Course Contents

Day 1

Chapter 1: Course Introduction

Chapter 2: ScreenOS VPN Basics Review

• Concepts Review
• Configuration Review
• Lab 1: ScreenOS Basics Review

Chapter 3: OSPF

• OSPF Operations
• OSPF Configuration
• Verification and Troubleshooting
• Lab 2: Part 1-Configuring OSPF
• Route Redistribution
• Lab 2: Part 2-Configuring Redistribution
• Route Optimization
• Lab 2: Part 3-Optimizing Routing Tables

Chapter 4: BGP

• BGP Operations
• EBGP Configuration
• Filtering on Per-Peer Basis
• Verification and Troubleshooting
• IBGP Configuration
• BGP Connectivity
• Lab 3: Configuring BGP

Day 2

Chapter 5: Advanced Static Routing

• Source-Based Routing
• Policy-Based Routing
• Destination Routing
• Lab 4: Configuring Advanced Static Routes

Chapter 6: Multicast

• IGMP Operations
• IGMP Configuration
• PIM-SM Operations
• PIM-SM Configuration
• Multicast Policies
• Lab 5: Configuring Multicast Support

Chapter 7: Virtual Systems

• VSYS Operations and Concepts
• Configuring VSYS Using Interface Classification
• Lab 6: Part 1-Creating a VSYS
• VSYS Resource Management
• Inter-VSYS Routing
• Lab 6: Part 2-Inter-VSYS Routing
• Lab 6: Part 3-Route Export
• Address Translation
• Lab 6: Part 4-Address Translation

Chapter 8: Redundancy

• NSRP Terms and Concepts
• Configuring NSRP Active/Passive
• Configuring NSRP Active/Active, VSD-Less Cluster, and NSRP-Lite
• Tuning Failover Performance
• Redundant Interfaces
• Demo: NSRP

Chapter 9: Traffic Management

• Need for Traffic Management
• Egress Traffic Shaping
• Ingress Policing
• DSCP Marking

Day 3

Chapter 1: Course Introduction

Chapter 2: ScreenOS VPN Basics Review

• VPN Review
• Verifying Operations
• VPN Monitor
• Lab 1: VPN Review

Chapter 3: VPN Variations

• Dynamic Peers
• Transparent Mode
• Overlapping Addresses
• Lab 2: VPN Variations

Chapter 4: Hub-and-Spoke VPNs

• Concepts
• Policy-Based Hub-and-Spoke
• Route-Based, with No Policy, and NHTB
• Route-Based with Policy
• Centralized Control
• AutoConnect-Virtual Private Networks
• Lab 3: Hub-and-Spoke VPNs

Day 4

Chapter 5: Routing over VPNs

• Routing Overview
• Configuring RIP
• Configuring OSPF
• Case Studies
• Lab 4: Dynamic Routing

Chapter 6: Using Certificates

Concepts and Terminology

Configuring Certificates and Certificate Support

Configuring VPNs with Certificates

Lab 5: Using Certificates

Chapter 7: Redundant VPN Gateways (Optional)

Redundant VPN Gateways

Other Options

Demo: Redundant VPN Gateways

Chapter 8: Generic Routing Encapsulation (Optional)

Configuring GRE

Chapter 9: Dial-Up IPSec VPNs

Basic Dial-up Configuration

Group IKE ID

XAUTH and Shared IKE ID

Day 5

Chapter 1: Course Introduction

Chapter 2: ScreenOS Basics Review

• Concepts Review
• Configuration Review
• Lab 1: Configuration Review

Chapter 3: SCREEN Options

• Multilayer Network Protection
• Types of Attacks
• SCREEN Options Configuration
• SCREEN Best Practices
• Lab 2: Configuring SCREEN Operations

Chapter 4: Deep Inspection

• Deep Inspection Overview
• Attack Database Configuration
• Policy Configuration
• Logging and Monitoring
• Lab 3: Deep Inspection

Chapter 5: Antivirus

• Antivirus Operations
• Internal Scanning-HTTP Operations
• Antivirus Configuration-Kaspersky
• Antivirus Configuration-ICAP
• Verifying Operations
• Lab 4: Antivirus Scanning

Chapter 6: Web Filtering

• Web-Filtering Options
• Web-Filtering Configuration
• Verifying Operations
• Lab 5: Web Filtering

Chapter 7: Antispam

• Antispam Concepts
• Antispam Configuration
• Verifying Operations
• Lab 6: Antispam Configuration

Completion of CJFV or equivalent product experience. Completion of SMF or equivalent product experience if using Security Manager. General networking knowledge, including Ethernet, TCP/IP, and routing concepts.