Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Fortinet NSE 4-FortiOS 7.6 Administrator Training Part 1/2

Name: Fortinet NSE 4-FortiOS 7.6 Administrator Training Part 1/2
Rating: 4.7 (62 reviews)

Complete FortiOS 7.6 Administrator Training for the Fortinet NSE 4 Certification with Workbook

Created byAhmad Ali

Last updated 11/2025

English

What you'll learn

Configure FortiGate basic networking from factory default settings
Configure and control administrator access to FortiGate
Use the GUI and CLI for administration
Control network access to configured networks using firewall policies
Apply port forwarding, source NAT, and destination NAT
Analyze a FortiGate route table
Route packets using policy-based and static routes for multi-path and load-balanced
Authenticate users using firewall policies
Monitor firewall users from the FortiGate GUI
Fortinet Single Sign-On (FSSO) access to network services, integrated with AD
Understand encryption functions and certificates
Inspect SSL/TLS-secured traffic to prevent encryption used to bypass security policies
Configure security profiles including viruses, torrents, and inappropriate websites
Apply application control techniques to monitor and control network applications
SSL VPN for secure access to your private network
Establish an IPsec VPN tunnel between two FortiGate devices
Configure static routing
Configure SD-WAN to load balance traffic between multiple WAN links effectively
Deploy FortiGate devices as an HA cluster for fault tolerance and high performance
Diagnose and correct common problems

Course content

8 sections • 84 lectures • 11h 31m total length

Before Starting this Course3:23
Plan your lab for Fortinet NSE 4-FortiOS 7.6 administrator training (part 1 of 2) by downloading resources, topology, workbook, and images, and review common setup and licensing issues.
Welcome to FortiOS 7.6 Administrator3:36
NSE 4-FortiOS 7.6 Administrator Exam Overview3:37
NSE 4-FortiOS 7.6 administrator exam overview highlights a 90-minute, 50-question, pass/fail format in English for version 7.6, and its role as a core exam across four tracks.

Installing EVE-NG on VMware Workstation7:43
Install the latest eve ng community edition on VMware Workstation Pro by downloading the ISO and configuring a Linux VM with 16 GB RAM and 4 CPUs.
Adding Cisco IOL Switches to EVE-NG4:15
Adding FortiGate Lab Images to EVE-NG10:08
Upload FortiGate lab images to EVE-NG and configure supporting OS images via FTP. Build the lab with a clear IP schema and proper directory structure.
Adding Fresh FortiGate Image to EVE-NG5:31
Adding FortiAnalyzer Image to EVE-NG11:03
Learn to add a FortiAnalyzer image to EVE-NG from scratch, including downloading the 40 analyzer KVM image (version 7.63 build), preparing two virtual drives, and configuring permissions for lab use.
Adding Kali Linux 2025 to EVE NG5:49
Learn how to add Kali Linux 2025 to eve-ng by downloading qcow2 image, extracting with seven zip, renaming, uploading, creating a directory, and booting as Kali.
FortiOS Lab Topology Setup in EVE-NG13:19
Exporting and Importing Labs in EVE-NG4:50
Configuring PCs in the Lab11:51
Configure lab PCs with IPv4 addresses, DNS and gateway 10.0.1.254, and subnet 255.255.255.0 across PC1–PC4, remote PCs, and external PC; verify connectivity with ping and adjust firewall and time zone.
Configuring Servers in the Lab5:02
Configure server one and server two in the lab by assigning static IP addresses, gateways, and hostnames. Update the web configuration by editing var/www/html/index.html to reflect the new settings.
Initial AD Lab Configuration5:07
Configure the initial active directory on Windows Server 2019 by setting a static IP, DNS, and remote desktop, disabling firewall and real-time protection, and renaming the server.
Installing and Configuring AD6:32
DNS Server Configuration3:54
Creating Users & Groups in AD6:38
Create user and group accounts in Active Directory using the Active Directory Users tool, forming HR, IT support, sales, and admin groups, and add test users with a common password.
NTP Server Configuration4:18
Configure Windows Server 2019 as ntp server by enabling global config, setting announce flag to 5, enabling windows time and ntp, then verify stratum 1 with an ntp tool.

FortiGate Factory Default Settings6:57
Discover FortiGate factory default settings for FortiOS 7.6, including management port access, variant IP ranges and admin with no password, webgui/cli access, and factory reset via CLI or GUI.
Firewall-FW1 Initial Configuration8:51
Methods of Access FortiGate Firewall5:13
Learn four access methods for FortiGate firewall: gui, cli, api, and FortiManager, enabling easy configuration, scripting, automation, and centralized multi-device management.
Exploring the FortiGate Dashboard14:49
Customizing the FortiGate Dashboard3:19
Using Widgets in FortiGate Dashboard6:21
FortiGate Firewall Monitors8:41
Resetting Dashboard Template3:40
Reset and switch Fortigate dashboard templates, selecting optimal for quick health checks or comprehensive for deep monitoring. Use the monitor menu and three-dot options to apply the template.
Command Line Interface CLI7:07
Useful CLI Keyboard Shortcuts11:50
Firewall-FW1 System Configuration7:51
Interface Roles and Alias6:04
FortiGate Interfaces Configuration5:10
Managing Administrative Access7:56

Routing & Routed Protocols4:00
Understanding Static Routing4:45
Administrative Distance Explained6:34
Route Priority in FortiGate Routing8:30
Route Metric and Its Significance3:23
Metric selects the best path in routing protocols, with Fortigate preferring lower values; administrative distance compares protocols, while ospf uses cost, rip uses hop count, and bgp uses path count.
Static Routing Configuration Lab6:58
Primary and Backup Path Overview4:56
Configure a primary and backup path for internet redundancy using static routes, administrative distance, and priority; monitor link health to fail over seamlessly in routing table, enabling ECMP and SD-WAN.
Primary & Backup Route Configuration19:25
Configure primary and backup routes on a Fortigate firewall with different administrative distances or priorities. Verify that the lower distance or priority route is active and test failover.
Understanding Equal Cost Multi-Path13:54
Explain equal cost multi-path in FortiGate, where traffic uses multiple next-hops with destination and distance, and explore source ip base, weight base, usage base, and source-destination ip base methods.
ECMP Configuration Lab18:43
Configure equal-cost multipath on FortiOS Fortigate by aligning administrative distance and priority, test with traceroute, adjust ECMP mode from source IP to source and destination, and verify automatic switching.
ECMP Load Balancing Methods Lab15:30
Explore ecmp load balancing methods in Fortinet FortiOS 7.6, including source IP base, weight base, usage base, and source-destination IP base, in a two-WAN lab.
Link Health Monitor Overview3:42
Health Link Monitor Configuration21:09
Policy Routing Explained10:40
Policy Routing Configuration Lab11:25
Using Named Addresses in Static Routes4:34
Static Routes with Named Addresses Lab8:05
Introduction to Internet Services Routing7:35
Internet Services Routing Configuration Lab9:27
Understanding RIB and FIB in FortiGate10:53

NAT on FortiGate Firewall9:28
Overview of NAT Types in FortiGate1:57
Explore NAT types in Fortigate firewall, including source net and destination net, with static/dynamic NAT, central source net, and virtual IP with port forwarding for inbound and outbound traffic.
Source Network Address Translation24:49
Policy Source Interface Overload NAT Lab7:36
Policy Source Overload NAT Lab7:20
Policy Source One-To-One NAT Lab8:06
Policy Source Fixed Port Range NAT Lab5:48
Configure a source fixed port range net by creating an IP pool with an internal IP range and start/end ports, then apply it to a firewall policy with log verification.
Policy Source Port Block Allocation NAT Lab4:59
Central SNAT Table Configuration Lab7:04
Destination Network Address Translation9:27
Destination NAT for Services Lab8:24
Configure destination net on a Fortigate firewall using virtual IP or static net to expose internal server 10.0.2.1 in the dmz to external http and https traffic.
DNAT Port Forwarding Configuration Lab6:44
Configure destination net with port forwarding, mapping external port 8080 to internal port 80 for server two, using a DMZ virtual IP and firewall policy, then verify.
VIP Without Central SNAT Configuration Lab4:48

Intro to FortiGate Firewall Policies12:42
Firewall Policy Parameters Explained9:11
Proxy-Based vs Flow-Based Inspection Modes5:26
Explore per-policy inspection modes in Fortigate firewall: flow-based delivers real-time, high-throughput inspection with no buffering, while proxy-based offers deeper content scanning at the cost of resources and latency.
Using Multiple Interface and Any Policies2:37
Enable the multiple interface policy and any policy in system feature visibility, apply changes, then configure firewall policies for multiple interfaces and any in the policy editor.
Firewall Policy Configuration Lab22:50
Understanding the Policy Table8:19
Explore the Fortigate policy table to view and configure firewall rules, including IDs, policy names, sources, destinations, services, actions, NAT, and security profiles with logging.
Understanding the Policy Match4:09
Understanding the Policy Views6:45
Firewall Policy Logging5:26
Enable firewall policy logging to record security events or all sessions; security events save storage and CPU, while all sessions provide full traffic visibility, with optional session start logs.
FortiGate Firewall Policy Management10:30
User-Based Policy Control Lab6:35
Create a local user and group, apply a user-based firewall policy on FortiGate to require authentication for internet access, and verify access via logs and dashboards.

Requirements

Basic understanding of networking concepts
Familiarity with firewall fundamentals is helpful but not mandatory
EVE-NG installed on your system or server for hands-on FortiGate lab practice
Understanding the basics of virtualization E.g. EVE NG
Students need to understand Networking Fundamentals.
Understanding of networking fundamentals

Description

Course Description:

Are you ready to master FortiGate firewalls and earn your Fortinet NSE 4 - FortiOS 7.6 Administrator certification?

This course is designed to take you from foundational concepts to advanced configurations, using real-world scenarios and hands-on labs. Whether you're an IT professional, network engineer, or cybersecurity student, this course will give you the skills and confidence to deploy, manage, and troubleshoot FortiGate devices running FortiOS 7.6.

You’ll learn how to set up FortiGate firewalls in EVE-NG for your own lab environment, ensuring practical, job-ready knowledge every step of the way. Through step-by-step guidance, we’ll cover everything from basic policy creation to VPNs, high availability, and threat protection features like antivirus, IPS, and application control.

By the end of this course, you will be fully prepared to take the Fortinet NSE 4 - FortiOS 7.6 Administrator exam and apply your skills confidently in real-world networks.

FortiOS Administrator Certification:

I recommend this course for network and security professionals who are involved in the day-to-day management, implementation, and administration of a security infrastructure using FortiGate devices.

Course Description:

In this course, you will learn how to use the most common FortiGate features. In interactive labs, you will explore firewall policies, user authentication, high availability, SSL VPN, site-to-site IPsec VPN, Fortinet Security Fabric, and how to protect your network using security profiles, such as IPS, antivirus, web filtering, application control, and more. These administration fundamentals will provide you with a solid understanding of how to implement the most common FortiGate features.

Agenda:

01. System and Network Settings

02. Firewall Policies and NAT

03. Routing

04. Firewall Authentication

05. Fortinet Single Sign-On (FSSO)

06. Certificate Operations

07. Antivirus

08. Web Filtering

09. IPS and Application Control

10. SSL VPN

11. IPsec VPN

12. SD-WAN Configuration & Monitoring

13. High Availability

14. Diagnostics and Troubleshooting

Certification:
This course is intended to help you prepare for the Fortinet NSE 4 - FortiOS 7.6 Administrator exam. This exam is part of the following certification tracks:

o Fortinet Certified Professional - Secure Networking

o Fortinet Certified Professional - Cloud Security

o Fortinet Certified Professional - Security Operations

o Fortinet Certified Professional - SASE

Product Versions:

FortiOS 7.6

Objectives:
After completing this course, you will be able to:

o Configure FortiGate basic networking from factory default settings

o Configure and control administrator access to FortiGate

o Use the GUI and CLI for administration

o Control network access to configured networks using firewall policies

o Apply port forwarding, source NAT, and destination NAT

o Analyze a FortiGate route table

o Route packets using policy-based and static routes for multi-path and load-balanced

o Authenticate users using firewall policies

o Monitor firewall users from the FortiGate GUI

o Offer Fortinet Single Sign-On (FSSO) access to network services, integrated with AD

o Understand encryption functions and certificates

o Inspect SSL/TLS-secured traffic to prevent encryption used to bypass security policies

o Configure security profiles including viruses, torrents, and inappropriate websites

o Apply application control techniques to monitor and control network applications

o Offer an SSL VPN for secure access to your private network

o Establish an IPsec VPN tunnel between two FortiGate devices

o Configure static routing

o Configure SD-WAN to load balance traffic between multiple WAN links effectively

o Deploy FortiGate devices as an HA cluster for fault tolerance and high performance

o Diagnose and correct common problems

Who this course is for:

System/network administrators
Cybersecurity students
IT professionals
Anyone interested in mastering FortiOS 7.6 features through practical, step-by-step labs
Network Engineers
Security Professionals
Individuals looking to enhance their expertise with FortiGate 7.6
IT Administrators

Fortinet NSE 4-FortiOS 7.6 Administrator Training Part 1/2

What you'll learn

Explore related topics

Course content

Introduction3 lectures • 11min

EVE-NG Installation & Lab Setup15 lectures • 1hr 46min

System and Network Settings14 lectures • 1hr 44min

Routing and ECMP on FortiGate20 lectures • 3hr 14min

VLAN & Zone3 lectures • 20min

Network Address Translation13 lectures • 1hr 47min

Firewall Policies11 lectures • 1hr 35min

Certificate Operations5 lectures • 57min

Requirements

Description

Who this course is for: