Sophos UTM Architect (UTMA)

 

?This course provides an in-depth study of UTM, designed for technical professionals who will be planning, installing, configuring and supporting deployments in production environments.  The course will be delivered in a classroom setting, and consists of presentations and practical lab exercises to reinforce the taught content. Printed copies of the supporting documents for the course will be provided to each trainee. Due to the nature of delivery, and the varying experiences of the trainees, open discussion is encouraged during the training.

Target audience: This course is designed for technical professionals who will be planning, installing, configuring and supporting deployments in production environments. And for indivudials wishing to obtain the UTM Certified Architect certification.

Prerequisites: Prior to attending this course, trainees should:
  • Complete the Sophos Certified Engineer UTM course and should have passed the Certified Engineer exam
  • Have a strong working knowledge of network configuration and troubleshooting before attending this course. Similar to the level of knowledge required to pass the CCNA or CompTIA Network plus certification programs.
  • Have a good understanding of IT security. CompTIA Security plus and CISSP are good evidence of such knowledge.
Objectives:
  • On completion of this course, trainees will be able to:
  • Understand the components of the UTM and how to configure them.
  • Architect a solution for a customer?s environment and needs.
  • Implement proof of concept (PoC) deployments with the UTM.
  • Perform a deployment appropriate to many customer environments.
  • Configure the components of the UTM according to best practice.
  • Troubleshoot common issues on the UTM.

Course content:    
  • Module 1: Introduction
o    Overview
o    Deployment options
o    Installation process
o    Setup options
o    Manual configuration
 
  • Module 2: System configuration
o    System configuration Engineer recap
o    Interfaces
o    VLAN interfaces
o    Bridge interfaces
o    3G/UMTS interfaces
o    Additional addresses
o    Interface hardware
o    IPv6
o    Uplink balancing
o    Link aggregation
o    Routing protocols
o    Routing priority
o    Quality of Service (QoS)
 
  • Module 3: Authentication
o    Authentication Engineer recap
o    Remote authentication
o    RADIUS
o    TACACS+
o    Sophos Authentication Agent
o    User authentication troubleshooting
 
  • Module 4: Network Protection
o    Network protection Engineer recap
o    Traffic flow
o    Firewall rules
o    Restricting source by MAC address
o    Firewall live log
o    Viewing firewall configuration on the shell
o    Advanced firewall settings
o    Intrusion prevention
o    Anti-DOS/Flooding
o    Advanced Threat Protection
o    Server load balancing
o    VoIP
o    Reporting
o    Firewall troubleshooting
 
  • Module 5: Web Protection
o    Web Protection Engineer recap
o    Profiles
o    Policies
o    Filter actions
o    HTTPS scanning
o    Advanced filtering options
o    Customization
o    Web filtering reporting
o    Web filter troubleshooting
o    FTP
o    Application control
o    Application control reporting
o    Application control troubleshooting
 
  • Module 6: Email Protection
o    Email Protection Engineer recap
o    SMTP proxy outbound relaying
o    SMTP proxy anti-spam
o    Modify email headers
o    SMTP proxy advanced settings
o    SMTP profiles
o    Data Protection
o    POP3
o    Email encryption
o    S/MIME
o    OpenPGP
o    Customization
o    Reporting
 
  • Endpoint Protection Engineer recap
o    UTM LiveConnect registration
o    Client installation
o    Client LiveConnect registration
o    Management Communication System (MCS)
o    Web control
o    Integration with Enterprise Console
o    UTM logs
o    Endpoint logs
o    Web control logging and troubleshooting
o    Additional information
 
  • Module 8: Wireless Protection
o    Wireless Protection Engineer recap
o    Automatic access point configuration
o    Access point management
o    Wireless networks
o    Wireless RADIUS authentication
o    Fast BSS Transition
o    Wireless background scanning
o    Mesh networks
o    Hotspots
o    Hotspot vouchers
 
  • Module 9: Webserver Protection
o    Webserver Protection Engineer recap
o    Overview
o    Real webservers
o    Virtual webservers
o    Firewall profiles
o    Exceptions
o    Site path routing
o    Advanced settings
o    Reverse authentication
o    Webserver Protection and Microsoft Products
o    Custom mod_security rules
o    Performance tuning
 
  • Module 10: RED Management
o    RED Management Engineer recap
o    Deployment
o    Automatic device deauthorization
o    MAC address filtering
o    Balancing and failover
o    VLAN port configuration
 
  • Module 11: Site-to-site and Remote Access VPNs
o    Site-to-site and Remote Access VPNs Engineer recap
o    Site-to-site VPNs
o    IPsec configuration
o    IPsec with RSA authentication
o    IPsec with PKI configuration
o    IPsec with PKI authentication using cross site certification
o    Troubleshooting IPsec site-to-site VPNs
o    Remote Access VPNs
o    SSL configuration
o    PPTP VPNs
o    L2TP over IPsec VPNs
o    IPsec Remote Access configuration
o    Sophos IPsec client authentication
o    User portal
 
  • Module 12: Central Management
o    Sophos UTM Manager
o    WebAdmin
o    Gateway Manager
o    Connecting a UTM to SUM
 
  • Module 13: High availability
o    High availability Engineer recap
o    Auto configuration
o    Hot standby configuration
o    Cluster configuration
o    Troubleshooting
 
  • Module 14: Sizing and outbound connections
o    Hardware appliance models
o    Hardware appliance sizing
o    Sophos and virtual UTMs
o    Maximum concurrent connections
o    Sophos UTM Manager sizing
o    Outbound connections

Certification: To achieve the Sophos Certified Architect certification in UTM trainees must take and pass an online assessment. The assessment tests their knowledge of both the taught and practical content. The pass mark for the assessment is 80%, and it may be taken a maximum of three times.
 
Duration: 4 days