Nuvias Training

Webinare · Workshops · Schulungen

NSE 6 - FortiWeb - Zertifizierungs Schulung | Version 6.0

DL-FT-NSE6-FortiWeb

Course Description:

In this three-day class, you will learn how to deploy, configure, and troubleshoot Fortinet's web application firewall: FortiWeb. Instructors will explain key concepts of web application security, and lead lab exercises in which you will explore protection and performance features. In the lab, you will experience traffic and attack simulations that use real web applications. You will work with those simulations to learn how to distribute
load from virtual servers to real servers, while enforcing logical parameters, inspecting flow, and securing HTTP session cookies.

 Product Versions:

FortiWeb 6.0

 Formats:

- Instructor-led classroom
- Instructor-led online
- Self-paced online

Agenda:

  • 1 Introduction
  • 2 Basic Setup
  • 3 Integrating Front-End SNAT and Load Balancers
  • 4 DoS and Defacement
  • 5 Signatures, Sanitization and Auto-Learning
  • 6 SSL/TLS
  • 7 Authentication and Access Control
  • 8 PCI DSS 3.0 Compliance
  • 9 Caching and Compression
  • 10 HTTP Routing, Rewriting and Redirects
  • 11  Troubleshooting

Objectives:

After completing this course, you will be able to:

  • Understand application-layer threats
  • Fight defacement & DoS
  • Prevent zero-day attacks without disrupting live traffic
  • Make apps retroactively compliant with OWASP Top 10 for 2013 and PCI DSS 3.0
  • Discover vulnerabilities in your servers and hosted web apps for tailored, efficient protection
  • Configure FortiGate together with FortiWeb, for stronger HTTP and XML application security
  • Prevent accidental scan circumvention, while allowing FTP and SSH
  • Configure blocking and reporting for an external FortiADC or FortiGate, and FortiAnalyzer
  • Choose the right operating mode
  • Balance load among a pool of servers
  • Enforce SSL/TLS, authentication, and sophisticated access control for “naked” apps
  • Train FortiWeb to defend your specific apps
  • Blacklist suspected hackers, DDoS participants, and content scrapers
  • Troubleshoot traffic flow, including flow for FTP/SSH
  • Diagnose false positives & customize signatures
  • Optimize performance

Who should attend:

Networking and security professionals involved in the administration and support of FortiWeb.

Prerequisites:

  • Knowledge of OSI layers and the HTTP protocol
  • Basic knowledge of HTML, JavaScript, and server-side dynamic page languages, such as PHP
  • Basic experience using FortiGate port forwarding

System Requirements:

If you take the online format of this class, you must use a computer that has the following:

  • A high-speed Internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers or headphones
  • One of the following:
    • HTML5 support
    • An up-to-date Java Runtime Environment (JRE) with Java plugin enabled in your web browser
    You should use a wired Ethernet connection, not a Wi-Fi connection. Firewalls, including Windows Firewall or FortiClient, must allow connections to the online labs.

Certification:

This course will prepare you for the FortiWeb 6.0 Specialist Exam. This is one of the courses that prepares you to take the NSE 6 certification exam.

Wir verwenden Cookies, einschließlich Cookies von Drittanbietern, die uns bei der Bereitstellung unserer Dienste unterstützen und die Benutzerfreundlichkeit verbessern. Durch die Nutzung unserer Dienste stimmen Sie der Verwendung von Cookies zu. Weitere Informationen dazu, wie Sie Cookies vermeiden können, finden Sie in unsereren Datenschutzhinweisen.
Datenschutzhinweise Ok Ablehnen