Name: Fortinet NSE7 Enterprise Firewall Training
Rating: 4.7 (303 reviews)

Udemy Business

Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Created byAhmad Ali

Last updated 3/2026

English

What you'll learn

Introduction and Initial Configuration
Security Fabric and Central Management
FortiGuard and FortiManager is FortiGuard
Security Profiles such as Web Filter, Application Control
Antivirus Profile, DNS Profile, File Filter Profile
Intrusion Prevention System
Routing OSPF and BGP
IPsec VPN and ADVPN
BGP Configuration Through CLI Template
OSP Configuration Through CLI Template
VPN Setup through VPN Manager
FortiGate Firewall, FortiManager & FortiAnalyzer Backups

Course content

9 sections • 78 lectures • 11h 34m total length

Fortinet Enterprise Firewall10:19
Explore Fortinet enterprise firewalls: physical, virtual, and cloud, delivered from edge to core with the security fabric and single pane management via 4D manager and 40 analyzer.
Zero Trust Security4:29
NSE7 Enterprise Firewall Exam4:31

Upload Switches Images to EVE-NG4:51
Upload Other Lab Images to EVE-NG5:54
Upload required images to ifeng via ftp with winscp, unzip, and ensure correct naming in the opt unit lab edson and chemu folders; configure pfSense with six interfaces for lab.
Upload FortiGate Firewall to EVE-NG8:58
Learn how to upload a FortiGate firewall image to EVE-NG, choosing the Fortinet image version such as 7.0.13, understanding licensing, naming conventions, folder structure, and deployment steps.
Upload FortiManager to EVE-NG9:29
Upload FortiAnalyzer to EVE-NG8:59
Enterprise Firewall Lab Setup6:13
Export & Import Topology in EVE-NG5:29
Firewalls Initial Configuration6:34
Clients Initial Configuration5:21
FortiManager First Time Configuration6:32
Configure FortiManager for a team manager topology on first-time setup by setting management and inside interfaces, IPs, and gateway, then apply or upload a license and complete login and settings.
FortiManager ADOM Configuration3:27
FortiAnalyzer First Time Configuration5:10
FortiAnalyzer ADOM Configuration3:31
Enable and configure a FortiAnalyzer ADOM, create a Fortigate firewall ADOM, adjust disk usage to 12 GB, and verify login to prepare for adding devices.

Security Fabric Theory7:57
Security Fabric Terminologies15:43
Deploying Root FortiGate6:24
Deploying Downstream FortiGate BR5:14
Deploying Downstream FortiGate DC4:31
Deploying Downstream FortiGate FW18:12
Activate License to See Topologies4:06
Physical and Logical Topologies6:06
Explore the full security fabric topology on the root fortigate, detailing physical and logical connections, device views by traffic, count, OS, and vendor, with security rating recommendations.
Security Rating10:12
Synchronizing Objects11:07
Security Fabric CLI Commands5:45
Automation Theory7:36
Learn how automation stitches link triggers and actions to automate responses like reboot events and address creation, with sequential and parallel execution across the root Fortigate and security fabric.
Automation Lab5:25

Add FortiAnalyzer to FortiManager6:03
Import Configuration of FWs5:23
Introduction to OSPF Protocols7:51
OSPF Configuration FortiManager9:57
Configure OSPF through FortiManager across firewall one and HQ firewall, assigning router IDs and area zero. Advertise 10.0.1, 192.168.100, and related networks, push settings, and verify OSPF neighbors and routes.
OSPF Through CLI Template8:54
Introduction to BGP Protocols5:30
Explore the basics of the border gateway protocol (BGP), its role as an exterior gateway path-vector protocol, and the eBGP/iBGP neighbor relationships across autonomous systems on TCP port 179.
IBGP Configuration FortiManager14:44
EBGP Configuration FortiManager10:01
BGP Through CLI Template7:23

Introduction to VPN Manager20:25
Explore how VPN manager centralizes hub-and-spoke, full-mesh, and dial-up topologies through VPN communities, gateways, phase one and phase two, and security policies, with map view and SSL VPN monitoring.
VPN Setup through VPN Manager17:30
Dynamic Object and Interfaces10:41
Normalized Interfaces5:50
VPN Firewall Policies11:02
Monitoring and Verification7:59
Hub to Spokes CLI Template21:39

ADVPN Theory4:55
Explore advpn theory and autodiscovery, enabling spoke-to-spoke dynamic on-demand tunnels in a hub-and-spoke Fortinet vpn, delivering full-mesh reachability with on-demand ipsec tunnels.
ADVPN VPN Topologies8:39
Explore ipsec vpn topologies, hub and spoke, partial mesh, and full mesh, and how a central hub governs spoke-to-spoke traffic, latency, and scalability trade-offs, with ad vpn addressing their limitations.
ADVPN Through CLI Template13:21
ADVPN Messages Exchange12:41
ADVPN Troubleshooting9:15

Security Profiles Theory12:09
SSL Inspection13:05
HQ-Firewall Configuration8:59
Add HQ-FW to FortiManager4:15
ADD HQ-FW to FortiAnalyzer2:08
Install SSL Inspection Certificate3:58
Antivirus Profile Lab8:58
Web Filter URL Profile Lab6:37
Web Filter FortiGuard Category Lab12:40
Explore Fortinet's web filter with FortiGuard category base filter in FortiManager, enabling block, warn, or authenticate rules for streaming media and web hosting, and verify results in FortiGate logs.
Application Control Category Lab6:45
Application Override Lab3:39
Learn how to override a social media block by creating an application override that allows Facebook while blocking other social media, using application control and deployment steps.
IPS Botnet Lab6:06
IPS Signature Lab5:53
Configure a custom IPS signature in the Fortinet firewall, enable logs, and test blocking of the EICAR virus with the IPS engine; verify blocks in logs and analyzer.
IPS Filter Lab8:11
File Filter Profile Lab9:05
Create a custom file filter profile in FortiManager to block PDFs, enable SSL inspection in the policy, push the config to FortiGate, and verify blocks via logs.
DNS Filter Profile Lab5:40
FortiGuard Theory25:11
FortiManager FortiGuard6:28

Requirements

FortiGate firewalls training, preferably an NSE4 course.
Fortinet NSE5 FortiAnalyzer Training
Fortinet NSE5 FortiManager Training
Basic Knowledge of Simulation Software EVE-NG.
Personal Computer with 12GB of RAM (Recommended 16GB of RAM).
Three to five years of experience with Fortinet network security.
Advanced knowledge of networking, and extensive hands-on experience
understanding of the topics covered in NSE 4 and NSE5

Description

Course Description:

Fortinet NSE 7 Enterprise Firewall training prepares learners to integrate, administer, troubleshoot, and manage an enterprise firewall solution that relies on FortiOS, FortiManager, and FortiAnalyzer. After finishing the videos in this Fortinet NSE 7 Enterprise Firewall training, you'll know how to integrate, administer, troubleshoot, and manage an enterprise firewall solution that relies on FortiOS, FortiManager, and FortiAnalyzer. You will explore Fortinet Security Fabric, VPN, and how to protect your network using security profiles, such as IPS, antivirus, web filtering, application control, and advanced routing.

FCSS:

The FCSS in Network Security certification validates your ability to design, administer, monitor, and troubleshoot Fortinet network security solutions. This curriculum covers network security infrastructures using advanced Fortinet solutions. You will receive this certification, if you have passed any version of the Fortinet NSE 7—Enterprise Firewall exam and one of the following exams:

Fortinet NSE 7–SD-WAN

Fortinet NSE 7–LAN Edge

Fortinet NSE 7–Secure Access

Fortinet NSE 7–Network Security 7.2 Support Engineer

Objectives:

After completing this course, you should be able to:

o Integrate multiple FortiGate devices using the Fortinet Security Fabric.

o Integrate multiple FortiGate devices with FortiManager & FortiAnalyzer.

o Centralize the management and monitoring of network security events.

o Harden the enterprise services using IPS and Security Profiles.

o Implement a high availability solution on FortiGate Firewalls.

o Deploy IPsec tunnels to multiple sites using the FortiManager VPN console.

o Configure ADVPN to enable on-demand VPN tunnels between sites.

o Combine OSPF and BGP to route the enterprise traffic.

Target Audience:

The Enterprise Firewall course is intended for networking and security professionals who are involved in the administration and support of a security infrastructure using FortiGate appliances. This includes network managers, administrators, installers, sales engineers, systems engineers, professional services engineers (presales and post sales) and technical support professionals. Anyone planning to take Enterprise Firewall course is strongly recommended to complete the FortiGate Security, FortiGate Infrastructure and FortiManager courses before this course.

Prerequisites:

This course assumes advanced knowledge of networking, and extensive hands-on experience working with FortiGate, FortiManager, and FortiAnalyzer. It is also recommended that you have an understanding of the topics covered in the following courses, or have equivalent experience: FortiManager, FortiAnalyzer, FortiGate Security and FortiGate Infrastructure.

Product Versions:

FortiGate 7.X

FortiManager 7.2.x

FortiAnalyzer 7.2.x

Who this course is for:

Networking and security professionals
Network Engineer
Security Engineer
Cyber Security Engineer
Anyone who is responsible for the day-to-day FortiGate.
Anyone who is responsible for the day-to-day FortiManager
Anyone who is responsible for the day-to-day FortiAnalyzer

What you'll learn

Explore related topics

Course content

Introduction3 lectures • 19min

Lab Setup13 lectures • 1hr 20min

Fortinet Security Fabric13 lectures • 1hr 38min

Dynamic Routing9 lectures • 1hr 16min

IPSec VPN7 lectures • 1hr 35min

ADVPN5 lectures • 49min

Lab Backup & Restore3 lectures • 24min

Security Profiles18 lectures • 2hr 30min

High Availability7 lectures • 1hr 43min

Requirements

Description

Who this course is for: