FortiGate Infrastructure Training – (FortiGate II)

Course Duration

2 Days

Audience

Employees of federal, state and local governments; and businesses working with the government.

Prerequisites

Completion of FortiGate Security Training (FortiGate I) or equivalent experience administering a FortiGate device is required.

Course Description

In this two-day course, students build on their foundational FortiGate knowledge to master advanced networking and security features. Topics include advanced routing, SD-WAN, transparent mode inspection, virtual domains (VDOMs), IPsec VPN configuration and troubleshooting, Fortinet Single Sign-On (FSSO) integration with Active Directory, high availability clustering, and proxy deployment. The course combines lecture with hands-on lab exercises to reinforce real-world skills.

Learning Objectives

• Analyze a FortiGate's route table.
• Route packets using policy-based and static routes for multi-path and load balanced deployments.
• Configure SD-WAN to load balance traffic between multiple WAN links effectively.
• Inspect traffic transparently, forwarding as a Layer 2 device.
• Divide FortiGate into two or more virtual devices, each operating as an independent FortiGate, by configuring virtual domains (VDOMs).
• Establish an IPsec VPN tunnel between two FortiGate appliances.
• Compare policy-based to route-based IPsec VPN.
• Implement a meshed or partially redundant VPN.
• Diagnose failed IKE exchanges.
• Offer Fortinet Single Sign On (FSSO) access to network services, integrated with Microsoft Active Directory.
• Deploy FortiGate devices as an HA cluster for fault tolerance and high performance.
• Deploy implicit and explicit proxy with firewall policies, authentication, and caching.
• Diagnose and correct common problems.