Blog Detail

blog
FortiGate NSE-4

FortiGate NSE-4 Syllabus
1. FORTIGATE PACKET FLOW
2. NETWORK SECURITY TERMS and CIA Model
            ASSEST-VULNERABILITY-EXPLOIT-THREAT-ATTACK COUNTERMEASUR
            CIA Model
3. FORTIGATE INITIAL CONFIGURATION-CLI-GUI
             How to Configure FortiGate Firewall
             Configure & Verify Interface In FortiGate Firewall Lab.
             Configure and Verify Static and Default Route in FortiGate.
4. FORTIGATE INTERFACE TYPES
             FortiGate Interface Vlan
             FortiGate Zone
             Redundant Interface in FortiGate Fw
             Aggregate Interface On FortiGate FW
             Software Switch Interface on FortiGate Fw
             Virtual_ Pair
             Loopback Interface
5. FORTIGATE FIREWALL POLICY
             Configure and Verify Firewall Policy in FortiGate.
             Configure and Verify Firewall Policy with Specific Service in FortiGate.
             Configure and Verify Firewall Policy with Specific Source and Destination address in FortiGate.
             Configure and Verify Firewall Policy with Block Services in FortiGate
             MAC ADDRESS POLICY
             Country wise Policy

 

 

6. FORTIGATE USER AUTHENTICATION
     Active User Authentication via local Users
     Active User Authentication Via LDAP Users
     FSSO-User Authentication
     Configure and Verify Administrators with AD..
     Configure and Verify Local Administrators, users and Admin_Profile
     Configuration and Verification of Captive portal
7.
FORIGATE NAT TYPES
     Static SNAT
     Dynamic SNAT--(Overload)
     Dynamic SNAT--(One-to-One)
     Dynamic SNAT--(Fixed Port Range)
     Dynamic SNAT--(Port Block Allocation)
     Central SNAT--(Static SNAT)
     Central SNAT with Dynamic SNAT—Overload
     Central SNAT with Dynamic SNAT--One to One
     Central SNAT with Dynamic SNAT--Fixed Port Range
     Central SNAT with Dynamic SNAT--Port Block Allocation
     FW Policy NAT Vs Central SNAT
     DNAT with FW Policy
     DNAT with Services via FW Policy
     DNAT with Customize Service Port via FW Policy
     U-TURN NAT with FW Policy
     DNAT with Central SNAT
     DNAT(Specific Service) with Central SNAT
     DNAT (Customize Service Port) with Central NAT

 

 

13.FORIGATE Miscellaneous
      FortiGate Configuration mode Auto & Save
      Change Fw Themes, Packet Capture, Password Profile
      FortiGate as a DHCP Server and Relay Agent
      DoS and DDoS Attack Profile
      Link health Monitor
      Check system processes
      Ping Options
      Diag Sniffer Packet
      Interface MAC and Arp Table
      FortiGate Get Session Command
      FortiGate Logs Display
14.BACKUP -RESTORE –FIRMWIRE
      FORTIAGTE CONFIG BACKUP INSIDE FORTIGATE
      FORTIAGTE CONFIG BACKUP IN LOCAL SYSTEM
      FORTIGATE CONFIG RESTORE
      FORTIGATE FIRMWIRE UPDATES
15.FortiGate Security Profile
      AntiVirus
      Web-Filter
      Video Filter
      Application Control
      Intrusion Prevention
      File Filter
      Prevent Credit card Leaks
16. Configure and Verify Virtual Domains (VDOMs)
      Fundamental of VDOM
      Split Task VDOM Mode
      Multi VDOM Mode
      Management VDOM(Root VDOM)
      VDOM Toplogies
         i. Independent
        ii. Internet
        iii. mesh
    Configuration and verify VDOM

 

17. FortiGate SDWAN
       Fundamental of FortiGate SDWAN
          i. SD-WAN Zones
          ii. SD-WAN Rules
          iii. SLAs
       Configuration and verify of SD-WAN

18.Introduction of QoS
        Configuration and verification Traffic Shaping
           i. Bandwidth limits
           ii. Connection Limits
     
19.FortiGate Load balancer
       Concept of Load balancer
       FortiGate Load balancing methods
          i. Static
          ii. Round Robin
          iii. Weighted
          iv. Least Session
       Concept of Virtual Server Ip and Port
       Concept of Persistence
        Concept of Health Check
              1) Ping, http, https, tcp, dns