Course Syllabus
- Overview
- What it takes to pass PCNSE
How To Set Up Lab Environment9 lectures • 1hr 13min
- Setting Up EVE-NG Community PART 1
- Setting Up EVE-NG Community PART 2
- EVE-NG Installation with Linux
- How to assigned a static IP to EVE-NG
- How to add Palo Alto to EVE-NG
- How to Add a Cisco Router
- Connect To Palo Alto Firewall GUI with EVE-NG
- Add a cisco Switch to EVE
- Palo Alto Networks with AWS
Basic Palo Alto5 lectures • 16min
- Traffic Processing Sequence
- How the commit works
- Creating Dynamic Admin Account
- Creating Custom Role-Based Account
- Non-Local Administrator Accounts
Securirty Operating Platform And Architecture3 lectures • 10min
- Cortex
- Securing the Enterprise
- Primary Next Generation Features
Interfaces21 lectures • 2hr 48min
- Intro
- Security Zones
- Security Policy
- Tap Mode
- Virtual Wire Lab simple
- Virtual Wire Lab Advanced
- L2 Lab Simple
- L2 Lab Advanced with no Sub Interfaces
- L2 Deployment With Sub interfaces
- L2 Deployment With Sub interfaces and Router on a Stick
- L3 Lab Simple
- L3 Lab Advanced
- Layer 3 Sub interfaces with Firewall on a Stick
Preview
Tap, Virtual Wire, L2, and L3
- Interface Management Profile
- Virtual Routers
- Virtual Routers with multiple VRs Lab
- Routing Protocols
- OSPF
- OSPF Between PAN, Cisco Router and Juniper Firewall
- Capture traffic on the management interface
- Interfaces
Security Policies22 lectures • 2hr 14min
- Intro
- Controlling the traffic
- Palo Alto is StateFul
- Security Rule Types
- Creating a Security Policy
- Edit the Policies Tab
- Schedule a Policy
- Creating Objects
- Tags
- NAT Types
- Source NAT
- Source NAT LAB
- Destination NAT
- Creating Network Diagram
- Diagram
- LAB
- Lab 1 – Granular Security Policy
- Lab 2 – Granular Security Policy
- Intro to QoS
- QoS Components
- Easy QoS Configuration
- Time-Based QoS Configuration
App-ID12 lectures • 36min
- Intro
- What is App-ID
- How does App-Id Works
- Application Shift
- Application Shift Lab
- Implicit Applications
- Implicit Applications Lab
- Application Filters
- Application Groups
- Application Groups Lab
- Creating Custom Service Lab
- Updating App-ID
Content-ID27 lectures • 1hr 50min
- Intro
- Content ID
- Vulnerability Protection Default
- Cloning A Vulnerability Protection
- Creating A Vulnerability Protection
- Vulnerability Protection Exceptions
- Antivirus Profile Intro + Default
- Clone and add exceptions to Antivirus Profile
- Anti-Spyware Profile Intro + Default
- Clone and add exception for a new Anti-Spyware
- Anti-Spyware DNS Signatures and Sinkhole
- Anti-Spyware Sinkhole, DNS Signature and Exceptions
- File Blocking Profile
- Creating File Blocking Profile
- Blocking Multi-Level Encoding
- Data Filtering Profiles
- Data Filtering Profiles Demo
- Security Profile Group Demo
- Telemetry
- Dos Protection
- DoS Protection Part Deux
- DoS Protection Policies
- URL Filtering
- URL Filtering profile
- Safe Search
- Block Website with Custom URL Category
- URL Filtering Profile With Continue, Blocked, and Override
- Content-ID
Decryption14 lectures • 46min
- Intro
- SSL/TLS Overview
- Firewall Decryption Types
- PKI, CA, Root CA
- Looking at a real Certificate
- CA Certificate Choices
- Generate Certificate Lab
- Forward Proxy Decryption
- Configuring a Forward Trusted Certificate
- Configuring Forward Untrusted Certificate
- Configure SSL Forward Proxy Policy
- Configure SSL Forward Proxy Profile
- SSL Inbound Inspection
- SSL Inbound Inspection Lab
- Decryption
WildFire8 lectures • 25min
- Intro
- WildFire Intro
- WildFire Email Protection
- WildFire License
- WF-500
- Configuring WildFire Settings
- WildFire Analysis Profile
- Creating a WildFire Profile
- WildFire
User-ID10 lectures • 53min
- Intro
- Intro to User-ID
- User Mapping Methods
- Syslog Monitoring
- DC Monitoring ans Session Monitoring
- Steps to configure User-ID
- Active Directory and PC Enrollment
- Configuring PAN-OS Integrated User-ID Agent
- Windows Based Agent Configuration Steps
- BONUS – Authenticating User with Domain Controller
- User-ID
GlobalProtect6 lectures • 32min
- GlobalProtect Intro
- GlobalProtect Connection Sequence
- Prima Access
- Clientless VPN
- Preparing the Firewall for GlobalProtect
- GlobalProtect Configuration
- GlobalProtect
Site-to-Site VPNs11 lectures • 1hr 59min
- Intro
- Site-to-site VPN
- IKE Phase 1
- IKE Phase 2
- How does it work?
- Site to Site VPN Configuration
- Site to Site VPN Depth
- IPsec Tunnel Troubleshooting
- IPsec Tunnel Troubleshooting Example
- Palo Alto to ASA Site to site VPN
- Palo Alto to Cisco Router Site to Site VPN
- Site-to-Site
Monitoring and Reporting14 lectures • 51min
- Intro
- Dashboard Tab
- Application Command Center (ACC)
- Application Command Center (ACC) LAB
- Filters
- Predefined Reports
- Customer Reports
- PDF Summary Report
- SaaS Application Usage Report
- Report Group
- Emailing Reports
- Syslog
- Add a Syslog Server Profile
- SNMP
- Monitoring and Reporting
High Availibility14 lectures • 1hr 2min
- Intro
- High availability Overview
- Active/Passive
- Active/Active
- HA Prerequisites
- Components and Operations
- HA Backup Links
- Designating a Firewall
- Detecting Failure
- HA Active/Pasisve Configuration
- Configuring Link Groups
- Configuring Link Groups Lab
- Path Monitoring
- Path Monitoring Lab
- HA
Panorama3 lectures • 18min
- Initial Configuration
- Set Panorama Management Interface
- Device Groups and Template
Exam Review12 lectures • 1hr 55min
- Application Override
- Custom Application
- Security Profile
- Phishing and Credential Detection
- DoS and Zone Protection Profiles
- Security Policy, Security Zones and Traffic Processing Sequence
- Decryption Policy
- Logs
- Applications Traversing
- Traffic Not Passing as expected
- Management Plane vs Data Plane
- HA-Lite