Sophos Certified Engineer – Course overview

UTM

This course is designed for technical professionals who will be demonstrating UTM and provides an
overview of the product, including an introduction to the major capabilities and core configuration
concepts.
The course is available either online via the Partner Portal, or as an instructor-led classroom course.
Please contact your CAM or CAE to find out more about the availability of classroom courses in your
region.
It consists of presentations and practical lab exercises to reinforce the taught content, and electronic
copies of the supporting documents for the course will be provided to each trainee through the online
portal.
The course is expected to take 1.5 days to complete, of which roughly 8 hours will be spent on the
practical exercises.

Objectives
On completion of this course, trainees will be able to:
 Describe the main technical capabilities of the UTM and their benefits
 Demonstrate the use of the most commonly used features
 Know how to size the solution appropriately
 Deploy and manage the UTM in a simple non-production environment
 Locate and use additional online resources

Prerequisites
Prior to attending this course, trainees should have:
 Technical networking knowledge such as CompTIA N+, CCNA or equivalent
 Knowledge of general Windows networking
 Experience in installing and configuring network gateways and firewalls
If you are uncertain whether you meet the necessary prerequisites to take this course, please email us
at globaltraining@sophos.com and we will be happy to help.

Certification
To complete the course, trainees must take and pass an online assessment. The assessment tests their
knowledge of both the presented and practical content. The pass mark for the assessment is 80%, and
trainees should note that to become a Sophos Certified Engineer, they must complete and pass two
product courses.

Agenda
 Module 301: Overview and installation
o Solution overview
o Devices and software
o UTM modules
o Management
o Auditing
o Deployment options
o Software installation
o Basic system setup
o Initial setup wizard
o Dashboard
 Module 302: System configuration
o System settings
o WebAdmin settings
o Licensing
o Up2Date
o Backup/Restore
o User Portal
o Notifications
o Definitions
o Interfaces
o Static routing
o policy routing
o Link Aggregation
o Uplink balancing
o Multipath routes
o High availability
 Module 303: Network Services
o DNS server
o Dynamic DNS
o DHCP server
o DHCP static assignment
o DHCP relay
o NTP server configuration
 Module 304: Network Protection
o Overview
o Firewall configuration
o Country blocking
o ICMP
o NAT - Masquerading
o DNAT, SNAT and NoNAT
o 1:1 NAT
o Intrusion prevention
o Denial of Service (DoS) and portscan protection
o Advanced Threat Protection (ATP)
 Module 305: Authentication
 o Overview
o Local users and groups
o Directory services
o LDAP and Active Directory object notation
o Single sign-on (SSO) for web filtering
o One-time passwords
 Module 306: Web Protection
o Overview
o Profile configuration
o Web filtering policies
o Time quotas
o Local site list
o Website tagging
o Policy tagging
o Policy Helpdesk
o Active Directory SSO in transparent mode
o Application Control
o Application Control configuration
 Module 307: Email Protection
o Overview
o Anti-virus
o Anti-spam
o Email encryption
o SMTP proxy
o Routing
o Relaying
o Anti-virus configuration
o Anti-spam configuration
o Exceptions
o Data Protection
o Secure PDF Exchange (SPX)
o SPX secure reply portal
o SPX configuration
o SPX encryption precedence
o Mail Manager
o Quarantine Report
o User Portal
 Module 308: Endpoint Protection
o Overview
o Client installation
o Client software
o Endpoint management
o Configuration
o Web Protection in Endpoint
 Module 309: Wireless Protection
o Overview
o Deployment
o Configuration wizard
o Wireless network configuration
o Configuration for separate zones
 o Access points
o Built-in wireless
o Access point channel selection
o Status and clients
o Hotspots
o Wireless mesh networks
o Sophos wireless security advantages
 Module 310: RED Management
o Branch office security
o Sophos RED
o Deployment
o Operating modes
o RED models
o Advantages of Sophos branch office security
 Module 311: Site-to-site and Remote Access VPNs
o Site-to-site VPN overview
o SSL Site-to-site VPN
o IPsec Site-to-site VPN
o Remote Access overview
o SSL Remote Access VPN
o HTML5 VPN Portal
o IPsec VPN client
o Cisco VPN clients
 Module 312: Webserver protection
o Overview
o Anti-virus
o Security patterns
o Cookie signing
o URL hardening
o Form hardening
o Reverse authentication
o Webserver Protection and Microsoft products
 Module 313: Central management and reporting
o Sophos UTM Manager
o Deployment options
o Sophos UTM Manager benefits
o Remote Management and Monitoring (RMM)
o Logging
o Sophos iView
o Reporting
o Anonymization
o Executive report
o Executive report configuration
o Log search
 Module 314: Sophos Mobile Control
o Overview
o SMC sever connection
o Push configuration
o Network access control
o Device compliance
 o Logging
 Module 315: Sizing and support
o Hardware appliance sizing
o Software and virtual UTMs
o Maximum concurrent connections
o Sophos UTM Manager sizing
o Support
o Support access
o Online resources
o MyUTM
o Product trials
o Essential firewall and Home editions

Further information
If you require any further information on this course, please contact us at globaltraining@sophos.com.