Fortinet NSE 4

RM13,000.00 RM13,780.00 (after 6% SST)

Course duration: 5 days

Course code: NSE4




The Fortinet NSE 4 designation recognizes your ability to install and manage the day-to-day configuration, monitoring, and operation of a FortiGate device to support specific corporate network security policies.

In this course, you will learn how to use the most common FortiGate networking and infrastructure features and most common FortiGate features including security profiles.


  • Knowledge of OSI layers
  • Knowledge of firewall concepts in an IPv4 network
  • Knowledge of the fundamentals of FortiGate, as presented in the FortiGate Security course
  • Knowledge of network protocols
  • Basic understanding of firewall concepts


Networking and security professionals involved in the design, implementation, and administration of network infrastructure using FortiGate devices should attend this course


Course Outline


1. Deployment and System Configuration
  • Perform initial configuration
  • Implement the Fortinet Security Fabric
  • Configure log settings and diagnose problems using the
  • Configure VDOMs to split a FortiGate into multiple virtual devices
  • Configure different operation modes for an FGCP HA cluster
  • Diagnose resource and connectivity problems
2. Firewall and authentication
  • Configure firewall policies
  • Configure firewall policy NAT and central NAT
  • Configure different methods of firewall authentication
  • Explain how to deploy and configure FSSO
3. Content inspection
  • Inspect encrypted traffic using certificates
  • Identify FortiGate inspection modes and configure web filtering
  • Configure application control to monitor and control network applications
  • Configure antivirus scanning modes to neutralize malware threats
  • Configure IPS to protect the network from threats and vulnerabilities
4. Routing
  • Configure and route packets using static and policy-based routes
5. VPN
  • Configure and implement different SSL VPN modes to provide secure access to your private network
  • Implement a meshed or partially redundant IPsec VPN
  • Configure ZTNA to provide role-based application access