Sophos Certified Architect – Course overview
UTM
This course provides an in-depth study of UTM, designed for experienced technical professionals who will be planning, installing, configuring and supporting deployments in production environments.
The course is intended to be delivered in a classroom setting, and consists of presentations and practical lab exercises to reinforce the taught content. Printed copies of the supporting documents for the course will be provided to each trainee.
If the course is being taught via webinar then the documents will be sent electronically to the trainees, who are encouraged to print them out to keep as a reference.
Due to the nature of delivery, and the varying experiences of the trainees, open discussion is encouraged during the training.
The course lasts 4 days, of which roughly 11 hours will be spent on the practical exercises.
Objectives
On completion of this course, trainees will be able to:
Understand the components of the UTM and how to configure them.
Architect a solution for a customer’s environment and needs.
Implement proof of concept (PoC) deployments with the UTM.
Perform a deployment appropriate to many customer environments.
Configure the components of the UTM according to best practice.
Troubleshoot common issues on the UTM.
Prerequisites
Prior to attending this course, trainees should:
Complete the Sophos Certified Engineer UTM course.
Have a working knowledge of the solution, having completed basic installation and configuration before attending.
Have a strong working knowledge of network configuration and troubleshooting before
attending this course. Similar to the level of knowledge required to pass the CCNA or CompTIA Network plus certification programs.
Be able to troubleshoot and resolve issues in Windows networked environments.
Experience configuring and managing gateways and firewalls.
Experience configuring mail and web gateways.
If you are uncertain whether you meet the necessary prerequisites to attend this course, please email us at [email protected] and we will be happy to help.
Certification
To achieve the Sophos Certified Architect certification in UTM trainees must take and pass an online assessment. The assessment tests their knowledge of both the taught and practical content. The pass mark for the assessment is 80%, and it may be taken a maximum of three times.
Agenda Module 1: Introduction o Overview o Deployment options o Installation process o Setup options o Manual configuration Module 2: System configuration
o System configuration Engineer recap o Interfaces o VLAN interfaces o Bridge interfaces o 3G/UMTS interfaces o Additional addresses o Interface hardware o IPv6 o Uplink balancing o Link aggregation o Routing protocols o Routing priority
o Quality of Service (QoS) Module 3: Authentication
o Authentication Engineer recap o Remote authentication
o RADIUS o TACACS+
o Sophos Authentication Agent
o User authentication troubleshooting Module 4: Network Protection
o Network protection Engineer recap o Traffic flow
o Firewall rules
o Restricting source by MAC address o Firewall live log
o Viewing firewall configuration on the shell o Advanced firewall settings
o Advanced Threat Protection o Server load balancing o VoIP
o Reporting
o Firewall troubleshooting Module 5: Web Protection
o Web Protection Engineer recap o Profiles
o Policies o Filter actions o HTTPS scanning
o Advanced filtering options o Customization
o Web filtering reporting o Web filter troubleshooting o FTP
o Application control
o Application control reporting o Application control troubleshooting Module 5: Email Protection
o Email Protection Engineer recap o SMTP proxy outbound relaying o SMTP proxy anti-spam
o Modify email headers
o SMTP proxy advanced settings o SMTP profiles o Data Protection o POP3 o Email encryption o S/MIME o OpenPGP o Customization o Reporting
Module 7: Endpoint Protection
o Endpoint Protection Engineer recap o UTM LiveConnect registration o Client installation
o Client LiveConnect registration
o Management Communication System (MCS) o Web control
o Integration with Enterprise Console o UTM logs
o Endpoint logs
o Web control logging and troubleshooting o Additional information
Module 8: Wireless Protection
o Wireless Protection Engineer recap o Automatic access point configuration o Access point management
o Wireless RADIUS authentication o Fast BSS Transition
o Wireless background scanning o Mesh networks
o Hotspots
o Hotspot vouchers
Module 9: Webserver Protection
o Webserver Protection Engineer recap o Overview
o Real webservers o Virtual webservers o Firewall profiles o Exceptions o Site path routing o Advanced settings o Reverse authentication
o Webserver Protection and Microsoft Products o Custom mod_security rules
o Performance tuning Module 10: RED Management
o RED Management Engineer recap o Deployment
o Automatic device deauthorization o MAC address filtering
o Balancing and failover o VLAN port configuration
Module 11: Site-to-site and Remote Access VPNs
o Site-to-site and Remote Access VPNs Engineer recap o Site-to-site VPNs
o IPsec configuration
o IPsec with RSA authentication o IPsec with PKI configuration
o IPsec with PKI authentication using cross site certification o Troubleshooting IPsec site-to-site VPNs
o Remote Access VPNs o SSL configuration o PPTP VPNs
o L2TP over IPsec VPNs
o IPsec Remote Access configuration o Sophos IPsec client authentication o User portal
Module 12: Central Management o Sophos UTM Manager o WebAdmin
o Gateway Manager
o Connecting a UTM to SUM Module 13: High availability
o High availability Engineer recap o Auto configuration
o Cluster configuration o Troubleshooting
Module 14: Sizing and outbound connections o Hardware appliance models
o Hardware appliance sizing o Sophos and virtual UTMs
o Maximum concurrent connections o Sophos UTM Manager sizing o Outbound connections
Further information
