Szkolenia F5 Networks

Cel szkolenia szkolenie zdalne - dlearning

kod: F5N-AFM | wersja: v14

This course uses lectures and hands-on exercises to give participants real-time experience in setting up and configuring the BIG-IP Advanced Firewall Manager system. Students are introduced to the AFM user interface, stepping through various options that demonstrate how AFM is configured to build a network firewall and to detect and protect against DoS (Denial of Service) attacks. Reporting and log facilities are also explained and used in the course labs. Further Firewall functionality and additional DoS facilities for DNS and SIP traffic are discussed.

Audience:
This course is intended for system administrators, network administrators, security administrators, and security architects responsible for installation, setup, configuration, and administration of the BIG-IP Advanced Firewall Manager (AFM) system.

Course is based on the system version v14.

Plan szkolenia Rozwiń listę

  1. Setting Up the BIG-IP System
    • Introducing the BIG-IP System
    • Initially Setting Up the BIG-IP System
    • Archiving the BIG-IP Configuration
    • Leveraging F5 Support Resources and Tools
  2. AFM Overview and Network Firewall
    • AFM Overview
    • AFM Release History
    • AFM Availability
    • What do you see?
    • Terminology
    • Network Firewall
    • AFM Contexts
    • AFM Modes
    • AFM Packet Processing
    • AFM Rules and Direction
    • Rules Contexts and Processing
    • Configuring Network Firewall
    • Network Firewall Rules
    • Geolocation
    • Redundant and Conflicting Rules
    • Stale Rules
    • Lists and Schedules
    • Rule Lists
    • Address Lists
    • Port Lists
    • Schedules
    • Policies
    • Policy Status and Firewall Policy Management
    • Inline Rule Editor
  3. Logs
    • Event Logs
    • Logging Profiles
    • Log Throttling
    • Traffic Flow Statistics
    • Logging and Logging Profiles
    • BIG-IP Logging Mechanisms
    • Publisher
    • Log Destination
    • Custom Search
    • Logging Global Rule Events
    • Log Configuration Changes
    • QKView
    • Other Log Files
    • SNMP MIB
    • SNMP Traps
  4. IP Intelligence
    • Overview
    • Architecture
    • Feature 1 Dynamic Black and White Lists
    • Black List Categories
    • Feed Lists
    • IP Intelligence Policies
    • IP Intelligence Log Profile
    • IP Intelligence Reporting
    • Troubleshooting IP Intelligence Lists
    • Feature 2 IP Intelligence Database
    • Licensing
    • Installation
    • Configuration
    • Troubleshooting
    • IP Intelligence
  5. Device DoS
    • Policies
    • Policy Status and Firewall Policy Management
    • Inline Rule Editor
  6. Reports
    • Reports
    • Reporting
    • General Reporting Facilities
    • Charts
    • Details
    • Report Export
    • Network Screens
    • DoS Screens
    • Settings
    • Overview
    • Summary
    • Widgets
    • Time Periods, Settings, Export, and Delete Options
    • Firewall Manager
  7. DoS White Lists
    • White Lists
    • Configuration
    • tmsh
  8. DoS Sweep Flood Protection
    • Sweep Flood
    • Configuration
  9. IP Intelligence Shun
    • IP Intelligence Shun
    • Manual
    • Dynamic
    • IP Intelligence Policy
    • tmsh
    • Troubleshooting
  10. DNS Firewall
    • DNS Firewall
    • DNS Query
    • DNS Opcodes
    • Troubleshooting
  11. DNS DoS
    • DNS DoS
    • DoS Protection Profile
    • Device DoS
  12. SIP DoS
    • Session Initiation Protocol (SIP)
    • Transactions and Dialogs
    • SIP DoS
    • DoS Protection Profile
    • Device DoS
    • SIP iRules
  13. Network Firewall iRules
    • Network Firewall iRules
    • iRule Events
    • Use Cases
    • Recommended Practice
    • More Information
  14. DoS iRules
    • DoS iRules
    • iRule Events
    • Use Cases
    • More Information
  15. Additional Training and Certification
    • Getting Started Series Web-Based Training
    • F5 Instructor Led Training Curriculum
    • F5 Professional Certification Program
Pobierz konspekt szkolenia w formacie PDF

Dodatkowe informacje

Wymagania

Before attending the Troubleshooting, ASM, DNS, APM, AAM, AFM, VIPRION or iRules courses is mandatory:

  • to take part in the BIG-IP Admin or LTM course 
  • or possession of F5-CA or F5-CTS LTM certification
  • or pass special assessment test with sore 70% or greater.

To take assessment test:
Step 1: get an account on F5 University https://university.f5.com
Step 2: goto My Training and find Administering BIG-IP Course Equivalency Assessment
Take the test. Pass mark is 70%
Step 3: take a screen shot as proof of results
If this prerequisite is not met, F5 Networks have the right to refuse entry to the class.

Poziom trudności
Czas trwania 2 dni
Certyfikat

The participants will obtain certificates signed by F5 Networks (course completion).

Prowadzący

Certified F5 Networks Trainer.

Wszystkie szkolenia F5 Networks
Szkolenia powiązane tematycznie

Sieci komputerowe

Bezpieczeństwo Sieci

Bezpieczeństwo IT