Introduction to Cloud

AWS Cloud Services

AWS Global Regions & Availability Zone

AWS VPC Network

AWS Transit Gateway

AWS VPN

AWS Direct Connect Gateway

AWS Elastic Computers (EC2)

AWS Identity and Access Management (IAM)

AWS Database Services

AWS Storage S3 Buckets

Route 53

AWS Architecture Framework

Create and Setup AWS Account

Basic Networking

AWS VPC Networking Overview

AWS Regions and Availability Zone

VPC CIDR Block

Subnet , Route Table and Internet Gateway

AWS Security Groups

Network ACL

NAT Gateway

VPC Endpoint

VPC Peering

IP Address IPv4 & IPv6

Network Interface

VPC Flow Logs

Share VPC Resource

Understanding of Ingress, Egress, North South and South North Traffic.

Design a AWS VPC Network Diagram

Deploy a VPC Network and egress traffic using internet gateway

Provision EC2, Security Groups, NACL and apply into existing AWS Resources

Deploy two VPC Network and establish a connection through VPC Peering – Within same AWS Account in same regions

Deploy two VPC Network and establish a connection through VPC Peering – Within different AWS Account in different regions.

Deploy NAT Gateway

Deploy a web service on public subnet

Deploy VPC Endpoint to connect S3 bucket

Share AWS Resources to another account

Introduction to AWS Multi Account Landing Zone

AWS Control Tower

AWS Organization

Introduction to AWS Transit Gateway

Understanding of Transit Gateway Routing and Attachment

Transit Gateway Network Manager

Design Multi Account Landing Zone Architecture

Deploy two VPC in US-EAST Region

Deploy Transit Gateway in US-EAST Region

Create Transit Gateway Attachment, Transit Gateway Routing and establish the two VPC connections through Transit Gateway US-EAST Region.

Deploy two VPC in EUROPE Region

Deploy Transit Gateway in EUROPE Region

Create Transit Gateway Attachment, Transit Gateway Routing and establish the two VPC connections through Transit Gateway EUROPE.

Deploy Transit Gateway Peering between two region

Deploy Transit Gateway Network Manager

Troubleshooting and validation of connectivity using Network Manager

Introduction of AWS Direct Connect Gateway

Understanding of Connection

Understanding of Virtual Interfaces(VIFs) – Public VIF, Private VIF, Transit VIF

Gateway Association – VPCs and Transit Gateway

Direct Connect with Transit Gateway

Failover and High Availability (HA) best practices

Security and Compliance Consideration

Introduction of AWS Site-2-Site-VPN

Benefits of AWS Site-2-Site VPN

Use Cases of AWS Site-2-Site VPN

Introduction of AWS Cloud WAN

Use Cases of AWS Cloud WAN

Design the VPC Architecture using Direct Connect Gateway

Configure Direct Connect Gateway and associated with VPC

Configure Direct Connect Gateway and associated with Transit Gateway

Design the VPC Architecture using AWS Site-2-Site VPN

Configure AWS Site-2-Site VPN

Monitoring Direct connect Gateway and site-2-site VPN using CloudWatch

Introduction to AWS Elastic Load Balancer (ELB)

Benefits of Load Balancer

Type of Load Balancer

Application Load Balancer

Network Load Balancer

Classic Load Balancer

Gateway Load Balancer

Cross regions load Balancing

Listener and Target Groups

Path-based Routing

TLS Termination

Understanding of Dual Stack IP Address

Understanding of Sticky Sessions

Design a High Availability Architecture using AWS Load Balancer for Internal and External Services

Deploy a web application behind an Application Load Balancer (ALB) to distribute traffic between two EC2 instances in different Availability Zones.

Deploy a web application behind an Network Load Balancer (NLB) to distribute traffic between two EC2 instances in different Availability Zones.

Introduction to DNS

Understanding of DNS Records

Introduction to Route53

Understanding of Route53 Routing Policies

Domain Registration and Hosted Zones

Domain Registration

Hosted Zone configuration and Route53 entries configuration to access a public website

Route53 entries for a custom domain website configuration

Route53 Regional Level Failover Configuration

Overview of AWS Security HUB

Overview of Amazon GuarDuty

Overview of Amazon Inspector

Overview of AWS Config

Overview of of AWS CloudTrail

Introduction to AWS WAF

Deploy AWS Security HUB

Deploy Amazon GuarDuty

Deploy Amazon Inspector

Deploy AWS Config

Deploy AWS CloudTrail

Deploy AWS WAF

Introduction to Infrastructure as Code (IaC)

Introduction to Terraform

Installation and Configuring Terraform

Setting up AWS Credential

Deploy AWS VPC Network using Terraform

Provision EC2 Instance using Terraform

Deploy two VPC networks and establish VPC Peering Connection using Terraform

Deploy AWS Transit Gateway using Terraform

Deploy multiple VPC and establish connections through Transit Gateway using Terraform

Deploy a web application behind Application Load Balancer using Terraform

Create AWS Security Groups using Terraform

Project 1

Project 2

Project 3

Project 4

Project 5

Deploy Palo Alto VM Series Firewall in AWS/Azure/GCP Cloud Environment

Basic Network Configuration: Interfaces, Zones, Virtual Routers

Understanding and Configuring System Settings (Management Interface, DNS, NTP)

Object Management: Addresses, Address Groups, Services, Service Groups

Administrator Roles and Access Control

PAN-OS Upgrade

Key Concept of App-ID (Application Identification) and Layer 7 application

Compare of Layer 4 and Layer 7 firewall rules and Custom APP-ID

Overview of User-ID (User Identification)

Content-ID (Content Inspection)

Threat Prevention

Overview of Dynamic Updates and Schedule Dynamic Updates

Understanding Security Policy Rule Structure and Processing

Configuring Firewall Rules: Source, Destination, Application, Service, Action

Implementing NAT (Network Address Translation): Source NAT, Destination NAT

Understanding and SSL/TLS Inspection and Implementing Decryption Policy

Troubleshooting Security Policy Issues

Introduction to Security Profile Groups (SPg)

Application Control: Visibility and Enforcement

URL Filtering: Managing Web Access and Security

Anti-Virus and Anti-Spyware: Protecting Against Malware

Vulnerability Protection: Preventing Exploits

File Blocking and Data Filtering

WildFire Analysis: Understanding and Mitigating Advanced Threats

Introduction to Zone Protection Profiles

Configuring Flood Protection: SYN Flood, UDP Flood , ICMP Flood

Configuring Reconnaissance Protection : TCP Port Scan, Host Sweep, UDP Port Scan, IP Protocol.

Configuring Packet-Based Protection: IP Drop, TCP Drop, ICMP Drop and IP Option Drop

Applying Zone Protection Profiles to Security Zones

Overview of Denial-of-Service Attacks and Their Impact

Palo Alto Networks DoS Protection Mechanisms

Understanding DoS Protection Policy Rules

Configuring Aggregate-Based DoS Protection

Configuring Packet-Rate Based DoS Protection

Implementing DoS Protection for Specific Services

Understanding VPN Concepts and Types (Site-to-Site, Remote Access)

Configuring IPsec VPN Tunnels

Managing VPN Policies and Authentication

Troubleshooting VPN Connectivity Issues

Understanding of Policy Optimization

Analyze the Policy Usages for 30/90 days and unused Rules

Log Analysis mechanism to lockdown any any rules and make a specific rule

Understanding Palo Alto Networks Logging Mechanisms

Utilizing the Monitoring Dashboard and Logs

Generating and Analyzing Security Reports

Integration with External Logging and SIEM Systems

Basic Troubleshooting Tools and Techniques

Introduction to Panorama

Panorama Architecture and Modes

Deploy Panorama VM Series in AWS/Azure/GCP Cloud Environment

Device Groups and Template management

Device Registration into Panorama

Objects and Configuration Management

Policy Management with Panorama

Logging, Monitoring and Reporting

Resume Building

Professional Profile Building ( Linkedin, Dice, Indeed and Monster)

Interview Preparation

1:1 Mock Interview