-
Im englischsprachigen Online-Format (Termine sind in dem Fall mit englischer Flagge gekennzeichnet) dauert der Kurs fünf Tage von jeweils 9.00-17.00 Uhr (UK Time).
-
The Palo Alto Networks Prisma SD-WAN Design and Operation (replaces EDU-238) course is an instructor-led training that describes the next-generation Prisma SD-WAN solution, the capability and value it provides over legacy WAN and SD-WAN implementations, and how to configure, operate, and troubleshoot the solution.
-
Kursinhalt
-
- Course Overview
- Solution Overview
- Branch Design
- Routing
- Policy Part 1: Application Path and QoS Policy
- Policy Part 1: NAT, ZBFW and Security
- Event Policy Managament Services
- DNS and DHCP Services
- Operations and Troubleshooting
- Cloud Blades
- Integrating Prisma SD-WAN and Prisma Access for SASE Implementations
- DevOps
Sie haben Zugang zu Ihrem eigenen Labor für praktische Übungen. Das Labor besteht aus einer dedizierten Client-Workstation, einem Netzwerk, das eine Zweigstelle und einen DC-Standort simuliert, sowie Zugang zu einer Prisma SD-WAN-Cloud-Instanz, die von STRATA Cloud Manager verwaltet wird. Bitte beachten Sie, dass das Labor während der Schulungswoche rund um die Uhr verfügbar ist, sodass Sie es auch nach dem Unterricht für zusätzliche Übungen nutzen können.
Die englischsprachigen Original-Unterlagen von Palo Alto erhalten Sie als E-Book.
-
Zielgruppe
-
This course is intended for people who must configure, maintain, and use wide area networks, from data centers, to branches, to the cloud.
-
Voraussetzungen
-
No previous Palo Alto Networks experience is required to take this Prisma SD-WAN Palo Alto course.
Participants should have a basic knowledge (1+ years) of routing and switching, including Border Gateway Protocol (BGP), experience deploying and operating WANs, and use of network monitoring tools such as LiveAction, Netscout, and Splunk; experience with DNS, DHCP, and IP management tools; familiarity with scripting and APIs as they relate to network automation.
-
Kursziel
-
Successful completion of this five-day, instructor-led course will help enhance your understanding of how to design, implement, and effectively operate a Prisma SD-WAN solution. You will get hands-on experience configuring Prisma SD-WAN with a branch and datacenter, configure policies, and use Prisma SD-WAN services.
Network Engineers, Network Administrators, Network Security Engineers, Network Architects and NOC Administrators.
The Prisma SD-WAN Design and Operation (replaces EDU-238) course is not linked to any Palo Alto Networks certification.
-
Bitte beachten Sie: Ende Oktober 2024 kündigte Palo Alto Networks die Umstrukturierung des bestehenden Zertifizierungs-Programms an. Dies hat u. a. Auswirkungen auf die bisherigen Zertifizierungen zum PCNSA und PCNSE. Das PCNSA Exam wurde zum 31.01.2025 abgekündigt. Details dazu finden Sie hier.
| Course Overview |
| Welcome and introductions |
| Intended audience and course focus |
| Course objectives and agenda |
| Learning Center tasks |
| Solution Overview |
| Industry Context |
| The Prisma SD-WAN Approach |
| Solution Overview |
| IPv6 Support |
| Strata Cloud Manager Overview |
| Multitenant Solution |
| Application Visibility |
| Site Visibility |
| Predictive Analytics |
| IoT Device Visibility |
| Branch Design |
| Site Architecture |
| Sites and Devices |
| ION Device Initiated Connections to Controller |
| Interface Types |
| Interface Uses |
| Interfaces: Virtual, IPv6, Cellular |
| Branch Labels |
| Branch Insertion Models |
| Branch Forwarding and Routing |
| Branch Availability Considerations |
| Branch Switching Considerations |
| Routing |
| Routing Implementation and Terminology |
| Branch Overview |
| Data Center HA Overview |
| Data Center BGP Routing Overview |
| BGP Global Configuration |
| Branch Configuration/Classic Peer |
| Data Center BGP Basic Peer Setup/Configuration |
| Verification and Troubleshooting |
| BGP Advanced Configuration |
| Routing Design Considerations |
| Policy Part 1: Application Path and QoS Policy |
| High-Level Policy Overview |
| Stacked Policies |
| Simple Stacked Policy |
| Advanced Stacked Policy |
| Data Center & Service Groups |
| Use Cases |
| Dynamic Path Selection |
| Lab: Initial Setup |
| Claim devices |
| Create sites and assign devices |
| Configure branch and data-center sites |
| Set up branch high availability |
| Create a custom path policy |
| Lab: Custom Applications and Adjusting Policies |
| Define custom applications |
| Create application overrides |
| Configure path and QoS policies |
| Policy Part 1: NAT, ZBFW and Security |
| Policy Review |
| NAT Policy Overview |
| NAT Policy Configuration |
| NAT Policy Use Cases |
| Advanced NAT Information |
| NAT Module Review |
| Security Policy |
| Lab: Stacked Security Policies |
| Create stacked security policies on the branch for corporate and guest network traffic |
| Bind security zones to interfaces |
| Create a guest LAN interface |
| Update a path policy to allow guest internet access |
| Lab: Introduction to NAT |
| Create an inbound NAT policy on TA-INET-1 |
| Bind the NAT policy to the branch |
| Create a path policy for traffic to/from a security monitoring server to exit TA-INET-1 |
| Event Policy Managament Services |
| AI/ML Assisted Event Management |
| Event Policies Overview |
| Event Policy Constructs |
| Event Policy Configuration |
| DNS and DHCP Services |
| DNS Services Overview |
| DNS Service Roles |
| DNS Service Profiles |
| DNS Service Role/Service Profile Configuration Example |
| DNS Site-Level Bindings |
| DHCP Server Basics |
| DHCP Lease Reservations (Static Mappings) |
| DHCP Custom Options |
| Lab: DHCP and DNS |
| Configure DHCP services |
| Set up DNS functionality |
| Operations and Troubleshooting |
| Device Toolkit Overview and User Access |
| Device Toolkit Usage |
| Incidents and Alerts |
| SNMP |
| Syslog |
| IPFIX |
| Prisma SD-WAN DVR and Reports |
| Layer 3 Deployments |
| VPN Issues |
| Data Center Routing |
| Routing Troubleshooting |
| Data Plane Issues |
| Monitoring HA State |
| HA Failure Scenarios |
| Application Unreachable Troubleshooting |
| Lab: Configuring IPv6 |
| Configure IPv6 addresses on all WAN branch and DC device interfaces |
| Generate and observe IPv6 traffic between a branch and a DC device |
| Cloud Blades |
| CloudBlade Overview |
| ServiceNow |
| Email Notifications for Alarm-Alerts |
| AWS TGW Integration |
| GCP Integration |
| Azure Virtual WAN with vION Integration |
| Zscaler Enforcement Node (ZEN) Integration |
| Integrating Prisma SD-WAN and Prisma Access for SASE Implementations |
| CloudBlade Overview |
| Prisma SD-WAN + Prisma Access |
| Prisma Access for Networks (Panorama Managed) |
| Prisma Access for Networks (Cloud Managed) |
| Site and Device Configuration |
| Policy Configuration for Prisma Access |
| Validation – Remote Networks / Standard VPNs |
| Validation – BGP / Routing |
| Validation – Traffic Flows |
| Autonomous Digital Experience Management |
| Lab: Onboarding a Branch Site with Cloud Managed Prisma Access |
| Onboard the branch site with Prisma Access |
| Configure a path policy to send traffic to Prisma Access |
| Observe denied internet traffic by a Prisma Access security policy |
| Configure a Prisma Access security policy to allow internet traffic for SaaS applications |
| Verify allowed internet traffic |
| DevOps |
| Why Is DevOps-Style Automation Important? |
| DevOps – Demo |
| DevOps/SDK – Documentation and Support |
| Lab: Getting Started with the Python SDK |
| Set up a development environment and install the Prisma SD-WAN (CloudGenix) Python SDK |
| Connect to the Prisma SD-WAN API endpoint and authenticate to the controller |
| Execute create, read, update, and delete (CRUD) operations using Prisma SD-WAN APIs |
| Retrieve inventory information |
-
Classroom Training
- Bevorzugen Sie die klassische Trainingsmethode? Ein Kurs in einem unserer Training Center, mit einem kompetenten Trainer und dem direkten Austausch zwischen allen Teilnehmern? Dann buchen Sie einen der Classroom Training Termine!
-
Online Training
- Möchten Sie einen Kurs online besuchen? Zu diesem Kursthema bieten wir Ihnen Online-Kurstermine an. Als Teilnehmer benötigen Sie dazu einen PC mit Internet-Anschluss (mindestens 1 Mbit/s), ein Headset, falls Sie per VoIP arbeiten möchten und optional eine Kamera. Weitere Informationen und technische Empfehlungen finden Sie hier.
-
Inhouse-Schulung
-
Benötigen Sie einen maßgeschneiderten Kurs für Ihr Team? Neben unserem Standard-Angebot bieten wir Ihnen an, Kurse speziell nach Ihren Anforderungen zu gestalten. Gerne beraten wir Sie hierzu und erstellen Ihnen ein individuelles Angebot.
Die gesamte Beschreibung dieses Kurses mit Terminen und Preisen zum Download als PDF.-
Im englischsprachigen Online-Format (Termine sind in dem Fall mit englischer Flagge gekennzeichnet) dauert der Kurs fünf Tage von jeweils 9.00-17.00 Uhr (UK Time).
-
The Palo Alto Networks Prisma SD-WAN Design and Operation (replaces EDU-238) course is an instructor-led training that describes the next-generation Prisma SD-WAN solution, the capability and value it provides over legacy WAN and SD-WAN implementations, and how to configure, operate, and troubleshoot the solution.
-
Kursinhalt
-
- Course Overview
- Solution Overview
- Branch Design
- Routing
- Policy Part 1: Application Path and QoS Policy
- Policy Part 1: NAT, ZBFW and Security
- Event Policy Managament Services
- DNS and DHCP Services
- Operations and Troubleshooting
- Cloud Blades
- Integrating Prisma SD-WAN and Prisma Access for SASE Implementations
- DevOps
Sie haben Zugang zu Ihrem eigenen Labor für praktische Übungen. Das Labor besteht aus einer dedizierten Client-Workstation, einem Netzwerk, das eine Zweigstelle und einen DC-Standort simuliert, sowie Zugang zu einer Prisma SD-WAN-Cloud-Instanz, die von STRATA Cloud Manager verwaltet wird. Bitte beachten Sie, dass das Labor während der Schulungswoche rund um die Uhr verfügbar ist, sodass Sie es auch nach dem Unterricht für zusätzliche Übungen nutzen können.
Die englischsprachigen Original-Unterlagen von Palo Alto erhalten Sie als E-Book.
-
Zielgruppe
-
This course is intended for people who must configure, maintain, and use wide area networks, from data centers, to branches, to the cloud.
-
Voraussetzungen
-
No previous Palo Alto Networks experience is required to take this Prisma SD-WAN Palo Alto course.
Participants should have a basic knowledge (1+ years) of routing and switching, including Border Gateway Protocol (BGP), experience deploying and operating WANs, and use of network monitoring tools such as LiveAction, Netscout, and Splunk; experience with DNS, DHCP, and IP management tools; familiarity with scripting and APIs as they relate to network automation.
-
Kursziel
-
Successful completion of this five-day, instructor-led course will help enhance your understanding of how to design, implement, and effectively operate a Prisma SD-WAN solution. You will get hands-on experience configuring Prisma SD-WAN with a branch and datacenter, configure policies, and use Prisma SD-WAN services.
Network Engineers, Network Administrators, Network Security Engineers, Network Architects and NOC Administrators.
The Prisma SD-WAN Design and Operation (replaces EDU-238) course is not linked to any Palo Alto Networks certification.
-
Bitte beachten Sie: Ende Oktober 2024 kündigte Palo Alto Networks die Umstrukturierung des bestehenden Zertifizierungs-Programms an. Dies hat u. a. Auswirkungen auf die bisherigen Zertifizierungen zum PCNSA und PCNSE. Das PCNSA Exam wurde zum 31.01.2025 abgekündigt. Details dazu finden Sie hier.
| Course Overview |
| Welcome and introductions |
| Intended audience and course focus |
| Course objectives and agenda |
| Learning Center tasks |
| Solution Overview |
| Industry Context |
| The Prisma SD-WAN Approach |
| Solution Overview |
| IPv6 Support |
| Strata Cloud Manager Overview |
| Multitenant Solution |
| Application Visibility |
| Site Visibility |
| Predictive Analytics |
| IoT Device Visibility |
| Branch Design |
| Site Architecture |
| Sites and Devices |
| ION Device Initiated Connections to Controller |
| Interface Types |
| Interface Uses |
| Interfaces: Virtual, IPv6, Cellular |
| Branch Labels |
| Branch Insertion Models |
| Branch Forwarding and Routing |
| Branch Availability Considerations |
| Branch Switching Considerations |
| Routing |
| Routing Implementation and Terminology |
| Branch Overview |
| Data Center HA Overview |
| Data Center BGP Routing Overview |
| BGP Global Configuration |
| Branch Configuration/Classic Peer |
| Data Center BGP Basic Peer Setup/Configuration |
| Verification and Troubleshooting |
| BGP Advanced Configuration |
| Routing Design Considerations |
| Policy Part 1: Application Path and QoS Policy |
| High-Level Policy Overview |
| Stacked Policies |
| Simple Stacked Policy |
| Advanced Stacked Policy |
| Data Center & Service Groups |
| Use Cases |
| Dynamic Path Selection |
| Lab: Initial Setup |
| Claim devices |
| Create sites and assign devices |
| Configure branch and data-center sites |
| Set up branch high availability |
| Create a custom path policy |
| Lab: Custom Applications and Adjusting Policies |
| Define custom applications |
| Create application overrides |
| Configure path and QoS policies |
| Policy Part 1: NAT, ZBFW and Security |
| Policy Review |
| NAT Policy Overview |
| NAT Policy Configuration |
| NAT Policy Use Cases |
| Advanced NAT Information |
| NAT Module Review |
| Security Policy |
| Lab: Stacked Security Policies |
| Create stacked security policies on the branch for corporate and guest network traffic |
| Bind security zones to interfaces |
| Create a guest LAN interface |
| Update a path policy to allow guest internet access |
| Lab: Introduction to NAT |
| Create an inbound NAT policy on TA-INET-1 |
| Bind the NAT policy to the branch |
| Create a path policy for traffic to/from a security monitoring server to exit TA-INET-1 |
| Event Policy Managament Services |
| AI/ML Assisted Event Management |
| Event Policies Overview |
| Event Policy Constructs |
| Event Policy Configuration |
| DNS and DHCP Services |
| DNS Services Overview |
| DNS Service Roles |
| DNS Service Profiles |
| DNS Service Role/Service Profile Configuration Example |
| DNS Site-Level Bindings |
| DHCP Server Basics |
| DHCP Lease Reservations (Static Mappings) |
| DHCP Custom Options |
| Lab: DHCP and DNS |
| Configure DHCP services |
| Set up DNS functionality |
| Operations and Troubleshooting |
| Device Toolkit Overview and User Access |
| Device Toolkit Usage |
| Incidents and Alerts |
| SNMP |
| Syslog |
| IPFIX |
| Prisma SD-WAN DVR and Reports |
| Layer 3 Deployments |
| VPN Issues |
| Data Center Routing |
| Routing Troubleshooting |
| Data Plane Issues |
| Monitoring HA State |
| HA Failure Scenarios |
| Application Unreachable Troubleshooting |
| Lab: Configuring IPv6 |
| Configure IPv6 addresses on all WAN branch and DC device interfaces |
| Generate and observe IPv6 traffic between a branch and a DC device |
| Cloud Blades |
| CloudBlade Overview |
| ServiceNow |
| Email Notifications for Alarm-Alerts |
| AWS TGW Integration |
| GCP Integration |
| Azure Virtual WAN with vION Integration |
| Zscaler Enforcement Node (ZEN) Integration |
| Integrating Prisma SD-WAN and Prisma Access for SASE Implementations |
| CloudBlade Overview |
| Prisma SD-WAN + Prisma Access |
| Prisma Access for Networks (Panorama Managed) |
| Prisma Access for Networks (Cloud Managed) |
| Site and Device Configuration |
| Policy Configuration for Prisma Access |
| Validation – Remote Networks / Standard VPNs |
| Validation – BGP / Routing |
| Validation – Traffic Flows |
| Autonomous Digital Experience Management |
| Lab: Onboarding a Branch Site with Cloud Managed Prisma Access |
| Onboard the branch site with Prisma Access |
| Configure a path policy to send traffic to Prisma Access |
| Observe denied internet traffic by a Prisma Access security policy |
| Configure a Prisma Access security policy to allow internet traffic for SaaS applications |
| Verify allowed internet traffic |
| DevOps |
| Why Is DevOps-Style Automation Important? |
| DevOps – Demo |
| DevOps/SDK – Documentation and Support |
| Lab: Getting Started with the Python SDK |
| Set up a development environment and install the Prisma SD-WAN (CloudGenix) Python SDK |
| Connect to the Prisma SD-WAN API endpoint and authenticate to the controller |
| Execute create, read, update, and delete (CRUD) operations using Prisma SD-WAN APIs |
| Retrieve inventory information |
-
Classroom Training
- Bevorzugen Sie die klassische Trainingsmethode? Ein Kurs in einem unserer Training Center, mit einem kompetenten Trainer und dem direkten Austausch zwischen allen Teilnehmern? Dann buchen Sie einen der Classroom Training Termine!
-
Online Training
- Möchten Sie einen Kurs online besuchen? Zu diesem Kursthema bieten wir Ihnen Online-Kurstermine an. Als Teilnehmer benötigen Sie dazu einen PC mit Internet-Anschluss (mindestens 1 Mbit/s), ein Headset, falls Sie per VoIP arbeiten möchten und optional eine Kamera. Weitere Informationen und technische Empfehlungen finden Sie hier.
-
Inhouse-Schulung
-
Benötigen Sie einen maßgeschneiderten Kurs für Ihr Team? Neben unserem Standard-Angebot bieten wir Ihnen an, Kurse speziell nach Ihren Anforderungen zu gestalten. Gerne beraten wir Sie hierzu und erstellen Ihnen ein individuelles Angebot.
Die gesamte Beschreibung dieses Kurses mit Terminen und Preisen zum Download als PDF.
Garantietermin
Online Training
Trainersprache Englisch