSO) access to network services, integrated with Microsoft Active Directory
- Inspect SSL/TLS-secured traffic to prevent encryption used to bypass security policies
- Understand encryption functions and certificates
- Defend against data leaks by identifying files with sensitive data, and blocking them from leaving your private network
- Diagnose and correct common problems
- Optimize performance by configuring to leverage ASIC acceleration chips, such as CP or NPs, instead of only the CPU resources
- Implement IPv6 and hybrid IPv4-IPv6 networks
Prerequisites
- Knowledge of OSI layers
- Good knowledge of firewalling concepts in an IPv4 network
- Familiarity with all topics presented in the prerequisite FortiGate I course