Nexum Training Course Catalog

Nexum Training Course Catalog

Nexum Training Course Catalog Table of Contents JUNIPER Juniper SRX Bootcamp..................................................... 4 Juniper JNCIS - ENT Bootcamp.............................................. 5 Advanced Junos Enterprise Routing (AJER)..................................... 7 Junos Security (JSEC)...................................................... 8 Advanced Junos Security (AJSEC)............................................ 9 F5 Configuring in BIG-IP Local Traffic Manager (LTM) - v11.x...................... 10 Developing irules for BIG-IP v11.x.......................................... 11 Troubleshooting BIG-IP LTM v.11.x........................................ 12 Configuring BIG-IP Global Traffic Mangager (GTM) v.11.x...................... 13 Configuring BIG-IP Application Security Manager (ASM) v.11x................... 14 Configuring BIG-IP Access Policy Manager (APM) v.11x........................ 15 CHECK POINT Security Administration & Engineering R77 5-Day Bootcamp..................... 15 Security Administration (CCSA) R77........................................ 16 Security Engineering (CCSE) R77........................................... 17 Multi-Domain Security Management with Virtual System Extension................ 18 Advanced Intrusion Prevention System (IPS).................................. 19 BLUE COAT Certified ProxySG Administrator (BCCPA)................................... 20 Certified Proxy Professional (BCCPP)....................................... 21 PALO ALTO Firewall Installation, Configuration and Management: Essentials 1.................. 22 Firewall Installation, Configuration and Management: Essentials 1I.................. 23 Advanced Firewall Troubleshooting.......................................... 24 INFOBLOX NIOS Configuration Class (NCC) - v6.0..................................... 25 Advanced Administration Class (AAC) - v6.0.................................. 26

Nexum Training Terms and Conditions The student(s) enrolled in a Nexum training class may retake the same class once within 12 months of the original attended class at no additional charge. Note: If the courseware has changed due to a new feature pack release, the student will be responsible for the purchase cost of the new material. Student/Enrollee Cancellation. All enrollees are obligated to follow Nexum s standard enrollee cancellation and rescheduling policy: Should one need to reschedule or cancel any student s participation, the enrollee must provide written notification to Nexum at least seven (7) business days in advance of the course date. Cancellations failing to meet that deadline, and which occur within seven (7) business days of the class will still be charged for 25% of the course tuition, and within three (3) days, 50% of the course tuition. No-shows or cancellations on the day of or day prior to the course are subject to the FULL course tuition. Rescheduled enrollees are also responsible for the purchase of new courseware due to any courseware Feature Pack releases that occur prior to the rescheduled date for the missed class. Nexum Cancellation Nexum Cancellation Policy: Whenever possible, Nexum, Inc. will give at least two weeks notice if a class must be canceled or rescheduled. In the unlikely event of a canceled class, payments to date will be refunded or credited to a future class. If rescheduled dates are not suitable, Nexum s liability shall be limited to a refund of the tuition fees paid for the affected course. Please direct any questions to Nexum Training at (312) 726-2473. Prices on our website are subject to change - prices based upon total purchase - we specifically disclaim any and all warranties, express or implied, including but not limited to any implied warranties of merchantability or fitness of purpose or those with regard to any licensed products. Nexum shall not be liable for any loss of profits, business, goodwill, data, interruption of business, nor for incidental or consequential damages related to this agreement.

4 Juniper SRX Bootcamp LENGTH: 5 DAYS This five-day bootcamp discusses the basic operations Junos Software, Junos Routing Essentials, Junos Security Platforms. Key topics include user interface options with a heavy focus on the command-line interface (CLI), configuration tasks typically associated with the initial setup of devices, interface configuration basics with configuration examples, secondary system configuration, and the basics of operational monitoring and maintenance of devices running Junos OS. Foundational routing knowledge and configuration examples and includes an overview of general routing concepts, routing policy and firewall filters, and class of service (CoS). This course also includes configuration, operation, and implementation of Junos security platforms in a typical network environment. DAY 1 Course Introduction Junos OS Fundamentals User Interface Options Initial Configuration Secondary System Configuration Operational Monitoring and Maintenance DAY 2 Course Introduction Routing Fundamentals Routing Policy and Firewall Filters Class of Service DAY 3 Course Introduction Introduction to Junos security platforms Zones Security Policies DAY 4 Firewall User Authentication SCREEN Options Network Address Translation DAY 5 IPsec VPNs Introduction to Intrusion Detection and Prevention High Availability Clustering

5 Juniper JNCIS-ENT Boot Camp LENGTH: 5 DAYS OVERVIEW This bundle includes the Junos Intermediate Routing (JIR) and Junos Enterprise Switching (JEX) courses. The Junos Intermediate Routing (JIR) course provides students with intermediate routing knowledge and configuration examples. The course includes an overview of protocol-independent routing features, load balancing and filter-based forwarding, OSPF, BGP, IP tunneling, and high availability (HA) features. The Junos Enterprise Switching (JEX) course provides students with intermediate switching knowledge and configuration examples. This course includes an overview of switching concepts and operations, virtual LANs (VLANs), the Spanning Tree Protocol (STP), port and device security features, and high availability (HA) features. JUNOS INTERMEDIATE ROUTING (JIR) Chapter 1: Course Introduction Chapter 2: Protocol-Independent Routing Chapter 3: Load Balancing and Filter-Based Forwarding Chapter 4: Open Shortest Path First Chapter 5: Border Gateway Protocol Chapter 6: IP Tunneling Chapter 7: High Availability Appendix A: IPv6 Appendix B: IS-IS Appendix C: Routing Information Protocol JUNOS ENTERPRISE SWITCHING (JEX) Chapter 1: Course Introduction Chapter 2: Layer 2 Switching Chapter 3: Virtual Networks Chapter 4: Spanning Tree Chapter 5: Port Security Chapter 6: Device Security and Firewall Filters Chapter 7: Virtual Chassis Chapter 8: High Availability Features Appendix A: Ethernet Ring Protection Switching Appendix B: Multiple Spanning Tree Protocol

6 Advanced Junos Enterprise Routing (AJER) LENGTH: 3 DAYS OVERVIEW: This course is designed to provide students with the tools required for implementing, monitoring, and troubleshooting Layer 3 components in an enterprise network. Detailed coverage of OSPF, BGP, class of service (CoS), and multicast is strongly emphasized. Through demonstrations and hands-on labs, students will gain experience in configuring and monitoring the Junos operating system and in monitoring device and protocol operations. Chapter 1: Course Introduction Chapter 2: OSPF Chapter 3: OSPF Areas Chapter 4: OSPF Case Studies and Solutions Chapter 5: BGP Chapter 6: BGP Attributes and Policy Chapter 7: Enterprise Routing Policies Chapter 8: Introduction to Multicast Chapter 9: Multicast Routing Protocols and SSM Chapter 10: Class of Service Appendix A: BGP Route Reflection

7 Junos Security (JSEC) LENGTH: 3 DAYS OVERVIEW: This course covers the configuration, operation, and implementation of SRX Series Services Gateways in a typical network environment. Key topics within this course include security technologies such as security zones, security policies, intrusion detection and prevention (IDP), Network Address Translation (NAT), and high availability clusters, as well as details pertaining to basic implementation, configuration, and management. Chapter 1: Course Introduction Chapter 2: Introduction to Junos Security Chapter 3: Zones Chapter 4: Security Policies Chapter 5: Firewall User Authentication Chapter 6: Screen Options Chapter 7: Network Address Translation Chapter 8: IPsec VPNs Chapter 9: Introduction to Intrusion Detection and Prevention Chapter 10: High Availability Clustering Theory Chapter 11: High Availability Clustering Implementation Appendix A: SRX Series Hardware and Interfaces

8 Advanced Junos Security (AJSEC) LENGTH: 3 DAYS OVERVIEW: This course is designed to build off of the current Junos Security (JSEC) offering, delving deeper into Junos security. Chapter 1: Course Introduction Chapter 2: AppSecure Chapter 3: Junos Layer 2 Packet Handling and Security Features Chapter 4: Virtualization Chapter 5: Advanced NAT Concepts Chapter 6: IPsec Implementations Chapter 7: Enterprise IPsec Technologies: Group and Dynamic VPNs Chapter 8: IPsec VPN Case Studies and Solutions Chapter 9: Troubleshooting Junos Security Appendix A: SRX Series Hardware and Interfaces

9 Configuring in BIG-IP Local Traffic Manager (LTM) - v11.x LENGTH: 3 DAYS This course gives network professionals a functional understanding of BIG-IP Local Traffic Manager (LTM) v11, introducing students to both commonly used and advanced LTM features. Incorporating lecture, extensive hands-on labs, and classroom discussion, the course helps students build the well-rounded skill set needed to manage BIG-IP LTM systems as part of a flexible and high performance application delivery network. Chapter 1: Setting Up the BIG-IP System Chapter 2: Review and Lab Project Chapter 3: Load Balancing Chapter 4: Persistence Chapter 5: Monitors Chapter 6: Virtual Servers Chapter 7: SNATs Chapter 8: Configuring High Availability Chapter 9: Configuring High Availability Part 2 Chapter 10: Profiles Chapter 11: Selected Topics Chapter 12: iapps Chapter 13: irules

10 Developing irules for BIG-IP v11.x LENGTH: 3 DAYS This course provides networking professionals a functional understanding of irules development. The course builds on the foundation of the Administering BIG-IP v11 course, demonstrating how to logically plan and write irules to help monitor and manage common tasks involved with processing traffic on the BIG-IP. Course Labs consist of writing, applying and evaluating the effect of irules on LTM traffic. This hands-on course includes lectures, labs, and discussions. Chapter 1: Setting Up the BIG-IP System Chapter 2: Basic Elements and Resources Chapter 3: irule Elements Chapter 4: Syntax Troubleshooting Chapter 5: irule Optimization Chapter 6: Security and irules Chapter 7: Numbers and Strings Chapter 8: HTTP Headers and Commands Chapter 9: External File Management: ifiles and Data Groups/Classes Chapter 10: Profiles: Persistence, Stream, and Statistics Chapter 11: Advanced Variables

11 TROUBLESHOOTING BIG-IP LTM v.11x LENGTH: 2 DAYS This course gives networking professionals hands-on knowledge of how to troubleshoot a BIG-IP LTM system using a number of troubleshooting techniques as well as troubleshooting and system tools. This course includes lectures, labs, and discussions Chapter 1: Setting Up the BIG-IP System Chapter 1B: Configuring the BIG-IP System Chapter 2: Troubleshooting Methodology Chapter 3: F5 Support Chapter 4: Product Architecture Chapter 5: Troubleshooting Bottom to Top Chapter 6: Troubleshooting Tools Chapter 7: Using System Logs Chapter 8: Troubleshooting Lab Projects /training/f5/ltm-troubleshooting

12 Configuring BIG-IP Global Traffic Manager (GTM) v11.x LENGTH: 2 DAYS This course gives networking professionals a functional understanding of the BIG-IP GTM system as it is commonly used. The course covers installation, configuration, and management of the BIG-IP GTM system. This hands-on course includes lectures, labs, and discussions. Chapter 1: Setting Up the BIG-IP System Chapter 2: DNS and GTM Systems Chapter 3: Accelerated DNS Resolutions Chapter 4: Intelligent DNS Resolutions Chapter 5: LDNS Probes and Metrics Chapter 6: Load Balancing Chapter 7: Monitors Chapter 8: Configuration Files, Logs, and Notifications Chapter 9: Advanced Topics /training/f5/gtm

13 Configuring BIG-IP Application Security Manager (ASM) v.11x LENGTH: 4 DAYS The BIG-IP Application Security Manager course provides participants with the expertise needed to detect, mitigate, and prevent HTTP-based attacks on web applications. The four-day lab intensive course starts at the simplest level for quickly configuring and implementing an application security policy and progresses through more complex configurations. The course includes detailed analysis and hands-on exercises for protecting web applications from brute force, web scraping, layer 7 DDoS, and other current attack vectors. Chapter 1: Setting Up the BIG-IP System Chapter 2: Traffic Processing with BIG-IP Chapter 3: Web Application Concepts Chapter 4: Web Application Vulnerabilities Chapter 5: Security Policy Deployment Chapter 6: Attack Signatures Chapter 7: Positive Security Policy Building Chapter 8: Cookies and other Headers Chapter 9: Reporting and Logging Chapter 10: User Roles, policy modification, and other deployments Chapter 11: Lab Project 1 Chapter 12: Advanced parameter handling Chapter 13: Application-Ready Templates Chapter 14: Real Traffic Policy Builder Chapter 15: Web Application Vulnerability Scanners Chapter 16: Login Enforcement, Session tracking, and Flows Chapter 17: Anomaly Detection Chapter 18: ASM and irules Chapter 19: Web 2.0 Support: AJAX and JSON Chapter 20: XML and Web Services Chapter 21: Review and Final Labs /training/f5/asm

14 Configuring BIG-IP APM v11: Access Policy Manager LENGTH: 3 DAYS This course gives network administrators, network operators, and network engineers a functional understanding of BIG-IP Access Policy Manager as it is commonly deployed in both application delivery network and remote access settings. The course introduces students to BIG-IP Access Policy Manager, its configuration objects, how it commonly deployed, and how typical administrative and operational activities are performed. The course includes lecture, hands-on labs, interactive demonstrations, and discussions. Chapter 1: Setting Up the BIG-IP System Chapter 2: APM Traffic Processing Chapter 3: APM Access Policies and Profiles Chapter 4: APM Portal Access Chapter 5: APM Network Access Chapter 6: APM Access Control Lists Chapter 7: APM Application Access & Webtops Chapter 8: BIG-IP LTM Concepts Chapter 9: Web Application Access for LTM Chapter 10: APM Macros and Authentication Servers Chapter 11: Client-Side Endpoint Security Chapter 12: Session Variables and irules Chapter 13: APM Advanced Topics Chapter 14: Customization Chapter 15: SAML Chapter 16: APM Configuration Project

15 Check Point Security Administration & Engineering R77 5-Day Bootcamp LENGTH: 5 DAYS Check Point Security Administration & Engineering training course provides an understanding of the basic concepts and skills necessary to configure Check Point Security Gateway and Management Software Blades. During this course you will deploy gateways using the GAiA web interface, configure a Security Policy, and learn about managing and monitoring a secure network. In addition, you will upgrade and configure a Security Gateway to implement a virtual private network for both internal and external, remote users. The CCSE advanced course teaches students how to build, modify, deploy, and troubleshoot Check Point Security Systems on the GAiA operating system. Hands-on lab exercises teach how to debug firewall processes, optimize VPN performance and upgrade Management Servers. CHECK POINT SECURITY ADMINISTRATION (CCSA) R77 Chapter 1: Security Administration Chapter 2: Introduction to Check Point Technology Chapter 3: Deployment Platforms Chapter 4: Instruction to the Security Policy Chapter 5: Monitoring Traffic and Connections Chapter 6: Network Address Translation Chapter 7: Using SmartUpdate Chapter 8: User Management and Authentication Chapter 9: Identity Awareness Chapter 10: Introduction to Check Point VPNs Chapter 11: Questions and Answers CHECK POINT SECURITY ENGINEERING (CCSE) Chapter 1: Security Engineering Chapter 2: Upgrading Chapter 3: Advanced Firewall Chapter 4: Clustering and Acceleration Chapter 5: Advanced User Management Chapter 6: Advanced IPSec VPN and Remote Access Chapter 7: Auditing and Reporting Chapter 8: GAiA Maintenance Chapter 9: Questions and Answers

16 Check Point Security Administration (CCSA) R77 LENGTH: 3 DAYS Advance your knowledge on the GAiA operation system. Covers everything you need to start-up, configure, and manage daily operations of Check Point Security Gateway and Management Software Blades systems on the GAiA operating system. Chapter 1: Security Administration Chapter 2: Introduction to Check Point Technology Chapter 3: Deployment Platforms Chapter 4: Instruction to the Security Policy Chapter 5: Monitoring Traffic and Connections Chapter 6: Network Address Translation Chapter 7: Using SmartUpdate Chapter 8: User Management and Authentication Chapter 9: Identity Awareness Chapter 10: Introduction to Check Point VPNs Chapter 11: Chapter Questions and Answers

17 Check Point Security Engineering (CCSE) R77 LENGTH: 3 DAYS This advanced course teaches students how to build, modify, deploy, and troubleshoot Check Point Security Systems on the GAiA operating system. Hands-on lab exercises teach how to debug firewall processes, optimize VPN performance and upgrade Management Servers. Chapter 1: Security Engineering Chapter 2: Upgrading Chapter 3: Advanced Firewall Chapter 4: Clustering and Acceleration Chapter 5: Advanced User Management Chapter 6: Advanced IPSec VPN and Remote Access Chapter 7: Auditing and Reporting Chapter 8: GAiA Maintenance Chapter 9: Questions and Answers

18 Multi-Domain Security Mangement with Virtual System Extension LENGTH: 4 DAYS ithis course teaches students how to design, install, configure, and manage Multi-Domain Security Management with Virtual System Extension Chapter 1: Multi-Domain Security Management Deployment Chapter 2: Multi-Domain Security Management Installation and Configuration Chapter 3: Multi-Domain Security Management Logging Features Chapter 4: Multi-Domain Security Management Advanced Features Chapter 5:Virtual System Extension Deployment Chapter 6: VSX Gateway Installation and Configuration Chapter 7: VSX Advanced Features Lab 11: Implementing VSX Gateway Virtual System

19 Check Point Advanced Intrusion Prevention System (IPS) LENGTH: 2 DAYS ithis course teaches advanced skills to configure and manage Check Point IPS. You will create and monitor a client profile, monitor an attack, customize a rotection, and learn basic troubleshooting techniques. virtualized environment. Chapter 1: IPS Management Chapter 2: IPS Monitoring Chapter 3: IPS Architecture Chapter 4: IPS Tuning Chapter 5: IPS Debugging Chapter 6: Chapter Questions and Answers

20 Blue Coat Certified ProxySG Administrator (BCCPA) LENGTH: 3 DAYS The Blue Coat Certified ProxySG Administrator (BCCPA) course is intended for IT professionals who wish to master the fundamentals of the Blue Coat ProxySG. After completing this course, you will be able to: Describe the major Secure Web Gateway functions of the ProxySG. Describe the role of the ProxySG as it relates to other Blue Coat products as part of a complete security solution Configure a ProxySG and place it into live service. Administer the major Secure Web Gateway functions of the ProxySG. Perform basic troubleshooting of the ProxySG and decide when it is appropriate to open a service request. Chapter 1: Introduction to the ProxySG Chapter 2: ProxySG Security Deployments Chapter 3: ProxySG Initial Security Configuration Chapter 4: ProxySG Management Console Chapter 5: ProxySG Security Licensing Chapter 6: Proxy Services Chapter 7: Hypertext Transfer Protocol Chapter 8: Introduction to the Visual Policy Manager Chapter 9: Content Filtering and WebPulse Chapter 10: Managing Downloads Chapter 11: Authenticating Users on the ProxySG Chapter 12: IWA Authentication Realms Chapter 13: Authentication with Transparent Proxy Chapter 14: Exceptions and Notifications Chapter 15: Access Logging Chapter 16: SSL Fundamentals Appendix A: LDAP Authentication Realms /training/bluecoat/bccpa

21 Blue Coat Certified ProxySG Professional (BCCPP) LENGTH: 2 DAYS The Blue Coat Certified ProxySG Professional (BCCPP) Course is intended for IT professionals who wish to master the advance features of the Blue Coat ProxySG. After completing this course, you will be able to: Describe the architecture of the ProxySG Write code in Content Policy Language to configure ProxySG policy processing Implement and troubleshoot advanced authentication realms deployments Manage downloads and Flash traffic Implement advanced SSL proxy functionality Monitor and analyze ProxySG performance Integrate the ProxySG with other Blue Coat security products Chapter 1: SGOS Architecture Chapter 2: Caching Architecture Chapter 3: Introduction to CPL Chapter 4: Basic CPL Chapter 5: Policy Tracing Chapter 6: Kerberos Authentication Chapter 7: Authentication Troubleshooting Chapter 8: ProxySG Performance Monitoring Chapter 9: Basic ProxySG Troubleshooting Chapter 10: ProxySG Integration Appendix A: IPv6 in ProxySG Security Deployments /training/bluecoat/bccpa

22 Essentials 1: Firewall Installation, Configuration and Management (PAN 201) LENGTH: 3 DAYS This course provides an introductory-level in-depth knowledge of how to install, configure, and manage their firewall, as well as configuration steps for the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks Operating System. Chapter 1: Platforms and Architecture Chapter 2: Initial Configuration Chapter 3: Interface Configuration Chapter 4: Security and NAT Policies Chapter 5: App-ID Chapter 6: Content-ID Chapter 7: Decryption Chapter 8: User-ID Chapter 9: Site-to-Site VPN Chapter 10: Management & Reporting Chapter 11: Active/Passive High Availability Chapter 12: Panorama

23 Firewall Installation, Configuration and Management: Essentials 11(PAN 205) LENGTH: 2 DAYS Firewall Installation, Configuration and Management: Essentials 11 is the next-level follow-on course to Palo Alto Networks Firewall Installation, Configuration, and Management. This course expands on 201 course topics, while introducing many new features and functions of Palo Alto Networks Next-Generation firewalls. Additionally, students will be instructed on the basics of implementing and managing GlobalProtect and Active/Active High Availability. Students will gain an in-depth knowledge of how to optimize their visibility and control over applications, users, and content. Chapter 1: Advanced Interface Config Chapter 2: App-ID : Custom Apps Chapter 3: Advanced Content-ID Chapter 4: Advanced User-ID Chapter 5: QoS Chapter 6: Monitoring and Reporting Chapter 7: GlobalProtect Chapter 8: MSM Chapter 9: Active/Active High Availability

24 Advanced Firewall Troubleshooting (PAN 311) LENGTH: 3 DAYS Advanced Firewall Troubleshooting is the next-level follow-on course to Palo Alto Networks Firewall Installation, Configuration, and Management: Essentials 1 and II. Students will receive hands-on experience troubleshooting the security, networking, threat prevention, logging, and reporting features of the Palo Alto Networks Operating System (PAN-OS). Upon completion of this class, students will have an in-depth knowledge of how to troubleshoot visibility and control over applications, users, and content. Chapter 1: Course Introduction Chapter 2: Platform Overview Chapter 3: Troubleshooting Methodology Chapter 4: Tools Chapter 5: Management Plane and Data Plane Troubleshooting Chapter 6: Administration Troubleshooting Chapter 7: Network Troubleshooting Chapter 8: Policy Troubleshooting Chapter 9: High Availability Troubleshooting Chapter 10: GlobalProtect Troubleshooting Break/Fix Lab 1 Break/Fix Lab 2 Break/Fix Lab 3

25 36 NIOS Configuration Class (NCC) - V6.10 LENGTH: 3 DAYS The Infoblox NIOS Configuration Class (NCC) is a comprehensive 3-day instructor-led course. It builds a working knowledge of how to configure and manage Infoblox network appliances running NIOS. Forward and reverse mapping zones, network and zone creation, DNS Anycast, DHCP ranges, fixed addresses, grid management, system & protocol level monitoring, and system level management will all be covered. Chapter 1: Introduction to NIOS Chapter 2: GUI Overview Chapter 3: NIOS Administration Chapter 4: Administrator Accounts Chapter 5: High Availability Pairs Chapter 6: Grid Architecture Chapter 7: DHCP Overview Chapter 8: DHCP Member Configuration Chapter 9: DHCP Networks Chapter 10: DHCP Network Objects Chapter11: DHCP Options Chapter 12: DHCP Additional Topics Chapter 13: DHCP IPAM Chapter 14: File Distribution Chapter 15:DNS Overview Chapter 16: DNS Member Configuration Chapter 17: DNS Zones Chapter 18: DNS Record Configuration Chapter 19: DNS Additional Topics Chapter 20: DNS IPAM Chapter 21: Data Import Chapter 22: Microsoft Management Chapter 23: Network Discovery Further Reading: FRM-1: Scheduled Upgrades

26 37 Advanced Administration Class (AAC) - v6.10 LENGTH: 3 DAYS The Infoblox Advanced Administration Class (AAC) is an intensive two-day hands-on technical course exploring some of the advanced architectural and deployment options of the NIOS appliances. The course includes frequent hands-on exercises to ensure an optimal learning experience. Chapter 1: External Authentication & Lab Chapter 2: TSIG and GSS-TSIG Chapter 3: DNSSEC Chapter 4: DNS Anycast Chapter 5: Dynamic DNS Chapter 6: Infoblox Views Chapter 7: Advanced DHCP Options Chapter 8: DHCP Failover Chapter 9: Trinzic Reporting Further Reading: FRM 1: Multi-Grid Management (MGM) Further Reading: FRM 2: Best Practices