Prerequisites
To apply for the Sophos Training, you need to either:
Before you start learning Sophos, you should have the following skills:
- Basic skills in networking and security best practices.
- Basic knowledge of Windows server setup, Configuring network gateway devices, and sound skills in MS Active Directory.
Course Curriculum
Topic – 1 XG Firewall Insights
- What is Sophos?
- Features and Protection Overview
- Deployment options
- Sophos Central Evaluation Registration
- Central management and reporting add-ons
Topic – 2 Master XG Firewall Basics
- Deployment modes identification and Initial Setup Wizard
- WebAdmin navigation and object management
- Overview of System Zones and Networking concepts
- Handling device access & certificates
- Static routing and configuration backups
- Build and restore Config backups
Topic – 3 Authentication Configuration & Management
- Authentication sources and user types
- Learning NTLM validation and identity-based policies
- Concepts SSO using STAS
- One-time passwords (OTP) and Active Directory integration
- Configure OTPs
- AD Validation Server Creation
- Develop user-based policies
Topic – 4 Network Protection Configuration and Diagnostics
- Firewall types and rule management
- Develop and handle various Firewall rules
- Configuring Intrusion prevention
- DoS and Spoof protection configuration
- Concepts of Enabling Security Heartbeat
- Configuring Advanced Threat Protection and logging
- Installing SSL CA Certification
- IPS Policy Configuration
Topic – 5 Site-to-Site Connections Configuration and Optimization
- VPN options: IPsec and SSL
- Configuring SSL & IPsec
- RED deployment concepts
- Create and Configure IPsec & SSL site-to-site VPNs
Topic – 6 Web Protection and App Control Configuration
- Setting Up Web Protection Policies and traffic control
- Develop Keyword filters
- Configuring Surfing & Traffic Quotas
- Application Filters
- Learn Content filter creation
- Synchronized App Control for classifying apps
- Build Policies for Custom web and Application Filter
Topic – 7 Wireless Protection
- Access points and their differences
- Wireless network setup
- Security modes
- Hotspot creation & configuration for networks
Topic – 8 Email Protection Configuration and Optimization
- Email Protection Deployment modes & global settings
- SMTP policies for legacy & MTA modes
- Data Control Lists
- Email Protection Policy Configuration
- SPX encryption and quarantine management
Topic – 9 Logging and Reporting: Configure and Troubleshoot
- Report customization and scheduling
- Use Log Viewer to track the Firewall
- Logging optimization
- Understand SF Loader Tools
- Diagnostic tools and packet captures for troubleshooting
Topic – 10 Remote Access (RA) Configuration
- Configure RA with SSL VPN and Clientless Access
- Mobile device access
- SSL remote connectivity VPN configuration