HomeCoursesEDU-220 Panorama : Managing Firewalls at Scale

EDU-220 Panorama : Managing Firewalls at Scale

Upcoming Classes

EDU-220 EDU-220 Panorama : Managing Firewalls at Scale

  • Duration: 2 days
  • Price: $1400 USD
  • Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE)
Course Description add_circle_outline remove_circle_outline

The Palo Alto Networks Panorama 10.0: Managing Firewalls at Scale (EDU-220) course is two days of instructor-led training that
should help you:

  • Learn how to configure and manage the next-generation Panorama management server
  • Gain experience configuring templates (including template variables) and device groups
  • Gain experience with administration, log collection, and logging and reporting
  • Become familiar with planning and design considerations for Panorama deployment
Course Objectives add_circle_outline remove_circle_outline

This course should help students to gain in-depth knowledge about how to configure and manage their Palo Alto Networks Panorama management server. Administrators that complete this course should become familiar with the Panorama management server’s role in managing and securing their overall network. Network professionals will be shown how to use Panorama aggregated reporting to provide them with a holistic view of a network of Palo Alto Networks next-generation firewalls.

Target Audience add_circle_outline remove_circle_outline

Security Administrators, Security Operations Specialists, Security Analysts, Security Engineers, and Security Architects

Prerequisites add_circle_outline remove_circle_outline

Students must complete the Firewall 10.0 Essentials: Configuration and Management (EDU-210) class and be familiar with Palo Alto Networks next-generation firewall management and basic networking concepts, including routing and IP addressing

Course Modules add_circle_outline remove_circle_outline
  • Adding Firewalls to Panorama
    • Adding New Firewalls to Panorama
      • Add a FireWall
      • Automated Commit recovery
      • Automatically Add multiple FireWalls via CSV import
      • Tagging
      • Organizing Summary Information
      • Secure Communication Settings
      • Manage device licenses
      • Master key
    • Upgrade firewalls from Panorama
    • Deploy Content ID Updates to firewalls from Panorama
    • Lab
      • Set location for firewalls
      • Copy serial firewall numbers
      • Configure firewalls to communicate with Panorama
      • Add firewalls to Panorama
      • Modify Summary Window columns
      • Assign firewall Tags
      • Verify firewall licenses
      • Schedule Dynamic Updates for firewalls
  • Initial Configuration
    • Panorama solution overview
    • Deployment options 
    • Panorama platforms
    • Register and License Panorama
    • GUI overview
    • Panorama License and Software update
    • Plugin Architecture
    • Services and Interface Configuration
    • Panorama Commits
    • Configuration Management
      • Config Operations
      • Manage Backup incl. export device state from FireWall
      • Config export
    • Lab
      • Lab Overview
      • Connect to the lab environment
      • Log in to the Panorama appliance and both firewalls
      • Document configuration and license information
      • Configure Panorama Management Interface
      • Configure Panorama Settings
      • Schedule automatic config exports
      • Schedule Content Updates
      • Save and export Panorama configuration
      • Commit changes
  • Templates
    • Templates overview 
    • Configuring templates
      • Device configuration via template
      • Local overwrite
    • Template Variables
      • Overview
      • Configuration
    • Real-life use cases and best practices
    • Lab
      • Create templates
      • Create template stacks
      • Create template variables
      • Push the template stack to managed devices
  • Device Groups
    • Device groups overview
    • Configuring Device Groups
      • Setup Device-group hierarchy
      • Group and push to HA Peers
    • Objects
      • Create an object – shared/disable override
      • Override
      • Move
      • Device Group and template mapping
    • Policies
      • Rules Hierarchy
      • Rulebase structuring
      • Configure rules
      • Move Rules
      • Rulebase preview
      • Unused Rules
      • Policy rule targets
    • Rule changes archive
      • Audit Comments
      • Tag-Based Rule Groups
    • Real-life use cases and best practices
    • Lab
      • Create device groups
      • Configure device group settings
  • Log Collection and Forwarding
    • Design Considerations for Deployment
    • Log storage and retention
      • Determine the Log Rate
      • Storage calculation
      • Log retention
    • Planning Considerations
    • Panorama log event forwarding
    • Lab
      • Configure log forwarding on the firewalls
      • Configure log settings on the firewalls
      • Confirm log forwarding
  • Using Panorama Logs
    • Customizing Log Tables
    • Using Filters in Log Tables
    • Exporting Filtered Data
    • Lab
      • Customize Log Tables in Panorama
      • Create and Apply Filters in Log Tables
      • Export Filtered Data
  • Panorama Administrative Accounts
    • Authenticating Panorama administrators
    • Panorama authentication methods
    • Admin Role
    • Creating Administrative Accounts
      • Custom Panorama Admin incl. Admin Role
      • Device Group and Template Admin incl. Access Domain and Admin Role
      • Password Profile and Password Complexity
    • External Authentication
      • Authentication Profile
      • LDAP Server Profile
    • Concurrent Administration
      • Config Lock
    • Lab
      • Create LDAP and RADIUS Server Profiles
      • Configure Authentication Profiles for LDAP and RADIUS
      • Configure admin roles
      • Configure admin accounts
      • Create access domains
      • Demonstrate the use of commit locks
  • Aggregated Monitoring and Reporting
    • Data Sources Used by Panorama
    • Operational Information Available in Panorama
    • Reporting Capabilities in Panorama
    • Lab
      • Examine Panorama ACC data
      • Run reports on Panorama
      • Explore App Scope
      • Identify and respond to threats
  • Troubleshooting
    • Health and Summary Information of Managed Firewalls
    • Troubleshooting Communication Issues with Panorama
    • Troubleshooting Commit Errors
    • Test policy functionality
    • Lab
      • Troubleshoot connectivity issues with a firewall
      • Troubleshoot various commit errors
      • Troubleshoot loss of internet connectivity
  • Add-on: Transition a Firewall to Panorama Management
    • This is an additional module which is not part of the official course. The instructor will demo the import of an existing FireWall’s local configuration into Panorama and explain various caveats.
    • Overview of Use Cases
      • Import existing FireWall if Panorama wasn’t used so far
      • Import local config after FireWall migration
      • Import FireWall config that has been partially managed by Panorama
    • Config import incl. caveats
      • Dependency on Device config
      • Caveats on fine-tuning the config
      • Disable config sync in a HA cluster

    Contact Us for more details