Mengapa Harus Training Palo Alto NGFW?
- Konsultasi Gratis Setelah Training (jika diperlukan, dapat dilanjutkan ke proyek).
- Fasilitas Lab yang Komprehensif untuk Praktik Langsung.
- Bergabung Gratis dengan Mailing List IDN, Mencari Informasi Kerja, dan Diskusi di Grup.
- Kebebasan Menggunakan Laboratorium di IDN di Luar Jam Training Khusus untuk Peserta Training.
- Gratis Menginap di Tempat Training untuk Peserta yang Berasal dari Luar Kota.
- Pembimbing oleh Trainer yang Bersertifikasi dan Berpengalaman di Bidang Palo Alto
Pengenalan Training
Kursus Palo Alto NGFW dirancang untuk memberikan pemahaman dan keterampilan teknis mendalam bagi para profesional IT yang ingin menguasai teknologi firewall generasi terbaru dari Palo Alto Networks. Melalui pendekatan teori dan praktik langsung, peserta akan mempelajari cara mengimplementasikan, mengonfigurasi, dan mengoptimalkan perangkat NGFW untuk melindungi infrastruktur jaringan dari berbagai ancaman siber.
Program ini direkomendasikan untuk Network Engineer, Security Engineer, Administrator Jaringan, serta siapa pun yang bertanggung jawab atas keamanan dan manajemen jaringan pada berbagai skala organisasi. Dalam pelatihan ini, peserta akan dibimbing untuk memahami prinsip kerja NGFW, arsitektur sistem, serta fitur-fitur keamanan canggih yang menjadi keunggulan Palo Alto.
Setelah menyelesaikan kursus, peserta akan memiliki keterampilan komprehensif untuk mengelola Palo Alto NGFW secara efektif dan mampu meningkatkan posture keamanan organisasi. Dengan pemahaman mendalam tentang fitur-fitur canggih Palo Alto, peserta dapat memastikan jaringan tetap terlindungi dari ancaman siber modern yang semakin kompleks.
Jika Anda ingin meningkatkan keahlian keamanan jaringan dan memahami bagaimana NGFW bekerja dalam skenario nyata, pelatihan Palo Alto NGFW adalah pilihan terbaik untuk pengembangan karier Anda di bidang Network Security.
Prerequisites
Syarat-syarat yang diperlukan sebelum mengikuti pelatihan ini:
- Pengetahuan dasar jaringan (Network Fundamental)
- Pemahaman tentang firewall
Benefit
After completing this course, you will be able to:
- Understanding Palo Alto NGFW architecture and core functionality
- Mastering initial firewall setup and configuration
- Developing and applying effective security policies
- Implementing NAT techniques for improved traffic control
- Identifying applications using App-ID for better visibility
- Controlling content with Content-ID to block threats
- Utilizing User-ID for granular access control
- Learning and applying SSL Decryption concepts
- Leveraging WildFire for advanced and zero-day threat detection
- Gaining hands-on practice through labs and real-world exercises
- Enhancing analytical and troubleshooting skills
- Implementing DNS Security for malicious domain protection
- Utilizing URL Filtering to block unsafe or inappropriate websites
- Configuring Zone Protection to safeguard network zones
Profile Trainer
Profil Trainer :
Sebri Yanto Muhammad Azis ( PCNSA, PCNSE, PSE-Professional
Strata Hardware, PCCP, CYBERFORECE:DEFENDER)
CURRICULUM
Palo Alto Networks NGFW
– Syllabus Overview
- Introduction to Palo Alto Networks Security
Platform
- What is a Next-Generation Firewall
- PAN-OS architecture and components
- Control Plane vs Data Plane
- Flow Logic (App-ID, User-ID, Content-ID)
- Deployment options (Physical, VM-Series, CN-Series, Cloud NGFW)
- Initial Configuration & Management
- Management interfaces and access methods (GUI, CLI, API)
- Device setup (hostname, timezone, DNS, NTP)
- Licensing and updates (Dynamic Updates, PAN-DB, Threat DB)
- Software upgrade path and best practices
- Role-Based Administration (RBAC)
- Network Configuration
- Interface types (Layer 2, Layer 3, Tap, Virtual Wire)
- Zones and Security concepts
- Virtual Routers and routing configuration
- VLANs, Subinterfaces, and Trunking
- High Availability (Active/Passive, Active/Active)
- Security Policies
- Security policy structure and rule evaluation order
- Application-based rules (App-ID)
- User-based policies (User-ID, LDAP, SAML integration)
- Security Profiles (AV, Anti-Spyware, URL Filtering, File Blocking, WildFire)
- Best practices for rule optimization and shadow rule detection
- NAT and Decryption
- Source NAT, Destination NAT, and Twice NAT
- SSL Decryption: Forward and Inbound Proxy modes
- Certificate management and troubleshooting SSL decryption issues
- Logging, Monitoring & Reporting
- Log types: Traffic, Threat, URL, WildFire, System, Config
- Log forwarding to Syslog/SIEM
- Application Command Center (ACC)
- Custom Reports and Scheduled Reports
- Strata Cloud Manager / Cortex Data Lake Integration
- Advanced Threat Prevention
- Intrusion Prevention System (IPS)
- File Blocking and WildFire analysis workflow
- DNS Security and Advanced Threat Intelligence
- Anti-Spyware and C2 Detection
- Best practice: “Security Profile Groups”
- Identity and Access Integration
- User-ID Agents and Mapping
- Integration with AD, Azure AD, Okta
- Authentication Policies (Captive Portal, GlobalProtect, MFA)
- Identity-based Security Policies
- Troubleshooting & Operational Tools
- CLI and GUI troubleshooting commands
- Packet capture (PCAP), Session Browser, and Flow logic
- Log correlation and ACC analysis
- Common operational commands (show session all, debug dataplane)
- Case Study: Analyzing real-world traffic issue
- Next Step and Certification Path
- PCNSA → PCNSE → PCSAE / PCCSE / PSE-Pro
- Study references, labs, and real-world deployment exercises.
Durasi Training
2 Hari (Jam Belajar Mulai Pukul 09.00 s.d 17.00 WIB Perharinya)
Biaya Investasi : Rp 3.500.000,- Rp. 3.000.000
Note: Jika membutuhkan surat penawaran dan faktur pajak, silahkan hubungi kami.