As the primary developer, sponsor and official host of the pfSense® project, we offer the only authorized training on pfSense software. When you need to maintain or improve the security skills of your staff or offer highly specialized support to improve your customer satisfaction, Netgate is your best choice.
pfSense Supplementals I
The pfSense Supplementals I is a one-day training course designed to help you expand your firewall's capabilities using the most popular pfSense packages. The class is comprised of four segments, each pertaining to one of the most sought-after advanced capabilities - Snort IDS/IPS, HAProxy for load balancing, Radius+mOTP for OpenVPN, and domain blocking with pfBlockerNG.
Each session combines classroom instruction and live configuration of each of these features. Your instructor will show you use cases as well as step-by-step configurations. When it's over, you will walk away with a much deeper knowledge and understanding of how to use these popular packages in your own environments.
Instructors with extensive real-world networking and security experience will lead you in this class. All training materials are provided. Attendees should have a basic understanding of pfSense and networking.
Day One - First Half
Snort
- Installing and configuring Snort
- How Snort works
- Understanding Snort rules
- Tuning Snort to remove false-positives
- Demonstration of complete configuration
HAProxy
- Use cases for HAProxy
- How it works and key concepts
- How to do SSL offloading
- How to do URL Switching
- Proper health checking and server pool configuration
- Demonstration of complete configuration
Day One - Second Half
Radius/mOTP
- Use cases for 2FA and mOTP
- Installing and configuring Radius service
- Using Radius with mOTP tokens
- Configuring OpenVPN to use Radius/mOTP for authentication
- Demonstration of complete configuration
pfBlockerNG with DNSBL
- Use cases for country blocking
- Use cases for DNS blocking
- How the service works
- Configuring pfBlockerNG
- Configuring DNSBL
- Adding custom feeds and domains for blocking
- Demonstration of complete configuration
Duration
One full day
Language
Course given in English. Fluency in written and spoken English is required.
System Requirements
Computer: PC or Mac
OS: Windows, OS X, Linux*
Browser: Recently updated Google Chrome, Firefox, Safari
Installed Software: PDF Viewer, OpenVPN Client (PC or Mac), VNC client**, an SSH client.
Hardware: Headset with microphone
* Some linux systems have problems with audio. Because this is an interactive class, Linux users must ensure that their audio is fully functional
** OS X users may use the built-in VNC client in Finder (Command-K and vnc://user@IP). Other free PC options are UltraVNC, RealVNC, etc.