Firewall 9.0: Optimizing Firewall Threat Prevention (EDU-214)

Live Instructor-led Training.
The EDU-214 is a 8 x half-day course.

With this course you will learn how to identify threats using the Next-Generation FireWall as well how to leverage its full potential for Threat Prevention. It focuses first on the Cyber-Attack Lifecycle and what types of threats attackers are using to infiltrate a network. This knowledge will then use to go in depth into all the threat prevention capabilities like for instance Denial of Service Protection, blocking threats from known-bad sources using dynamic intelligence feeds, custom Application and Threat signatures, blocking threats in encrypted traffic as well as preventing credential theft and abuse. As a SOC Security Analyst or Threat Researcher you might not be the one who configures these features but you need to know in detail the threat prevention capabilities of the FireWall as well as how to audit its configuration. At the end of the training, our instructor will go beyond the standard course content and show you a real life configuration example on how to combine all of the different threat prevention techniques as well as the investigation of threats by correlating indicators of compromise from logs and reports.


Best Practices & Real Life Experience 

All of our instructors are security consultants that design, implement, migrate, manage and support Palo Alto Networks solutions all day, every day. It's this experience which they bring into the classroom to explain not only the theory but how to use the FireWall in real-life. Customers tell us that this is most valuable for them and what differentiates our training from most other training partners.

Video Recordings 

It's impossible to remember everything in live training, which is why we are recording it and share the video with you. If you like to start studying right away, then we can even share the videos of a previous course. 


Dedicated Lab Access

For 3 month you will have access to your own dedicated lab which you can use not only during the course, but for full three month. Your virtual lab consists of a Windows Client, Palo Alto Networks FireWall and DMZ Linux Server with a lab guide for practical exercises. As a bonus, which is not officially part of the course, your lab features the Expedition Migration Tool and Minemeld.



Security Engineers, Security Administrators, Security Operations Specialists, Security Analysts, Network Engineers, and Support Staff


Kursets formål

  • Describe the cyber-attack lifecycle and recognize common forms of attack

  • Describe PAN-OS® threat prevention capabilities

  • Use firewall logs and reports to make better configuration decisions

  • Configure the firewall to detect, block, and record threats


  • Course level: Intermediate
  • Course duration: 4 days
  • Course format: Combines lecture and hands-on labs
  • Platform support: Palo Alto Networks® nextgeneration
  • Language: Undervisningen og dokumentasjon er på engelsk.



Module 1: The Cyber-Attack Lifecycle

Module 2: Blocking Packet- and Protocol-Based Attacks

Module 3: Blocking Threats from Known-Bad Sources

Module 4: Blocking Threats Using App-ID™

Module 5: Blocking Threats Using Custom Signatures

Module 6: Creating Custom Threat Signatures

Module 7: Blocking Threats in Encrypted Traffic

Module 8: Blocking Threats in Allowed Traffic

Module 9: Authenticating Firewall User Accounts

Module 10: Blocking Threats from Phishing and Stolen Credentials

Module 11: Viewing Threat and Traffic Information



Participants must complete the Firewall Essentials: Configuration and Management course, or have equivalent experience. Students must have a basic familiarity with networking concepts including routing, switching, and IP addressing.




Praktisk informasjon

17.02 - 24.02
26.05 - 02.06
09:00 - 12:30
Online trening

Flere kurs