Arrow Electronics, Inc.

Sophos Firewall Architect

CODE: SOP_AT80

DURÉE: 24 Hours (3 Jours)

PRIX H.T.: €1 800,00

Description

This course provides an in-depth study of Sophos Firewall, designed for experienced technical professionals who will be planning, installing, configuring, and supporting deployments in production environments

To complete this course, trainees must take and pass an online assessment. Trainees will have 3 hours to complete the assessment; the pass mark is 80% and trainees will have 3 attempts to pass

Objectifs

On completion of this course, trainees will be able to:

  • Deploy Sophos Firewall in complex network environments
  • Explain how Sophos Firewall processes traffic and use this information to inform the configuration
  • Configure advanced networking and protection features
  • Protect web applications using the web server protection

Audience

Experienced technical professionals

Prérequis

Prior to taking this training, trainees should:

  • Have completed and passed the Sophos Firewall
  • Certified Engineer course
  • Have completed any subsequent delta modules up to version 19.5
  • We recommend that trainees have the following knowledge and experience:
    • Windows networking and the ability to troubleshoot issues
    • A good understanding of IT security
    • Configuring network security devices
    • Configuring and administering Linux/UNIX systems
    • If you are uncertain whether you meet the necessary prerequisites, please email us at globaltraining@sophos.com and we will be happy to help.

Programme

  1. Sophos Firewall Deployment
  2. Considerations for Deploying Sophos Firewall in common scenarios

    Deploying Sophos Firewall in Discover Mode

    Lab Tasks

    Register for a Sophos Central Evaluation

    Activate the Sophos Firewall

  3. Getting Started with Sophos Firewall
  4. Advanced Interface Configuration on Sophos Firewall

    Advanced Routing and SD-WAN Configuration on Sophos Firewall

    Dynamic Routing on Sophos Firewall

    Considerations for Configuring Device Access on Sophos Firewall

    Lab Tasks

    Multiple WAN Link

    SD WAN Profiles

    Create a Policy-Based Route for an MPLS Scenario

    Configuring Device Access

    Bridge Interfaces

  5. Base Firewall
  6. Advanced Firewall Rule Management on Sophos Firewall

    Advanced NAT Configuration on Sophos Firewall

    Network Traffic Shaping on Sophos Firewall

    Lab Tasks

    Load-Balanced NAT

    Local NAT Policy

    Install Sophos Central

  7. Network Protection
  8. Advanced IPS Configuration

    Advanced DoS Protection

    Managing and Deploying Security Heartbeat on Sophos Firewall

    Lab Tasks

    Advanced DoS Policy

    Source-based Security Heartbeat

    Destination-Based Security Heartbeat

    Missing Security Heartbeat

  9. Site-to-Site Connections
  10. Advanced IPsec Site-to-Site VPN Configuration on Sophos Firewall

    Advanced Remote Ethernet Device (RED) Configuration on Sophos Firewall

    Lab Tasks

    Create an IPsec site-to-site VPN

    Configure VPN networking NATing

    Configure VPN failover

    Enable RED on the Sophos Firewall

    Create a RED tunnel between two Sophos firewalls

    Configure routing for the RED tunnel

    Configure route-based VPN

  11. Authentication
  12. Advanced STAS Configuration

    Lab Tasks

    Configure an Active Directory Authentication Server

    Configure Single Sign-On using STAS

    Authenticate users over a site-to-site VPN

  13. Web Protection
  14. Managing TLS Decryption for Web Protection on Sophos Firewall

    Lab Tasks

    Install the SSL CA Certificate

    Configure TLS inspection rules

    Configure a custom web policy for users

  15. Remote Access
  16. Advanced Sophos Remote Access VPN Configuration on Sophos Firewall

    Lab Tasks

    Sophos Connect

    Auto provisioning

  17. Wireless Protection
  18. Troubleshooting Access Point Deployment

    Wireless Authentication

    Configuring Wireless Mesh Networks

    Troubleshooting Wireless Performance

  19. Web Server Protection
  20. Overview of Web Server Protection on Sophos Firewall

    Configuring Web Server Protection on Sophos Firewall

    Troubleshooting Web Server Protection Policies

    Configuring Web Server Authentication on Sophos Firewall

    Lab Tasks

    Web Application Firewall

    Load balancing with Web Server Protection

    Web server authentication and path-specific routing

  21. High Availability

Overview of High Availability on Sophos Firewall

Configuring High Availability on Sophos Firewall

Managing High Availability on Sophos Firewall

Troubleshooting High Availability on Sophos Firewall

Lab Tasks

High Availability:

  • Active-passive cluster
  • Disable High Availability

Troubleshooting :

  • Debug logging
  • Retrieving log files
  • Troubleshoot an issue from an imported configuration
  •  

     

    1. Public Cloud
    2. Overview of Sophos Firewall on Public Cloud

      Basic Sophos Firewall Deployment on Azure

      Sophos Firewall Deployment Scenarios on Azure

      Basic Sophos Firewall Deployment on AWS

      Sophos Firewall Deployment Scenarios on AWS

      Connecting to Amazon VPC on Sophos Firewall

      Simulations :

      Deploy Sophos Firewall on Azure

      Deploy Sophos Firewall on AWS

    3. Course Review
    4. How to find help from Sophos

      Course Review

      Informations supplémentaires

      If you require any further information on this course, please contact Sophos at globaltraining@sophos.com

      Dates de session
      Date
      Lieu
      Time Zone
      Langue
      Type
      Garanti
      PRIX H.T.

      27 mars 2024

      Virtual Classroom

      CET

      English

      Instructor Led Online

      € 1 800,00

      15 mai 2024

      Virtual Classroom

      CEDT

      English

      Instructor Led Online

      € 1 800,00

      26 juin 2024

      Virtual Classroom

      CEDT

      English

      Instructor Led Online

      € 1 800,00

      18 sept. 2024

      Virtual Classroom

      CEDT

      English

      Instructor Led Online

      € 1 800,00

      16 oct. 2024

      Virtual Classroom

      CEDT

      English

      Instructor Led Online

      € 1 800,00

      27 nov. 2024

      Virtual Classroom

      CET

      English

      Instructor Led Online

      € 1 800,00