FortiWeb – Web Application Firewalls

FortiWeb - Web Application Firewalls Corso | Fortinet corsi di formazione in Italia
X

Contattaci

Ti preghiamo di compilare questo modulo per prenotare in anticipo o richiedere ulteriori informazioni sulle date disponiibili.

Iscriviti

Vorrei ricevere e-mail con gli ultimi aggiornamenti e le promozioni di Insoft.

Protezione dei dati e privacy

Con la presente autorizzo Insoft Ltd. a contattarmi su questo argomento. Inoltre, autorizzo Insoft Ltd. al trattamento dei miei dati personali, utilizzando la raccolta e la memorizzazione dei miei dati personali per lo scopo di queste attività. Tutti i vostri dati saranno protetti e protetti come indicato nella nostra politica sulla privacy.

Schedulazione

  Aug 26 - Aug 28, 2019
Rome

  Oct 21 - Oct 23, 2019
Rome

  • 3 Days Course
    Network Security

    Classroom + Online

    Course Details

    Descrizione

    In this three-day class, you will learn how to deploy, configure, and troubleshoot Fortinet’s web application firewall: FortiWeb.

     

    Instructors will explain key concepts of web application security, and lead lab exercises in which you will explore protection and performance features. In the lab, you will experience traffic and attack simulations that use real web applications.  You will work with those simulations to learn how to distribute load from virtual servers to real servers, while enforcing logical parameters, inspecting flow, and securing HTTP session cookies.

     

    Associated Certification:

    • This course prepares you for the FortiWeb 5.6.0 Specialist Exam. This is one of the courses that prepares you to take the NSE 6 certification exam.

    Obiettivi

    After completing these courses, you will be able to:

    • Understand application-layer threats
    • Fight defacement & DoS
    • Prevent zero-day attacks without disrupting live traffic
    • Make apps retroactively compliant with OWASP Top 10 for 2013 and PCI DSS 3.0
    • Discover vulnerabilities in your servers & hosted web apps for tailored, efficient protection
    • Configure FortiGate together with FortiWeb for stronger HTTP and XML application security
    • Prevent accidental scan circumvention, while allowing FTP and SSH
    • Configure blocking & reporting for an external FortiADC or FortiGate, and FortiAnalyze
    • Choose the right operating mode
    • Balance load among a pool of servers
    • Enforce SSL/TLS, authentication, & sophisticated access control for “naked” apps
    • Train FortiWeb to defend your specific apps.
    • Blacklist suspected hackers, DDoS participants, and content scrapers
    • Troubleshoot traffic flow, including flow for FTP/SSH.
    • Diagnose false positives & customize signatures
    • Optimize performance

    Contenuti

    1. Introduction
    2. Basic Setup
    3. Integrating External SIEM
    4. Integrating Front-End SNAT & Load Balancers
    5. DoS & Defacement
    6. Signatures, Sanitization, & Auto-learning
    7. SSL & TLS
    8. Authentication & Access Control
    9. PCI DSS 3.0 Compliance
    10. Caching & Compression
    11. Rewriting & Redirects
    12. Troubleshooting

    Pubblico di destinazione

    • Networking and security professionals involved in the administration and support of FortiWeb.

    Prerequisiti

    • Knowledge of OSI layers and the HTTP protocol
    • Basic experience with HTML, JavaScript, and a server-side dynamic page language such as PHP
    • Basic experience using FortiGate port forwarding