Overview

This online instructor led training course provides students the knowledge of how to configure and manage their Palo Alto Networks Panorama management server.

Students who complete this course should become familiar with the Panorama management serves role in managing and securing their overall network. Network professionals will be shown how to use Panorama aggregated reporting to provide them with a holistic view of a network of Palo Alto Networks next-generation firewalls.

Exam Number: Palo Alto Networks Certified Network Security Engineer – PCNSE

INSTRUCTOR: Dan Goodman, Cisco, CWNP, Cybersecurity, Palo Alto, OpenStack, Enterprise Linux
COURSE DIFFICULTY: Intermediate
COURSE DURATION: 8h 30m

After completing this online training course, students will be able to:

  • Configuration and deployment of Panorama

  • NGFW implementation

  • NGFW Cloud deployment

  • VM-Series bootstrapping

  • Dynamic User Groups (DUGs)

  • SD-WAN

  • Connect Panorama to NGFWs

  • WildFire

  • Device upgrades and updates via Panorama

  • Device Group Objects

  • Panorama troubleshooting

  • Security administrators
  • Security analysts
  • Network professionals
  • Security engineers
  • Network engineers

We highly recommend that students have taken the Palo Alto Firewall Administration course or have equivalent experience.

01. Course Overview
  • Introduction to course and exam objectives
02. Panorama (PN) Overview
  • Configuration management
  • Deployment modes
  • PN offerings
  • PAN offerings
03. Plan
  • NGFW implementation​
  • High Availability (HA)​
  • Interface types and configurations​
  • Log collection​
  • Template stacks​
  • Device Groups​
  • NGFW cloud deployments
  • Device administration​
  • Certificate management​
  • Resource exhaustion
  • Mitigation​
  • Decryption
  • App-ID
  • Application override
  • User-ID redistribution
  • VM-Series bootstrapping
  • Dynamic User Groups (DUGs)
  • Software-defined wide-area network (SD-WAN)
  • Plan recap
04. Deploy and Configure
  • Traffic logs
  • Security profiles​
  • URL filtering and credential theft prevention​
  • App-ID​
  • Distributed log collectors​
  • How PN connects to NGFWs​
  • Protecting service access​
  • Certificate management
  • Site-to-site VPN​
  • GlobalProtect (GP)
  • Network Address Translation (NAT)​
  • SD-WAN​
  • Policy evaluation​
  • Quality of Service (QoS)​
  • WildFire​
05. Demonstrations
  • Deploy a Panorama appliance​
  • Panorama – global view of the Enterprise​
  • Identify the required settings and steps necessary to provision and deploy a next-generation firewall​
  • Adding firewalls to Panorama​
  • Device upgrades and updates via PN​
  • Device upgrades and updates via PN​
  • Device upgrades and updates via PN​
  • Creating a template variable​
  • Adding device groups and display filters​
  • Device Group Objects​
  • Overview of device groups and policy rules​
  • Creating a log forwarding Profile​
  • Application override​
  • Dynamic User Group (DUG)​
  • PN troubleshooting
    • Identify system and traffic issues
    • SD-WAN
    • Identify how to view GlobalProtect troubleshooting information
    • Given a scenario, identify how to troubleshoot traffic routing issues
    • Certificates and decryption