Foreword
The aim of this training course is to present the advanced features of the Stormshield Network Security product. This training course has been awarded the SecNumedu – Continuing Education label by the Agence Nationale de la Sécurité des Systèmes d’Information (ANSSI). Expert certification enables your company to become a Stormshield Gold Partner and to be listed as such on the Stormshield website (Find a Stormshield partner | Stormshield/). In addition, you will receive an access code enabling you to contact the Stormshield Level 2 technical support centre directly and open Level 2 support tickets directly via your partner space or by telephone.
Teaching methods:
The course is delivered remotely, via an online meeting tool, alternating theory and practical work. Trainees receive a link to download the digital course material (PDF format). The course material consists of the lecture, the practical work (Labs) and their corrections. In order to be able to put the elements of the course into practice, the trainees have a complete virtual technical environment at their disposal on our eLearning platform (Windows VM, EVA Stormshield and Debian VM to simulate servers in DMZ). To maintain the trainee’s expertise, all updates to the course material are available in PDF format for 3 years on the https://institute.stormshield.eu platform. On this platform, trainees will also find a virtual environment enabling them to manipulate the product and replay the Labs in complete autonomy.
Training objectives :
At the end of the training, and after a review of basic knowledge, trainees will have acquired the following skills:
- Make advanced use of the GUI,
- Precisely configure the intrusion prevention engine,
- Set up a PKI and transparent authentication,
- Set up an IPsec VPN using certificates
- Configure a high-availability cluster.
Trainer:
All our CSNE trainers hold the CSNEI (Certified Stormshield Network Expert Instructor) certification issued by the publisher, attesting to their level of expertise.
Duration:
This training course lasts 6 consecutive half-days of 3.5 hours each (21 hours of training in total).
Location:
This course is given remotely via the Internet.
Timetable:
The course starts at 9.00 a.m. and finishes at around 5.30 p.m., with a 1.5-hour lunch break between 12.30 p.m. and 2 p.m.
Registration:
To register, please contact the Training Department ([email protected]). To ensure smooth organisation, please send registration requests at least 15 (fifteen) days before the start of the desired course. Registration is confirmed and definitive on receipt of the order form.
Target audience:
IT managers, network administrators, any IT technician who obtained CSNA certification less than 3 years ago. Acceptance of disabled trainees. As part of our training courses, we can welcome people with disabilities after assessing the nature of the disability. In order to anticipate needs as effectively as possible and to study the necessary compensations, it is requested that this be indicated as soon as contact is made with the training department.
Prerequisites and equipment:
Access to this course is restricted to those who have passed the CSNA exam within the 3 years preceding the CSNE course. Good knowledge of TCP/IP (routing, phases of establishing a TCP connection, structure of an IP packet, etc.). Trainees must have a computer and an Internet connection to enable access to our eLearning platform and have suitable audio equipment (telephone with microphone/earphones, or microphone/headset on the PC, for example).
Certification exam:
Certification consists of an online exam (2 hours, 90 questions). The minimum certification score is 70%. The exam opens automatically the day after the end of the course and lasts for three weeks on the https://institute.stormshield.eu platform. If you are unsuccessful or unable to take the exam within this timeframe, a second and final exam is automatically opened at the same time for a further week.
Lesson plan :
Day 1:
- Introduction of trainees
- Detailed presentation of the Stormshield Network intrusion prevention engine
- Differences between intrusion prevention and detection
- The intrusion prevention engine
- The different types of analysis
- Protocol and application profiles
- Public key infrastructure
- Basics of symmetric and asymmetric cryptography
- Types of encryption
- Stormshield Network PKI
- Creating a certification authority, server identity and user identity
Day 2 :
- SSL Proxy
- How it works
- SSL proxy settings
- Advanced IPSec VPN
- Detailed operation and NAT traversal mechanism
- Dead Peer Detection (DPD) support
- VPN star architecture and chaining
- NAT in IPSec
- IPsec VPN architecture with backup tunnel
- Configuration of a site-to-site VPN using certificates
- Configuration of a nomad VPN
Day 3 :
- GRE and GRETAP
- How it works
- Configuration and implementation
- Transparent authentication
- How it works
- SPNEGO authentication method
- SSL certificate authentication method
- High availability
- How it works
- HA cluster creation and configuration wizard
- Configuring network interfaces
- Advanced configuration
