FortiGate infrastructure - rate 71,490 rub. from Specialist, training 16 ac. hours, Date: May 18, 2023.

Module 1. Routing (2 ac. h.)
Setting up static routing
Application of routing policies (Policy based routing)
Managing traffic to well-known Internet services
Routing table
Balancing traffic along routes of equal cost
Combating address spoofing by reverse route checking
Applying recommended settings
Handling failures and routing errors
View active and inactive routes
Using built-in traffic monitoring mechanisms
Lab: Configuring and Debugging Routing

Module 2. Software-configurable external interfaces (SD-WAN) (2 ac. h.)
The need to use software-configurable external interfaces
Conditions for their use
Setting up SD-WAN virtual links and load balancing
Static routes and policies using SD-WAN
Setting up SD-WAN health check
Checking the quality of communication and compliance with the criteria of the rules
Dynamic selection of links depending on connection quality
Monitoring link usage and communication quality
Checking traffic routing via SD-WAN
Lab: Setting up SD-WAN
Module 3. Virtual domains (2 ac. h.)
Definition and description of virtual domains
Creating administrator accounts with rights limited to the virtual domain
Using virtual domains to divide a FortiGate device into multiple virtual devices
Routing traffic between virtual domains via internal links
Limit resource allocation globally and per virtual domain
Lab: Virtual Domains
Module 4. Switching at the link level (2 ac. h.)
Configuring VLAN to divide the network into multiple broadcast domains
VLAN creation, tags
Configuring FortiGate to act as a Tier 2 device
Configuring a virtual domain to work in transparent mode
Dividing a Layer 2 network into several broadcast domains
Setting up a softswitch
Powering up FortiGate on an STP network
Recommendations for using switching on a FortiGate unit
Labs: Configuring Switching
Module 5. VPN between two FortiGate devices (Site-to-Site VPN) (2 ac. h.)
IKE and IPsec Basics
Selecting the Best Topology
Comparison of policy-based VPN and routing-based VPN (policy based vs route based)
Building a Site-to-Site VPN
Using VPN hardware acceleration
Building redundant tunnels between two devices
Recommendations for building a Site-to-Site VPN
Checking the unloading of tunnels into a hardware accelerator
Debugging VPN operation
Lab: Building a Site-to-Site VPN
Module 6. Fortinet Single Sign-On (FSSO) (2 ac. h.)
SSO and FSSO technology
Setting up FSSO deployment
Detecting user authentication events on domain controllers for FSSO
FSSO configuration options for domain controllers
Using NTLM authentication for one or multiple domains
Setting up SSO on FortiGate
Installing FSSO agents, setting up collectors
Monitoring the health and condition of the FSSO system
Debugging the FSSO system
Lab: Fortinet Single Authentication
Module 7. Fault tolerance (1 ac. h.)
Selecting the appropriate failover mode
Selecting a Primary Device in a Cluster
Tasks of primary and secondary devices in a cluster
Synchronization of device parameters, session synchronization
Handling device failures in a cluster
Traffic processing in load balancing mode
Clustering at the virtual domain level
Checking the health of the cluster
Configuring the management interface for each cluster module
Operating system updates in a cluster
Lab: Fault Tolerance
Module 8. Web proxy (1 ac. h.)
Basics of web proxy functioning
Using .PAC and .WPAD files to configure proxy settings in browsers
Configuring FortiGate to act as a proxy
Reducing Bandwidth Usage Using Web Cache
Applying security policies to web proxy traffic based on HTTP headers
Authentication, authorization and monitoring of web proxy users
Lab: Configuring a Web Proxy
Module 9. Diagnostics (2 ac. h.)
Determining normal network operation
Monitoring deviations from the norm: traffic surges, non-standard protocols, etc.
Debugging the operation of physical and logical interfaces
Diagnose connection problems by debugging traffic flows
Diagnose resource issues such as CPU and memory usage when running resource-intensive processes
Diagnosis of blocking state (conserve mode)
Diagnostics of traffic transmission mode when there is a lack of resources
Formatting Flash Memory
Loading a system image from the BIOS menu
Equipment testing
Displaying information about system failures
Lab: Performing System Diagnostics