Module 2 - NSE1 - NGFW
Module 2 - NSE1 - NGFW
Module 2 - NSE1 - NGFW
(NGFW)
Study Guide
for NSE 1:
Next
Generation
Firewall
(NGFW)
February 1
2016
Fortinet
Network
Security
Solutions
ii
iii
iv
Technology Trends
Trends in information technology development and employment over the last 15 years have led to a
need to rethink the methodology behind modern network security. To further exacerbate this challenge,
these trends occurred simultaneously across major industry, all levels of business, and personal
consumer environments.
Consumerization of IT has resulted in IT-enabled devicessuch
as smartphones, digital music and video players, recorders,
cameras, and othersbecoming so commonplace in the market
that their lower pricing resulted in an explosion of individual
consumers acquiring technology-enabled devices for personal
use. This extends beyond the obvious devices listed above. ITenabled devices now include such appliances as
refrigerator/freezers, home security systems, personal home networks that include WiFi-enabled
televisions, stereos, and even the automated smart house. In other words, what we have to be
mindful of today is the Internet of Things (IoT) when we acquire devices and appliances.
Because consumers have embraced technology devices for both communication and information
sharing, Social Media enterprise has been embraced at the business level as a way to reach consumer
markets and supplement Web and traditional marketing and communication pathways. With so many
applicationsespecially social mediabeing cloud based, the challenge of network security expands
beneath the surface of traffic and into substance.
NGFW
Gatekeeper
Gatekeeper
Complex Architecture
Integrated Architecture
Complex Control
Simplified Control
10
When integrated with NGFW, capabilities of ATP enhance security by providing additional protections
against evolving threats, including:
Dual-level sandboxing, allowing code activity examination in simulated and virtual environments
to detect previously unidentified threats.
Detailed reporting on system, process, file, and network behavior, including risk assessments.
Secure Web Gateway through adding web filtering, botnet, and call back detection, preventing
communications with malicious sites and IPs.
Option to share identified threat information and receive updated in-line protections.
Option to integrate with other systems to simplify network security deployment.
11
12
13
14
15
16
17
18
Protocol Awareness
Flow-based
Faster
Comparing traffic to database of
known bad situations
TCP flow not broken. Only packet
headers changed if necessary.
Not required
Features supported
Proxy-based
Slower
Conducting specific analysis on
relevant information
TCP convention broken, TCP sequence
numbers changed.
Understands protocol being analyzed
Yes, when buffering, based on available
NGFW memory
Antivirus, DLP, Web Content Filtering,
AntiSpam
Because Flow Mode does not unpack compressed files or email/FTP attachments, deploying antimalware in Flow Mode may result in decreased detection rate.
19
20
AD
Active Directory
ADC
ADN
GUI
Infrastructure as a Service
ICMP
ICSA
AM
Antimalware
API
APT
ID
Identification
ASIC
IDC
ASP
IDS
ATP
IM
Instant Messaging
AV
Antivirus
IMAP
AV/AM Antivirus/Antimalware
BYOD Bring Your Own Device
CPU
DDoS
DLP
DNS
DoS
Denial of Service
DPI
DSL
FTP
FW
Firewall
Gb
Gigabyte
GbE
Gigabit Ethernet
Gbps
GSLB
Internet of Things
IP
Internet Protocol
IPS
IPSec
IPTV
IT
Information Technology
J2EE
LAN
LDAP
LLB
LOIC
MSP
21
NSS Labs
OSI
SPoF
OTS
SQL
PaaS
Platform as a Service
SSL
PC
Personal Computer
SWG
SYN
POE
TCP
POP3
Quality of Service
TLS
RDP
UDP
SaaS
Software as a Service
URL
SDN
Software-Defined Network
USB
SEG
UTM
SFP
SFTP
VM
Virtual Machine
SIEM
VoIP
SLA
VPN
SM
Security Management
WAF
SMB
SMS
22
XSS
Cross-site Scripting
23
24
25
2.
3.
4.
Tam, K., et al., UTM Security with Fortinet: Mastering FortiOS. 2013, Waltham, MA: Elsevier.
5.
Tittel, E., Unified Threat Management for Dummies. 2012, Hoboken, NJ: John Wiley & Sons.
6.
Miller, L., Next-Generation Firewalls for Dummies. 2011, Wiley Publishing, Inc.: Indianapolis, IN.
7.
26