Course Overview
This five-day, hands-on training course provides you with the knowledge, skills, and tools to achieve competency in configuring, operating, and troubleshooting VMware NSX-T™ Data Center for intrinsic security. In this course, you are introduced to all the security features in NSX-T Data Center, including Distributed Firewall and Gateway Firewall, Intrusion Detection and Prevention (IDS/IPS), NSX Application Platform, NSX Malware Prevention, VMware NSX® Intelligence™, and VMware NSX® Network Detection and Response™.
In addition, you are presented with common configuration issues and given a methodology to resolve them.
Product Alignment
- VMware NSX-T Data Center 3.2.x
Who should attend
Experienced security administrators
Certifications
This course is part of the following Certifications:
Prerequisites
You should also have the following understanding or knowledge:
- Good understanding of TCP/IP services and protocols
- Knowledge and working experience of network security, including:
- L2 through L7 firewalling
- Intrusion detection and prevention systems
- Malware prevention systems
- Knowledge of and working experience with VMware vSphere® environments and KVM-based environments
The VMware Certified Technical Associate - Network Virtualization is recommended.
Course Objectives
By the end of the course, you should be able to meet the following objectives:
- Define information-security-related concepts
- Explain the different types of firewalls and their use cases
- Describe the operation of intrusion detection and intrusion prevention systems
- Differentiate between Malware Prevention approaches
- Describe the VMware intrinsic security portfolio
- Implement Zero-Trust Security using VMware NSX® segmentation
- Configure user and role management
- Configure and troubleshoot Distributed Firewall, Identity Firewall, and time-based policies
- Configure and troubleshoot Gateway Security
- Use VMware vRealize® Log Insight™ for NSX™ and VMware vRealize® Network Insight™ to operate NSX firewalls
- Explain the security best practices related to grouping, tagging, and rule configuration
- Describe north-south and east-west service insertion
- Describe endpoint protection
- Configure and troubleshoot IDS/IPS
- Deploy NSX Application Platform
- Configure and troubleshoot NSX Malware Prevention
- Describe the capabilities of NSX Intelligence and NSX Network Detection and Response
Course Content
- Course Introduction
- Security Basics
- VMware Intrinsic Security
- Implementing Zero-Trust Security
- User and Role Management
- Distributed Firewall
- Gateway Security
- Operating Internal Firewalls
- Network Introspection
- Endpoint Protection
- Intrusion Detection and Prevention
- NSX Application Platform
- NSX Malware Prevention
- NSX Intelligence and NSX Network Detection and Response