microbyte inc
microbyteinc.com
 


Certification Paths:
Certified SonicWALL Security Administrator

   home > course catalog > course description

Certified SonicWALL Security Administrator

Vendor:SonicWALL
Course Code:CSSA-2LAB
Technology:Security
Skill Type(s):Security Officers; Networking & Security
Class Length:2 days
Price$1,495

Upcoming Class Dates:
05/22/2006- 05/23/2006   Naperville, IL       Register >>

08/21/2006- 08/22/2006   Naperville, IL       Register >>

11/20/2006- 11/21/2006   Naperville, IL       Register >>




Course Description:
The CSSA Instructor-led Training is designed to reinforce the foundational knowledge in the SonicWALL Technical e*Training courses. These courses provide the hands-on experiential training that will enhance problem solving and provide dynamic feedback in a classroom setting. The CSSA Instructor-led Training courses provide excellent preparation of the SonicWALL CSSA certification exam.

This training is structured as a modular, multi-day course that addresses a variety of knowledge levels and learning requirements. Learning path is as follows:

What is included:
  • Instructor-Led SonicWALL Standard Security Foundations
  • Instructor-Led SonicWALL Enhanced Security Administration
  • Student Lab Workbooks

SonicOS Standard Security Foundations (1-day class)
In Module one of the CSSA Practicum, emphasis is on gaining familiarity with the most basic SonicWALL security environments, using the SonicOS Standard firmware on TZ170 appliances. Students will be introduced to network modes, product registration, NAT configuration, User Level Authentication, Proxy Relay and Routing, basic VPN configurations and layered security services. This module is intended for students not already familiar with basic SonicOS security, or for those who require experience using SonicOS Standard firmware. Labs for this class are based on SonicOS 3.1 Standard for TZ170.

SonicOS Enhanced Security Administration (1-day class)
In Module two of the CSSA Practicum, emphasis is on building a comprehensive network that demonstrates most of the commonly used features in SonicOS Enhanced firmware. Students will build a network consisting of a LAN, DMZ, and VPN tunnels. Using this network, they will create NAT policies, access rules, and layered security, apply port address translations, static and dynamic routing, configure SNMP and failover, interpret logs and generate reports, and use basic administrative features. This module is intended to provide practical hands-on learning and troubleshooting experience for students interested in obtaining Certified SonicWALL System Administrator certification. Skills applied in this class leverage concepts taught in the online e*Training suite, and form the basis for the CSSA certification exam. Labs for this class are based on SonicOS 3.1 Enhanced for TZ170.

Who Should Attend?:
Those persons tasked with the support, installation, deployment or administration of SonicWALL products, including but not limited to System Administrators, Security staff, Firewall Administrators, Network Engineers, Pre-Sales Engineers, System Engineers, Reseller Support, Installation Consultants.

Course Objectives:
Upon completing this training course, participants should be able to:
  • Install SonicWALL Firewall Appliances within a network
  • Configure Network Access Rules, working with Zones, Objects, and Groups
  • Configure VPN Solutions
  • Configure routing options and QoS
  • Configure and Test Load Balancing and Failover
  • Install and Configure SonicWALL Layered Security Services, including Content Filtering, Antivirus, and Intrusion Prevention
  • Configure and interpret logs and reports
  • Perform basic administrative tasks and troubleshooting

Prerequisites:
  • Students MUST complete the SonicWALL Technical e*Training courses prior to attending instructor-led
  • All students should have a basic knowledge of networking concepts including network topologies and an understanding of the OSI model of networking protocol stacks. Familiarity with Microsoft Windows Networking is helpful.
  • SonicWALL recommends that attendees have an understanding of TCP/IP, network addressing, subnetmasks, and Network Address Translation, as well as knowledge of basic router concepts. Familiarity with Virtual Private Networking and IPSec functionality would also be helpful.
  • Students are assumed to have a basic conceptual knowledge of firewalls and their role within a network.

Topics Covered in this Course include:

CSSA 1: SonicOS Standard Security Fundamentals (SonicOS 3.x Standard)
Note: The Standard Security Fundamentals course has been designed as an introduction to the essentials of SonicWALL internetworking. Labs in this course are more basic, allowing for greater discussion of underlying networking concepts.
  • Security Overview
  • Network Security Definitions, Risks, and Techniques
  • Product Overview
  • Evolving Issues in Network Security
  • SonicWALL PRO Series
  • SonicWALL TZ 170 Family
  • SonicWALL Distributed Wireless
  • SonicOS Standard and Enhanced
  • SonicWALL Security Upgrades
  • Configuring the Firewall
  • Initial Configuration (Lab)
  • MySonicWALL.com – Licensing and Service Delivery
  • Licensing and Registration (Lab)
  • Configuring DHCP Server (Lab)
  • Logs and Reports
  • Extending Firewall Functionality with Rules
  • Extending Firewall Functionality with Rules (Lab)
  • User-level Authentication (Lab)
  • Remote Management Rules (Lab)
  • Extending the Network Functionality
  • Network Address Translation
  • Configuring Servers on the DMZ (Lab)
  • SonicWALL VPN Configuration
  • Defining Security Associations
  • Create a Manual Key Tunnel (Lab)
  • Create an IKE Main Mode Tunnel (Lab)
  • Create an IKE Aggressive Mode Tunnel (Lab)
  • Designing SonicWALL VPN Networks
  • Create a hub and Spoke VPN (Lab)
  • Working with DHCP over VPN
  • Extended VPN Features
Applying NAT on the VPN Tunnel (Lab)
  • Global VPN Client
  • Installing the Global VPN Client (Lab)
  • Global VPN Settings
  • Group VPN Policy (Lab)
  • Client Provisioning (Lab)
  • Extending the Firewall Functionality with Security Services
  • Antivirus
  • Content Filter Services (Lab)
  • Viewpoint Reporting Service (Demo)

CSSA 2: SonicOS Enhanced Security (SonicOS 3.x Enhanced)
Note: The SonicOS Enhanced Security course has been designed to provide hands-onexperience with common SonicWALL network integration features using SonicOSEnhanced While the topic areas are similar to those presented in the CSSA 1: Fundamentals course, this day of instruction assumes prior knowledge of networking concepts and focuses time on more advanced labs rather than on lecture.
  • Security Overview
  • Network Security Definitions, Risks, and Techniques
  • Configuring the Firewall (Labs)
  • Physical connections
  • Booting in safe mode
  • Physical interface addressing
  • Enabling DHCP on LAN
  • Registering firewall and configuring layered security services
  • Extending Firewall Functionality: Zones, Objects, NAT and Rules (Labs)
  • Assigning interfaces to Zones
  • Creating Address Objects
  • Applying NAT Policies
  • Configuring Access Rules
  • Designing VPN Networks(Labs)
  • Creating a Hub & Spoke network with NAT on VPN tunnel
  • Provisioning remote site communication through single VPN tunnel to the head-end
  • Provisioning VPN between two sites using same LAN subnet
  • Extending the Firewall Functionality with Security Services (Labs)
  • Provision and test AV, CFS, and IPS
  • Applying Advanced User Level Access (Labs)
  • Apply group-level CFS policies
  • Restricting web-access by user
  • Applying Advanced NAT policies
  • Creating Inbound Port-address Translation
  • Creating Advanced routing (Lab 7)
  • Creating Static routes

Related courses:

 

© Copyright 2005 Microbyte International