This document provides an overview of a 150-video, 25-hour Palo Alto Networks NGFW advanced training course covering PAN-OS versions 8.0 and 8.1. The course contains 20 modules that cover topics such as networking, security policies, objects, User-ID, authentication, URL filtering, application control, certificates, threat prevention, WildFire, high availability, advanced networking, and VPN. It is designed to prepare students for the PCNSA and PCNSE certification exams but does not cover Panorama, cloud platforms, IPv6, or dynamic routing protocols.

1. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
1 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
1
Palo Alto NGFW advanced course
PAN-OS: 8 & 8.1
Total Videos: 150 Video
Average time video: 5: 15 minutes
Total Hours: 25 Hours
Total Labs: 90 Lab
Covered: 100 % PCNSA & 75 % PCNSE – V8
Topics not Covered in this Course:
 Palo Alto Panorama
 Palo alto on Cloud platform (AWS & Azure …. etc.)
 IPv6 Configuration
 Dynamic routing configuration (OSPF & BGP …)
Prepared by: Mostafa El Lathy

2. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
2 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
2
Table of Contents
Module 01-General Introduction ……………………………………………………………………………. 98 Minutes
Module 02-Palo Alto Home Lab and Initial Configuration ……………………………………........70 Minutes
Module 03-PAN-OS Administration and Management …………………………………………….108 Minutes
Module 04-Palo Alto Basics Networking …………………………………………………………………. 52 Minutes
Module 05-Palo Alto Basics NAT & Security Policies ………………………………………….……. 40 Minutes
Module 06-Palo Alto Objects ……………………………………………………………………………….…. 72 Minutes
Module 07-Palo Alto User-ID (Single-Sign-On)…………………………………………………….… 109 Minutes
Module 08-Palo Alto Authentication & Captive Portal……………………………………………… 63 Minutes
Module 09-Palo Alto URL Web Filtering ……………………………………………………………..… 104 Minutes
Module 10-Palo Alto App-ID (Application Control)……………………………………….…………. 75 Minutes
Module 11-Palo Alto Certificate & SSL Decryption Policy………………………………….……. 170 Minutes
Module 12-Palo Alto Quality of Service (QOS)………………………………………………………..… 33 Minutes
Module 13-Palo Alto Threat Prevention (Content-ID)………………………………………..…….. 95 Minutes
Module 14-Palo Alto WildFire (Palo Alto Sandboxing)……………………………………...……… 25 Minutes
Module 15-Palo Alto High Availability…………………………………………………………………… 164 Minutes
Module 16- Palo Alto Advanced Networking…………………………………………………….…… 135 Minutes
Module 17- Palo Alto VPN Site to Site………………………………………………………...……………. 87 Minutes
Module 18- Palo Alto Advanced NAT Policy
Module 19- Palo Alto Global Protect (VPN Client to server)
Module 20- Palo Alto Monitoring & Reporting

3. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
3 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
3
Module 01- General Introduction
00- Intro to the Palo Alto NGFW Course
01- Intro to Traditional Firewall Concept
02- Intro to UTM Concept
03- UTM Advantage and Disadvantage
04- NGFW Vs UTM
05- What is the best firewall (Sizing)? Part 1
06- What is the best firewall (Sizing)? Part 2
07- Palo Alto NGFW Architecture Overview
08- Flow logic of the Palo Alto NGFW
09- Palo Alto Licenses and Subscription Types
10- What Can I Do with Palo alto free VM license?
Module 02- Palo Alto Home Lab and Initial Configuration
11- Install Palo Alto on VMware Workstation 12
12- Initial Access to Palo alto CLI Basics ( CLI Modes & CLI Tools )
13- Change Palo Alto MGMT Interface settings Using CLI
14- Overview about Palo alto WebGUI - Part 1
15- Overview about Palo alto WebGUI - Part 2
16- Configure Management Interface & DNS & NTP
17- How to restart & Shutdown Palo alto GUI & CLI

4. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
4 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
4
Module 03- PAN-OS Administration and Management
18- Palo Alto Registering Device.
19- Palo Alto Online Support Portal.
20- Palo Alto Software Upgrade & Downgrade instruction.
21- Upgrade Palo Alto PAN-OS online and manual - Part 1
22- Upgrade Palo Alto PAN-OS online and manual - Part 2
23- Palo Alto Types of Administrators
24- Palo Alto Admin Roles.
25- Palo Alto Administrators Password Profile
26- Palo Alto Minimum Password Complexity.
27- PAN-OS Configuration File Types (Candidate & Running).
28- PAN-OS Backup & Restore Configuration File – Part 1
29- PAN-OS Backup & Restore Configuration File – Part 2
30- Palo Alto Password Recovery & Factory Reset
Module 04- Palo Alto Basics Networking
31- Palo Alto Zones Concept
32- Palo Alto Interfaces Concept
33- Configure Security Zones & Layer3 Interfaces
34- Palo Alto Virtual Routers Concept (Routing on Palo Alto)
35- Configure Virtual Router and Default Route to Internet.
36- Palo Alto Interface Management Profile

5. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
5 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
5
Module 05- Palo Alto Basics NAT & Security Policies
37- Palo Alto Security Policy Concepts.
38- Configure Basic Security Policy
39- Palo Alto NAT Policy Concepts.
40- Configure Source NAT-PAT (Dynamic IP and Port).
Module 06- Palo Alto Objects
41- PAN‐OS Objects - Addresses 1 (Filtering based on IPs)
42- PAN‐OS Objects - Addresses 2 (Filtering based on FQDN)
43- PAN‐OS Objects - Services (Filtering based on Protocol and Ports)
44- PAN‐OS Objects - Regions (Filtering based on Countries)
45- PAN‐OS Objects - Schedules (Filtering based on Time)
46- PAN‐OS Objects - TAGs 1 (Organize your firewall)
47- PAN‐OS Objects - TAGs 2 (Create Dynamic Address Group Based On TAGs)
48- Review Palo Alto Objects and All Previous Lessons

6. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
6 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
6
Module 07- Palo Alto User-ID (Single Sign-On)
49- Palo Alto User-ID Concept
50- Palo Alto User-ID Process (Group Mapping)
51- Palo Alto User-ID Process (User Mapping)
52- Configure LDAP Profile (Group-Mapping)
53- User-Mapping using PAN‐OS Integrated User‐ID Agent (Agentless)
54- User-Mapping using the Windows-Based User-ID Agent
55- Security Policy based on Active Directly Users & Groups.
56- Palo Alto User-ID Tips & Tricks
Module 08- Palo Alto Authentication
57- Palo Alto Authentication Concept
58- Configure Local DB & Authentication Profile
59- Palo Alto External Authentication ( LDAP & Kerberos )
60- Configure Authentication Sequence Profile
61- Configure Captive Portal Concept
62- Palo Alto Captive Portal Configuration

7. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
7 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
7
Module 09- Palo Alto URL Web Filtering
63- Palo Alto URL Web Filtering concept - Part 1
64- Palo Alto URL Web Filtering concept - Part 2
65- Palo Alto URL Categorization Process
66- Configure PAN-DB URL Filtering License
67- Configure PAN-DB Private Cloud and Check Updates
68- Configure Bright Cloud URL Filtering License
69- Create URL Web Filtering Profiles
70- Configure URL Block & White List
71- Create Custom URLs Web Category
72- Configure URL Filtering (Continue & Override).
73- Create Custom Web Block Response Page
74- Request URL Categorization Change – Part 1
75- Request URL Categorization Change – Part 2

8. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
8 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
8
Module 10- Palo Alto App-ID (Application Control)
76- NGFW Application Control Concepts
77- Palo Alto App-ID Concepts
78- Palo Alto App-ID Operation ( Flow Logic )
79- Palo Alto Applipedia
80- Prepare Palo alto before using APP-ID
81- Configure Security Policy based on Specific App-ID.
82- Deep dive into APP-ID & Port-Base
83- Palo Alto Application Groups.
84- Palo Alto Application Filters.

9. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
9 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
9
Module 11- Palo Alto Certificate & SSL Decryption Policy
85-Intro to SSL Certificate
86-Introduction to Cryptography (Asymmetric-Key Encryption)
87-Introduction to Cryptography (Symmetric-Key Encryption)
88-Intro to Public Key infrastructure (PKI) concept
89-How does PKI Work?
90-What Digital Certificate?
91-Palo Alto SSL Decryption Policy Concept
92-Palo Alto Decryption Policy types
93-Generate self-signed certificate on Palo Alto.
94-Create SSL Decryption Policy for Trust Certificate Authority.
95-Install and Push SSL Certificate to all PCs using GPO
96-App-ID with SSL Decryption
97-Create SSL Certificate for Untrust Certificate Authority.
98-Create SSL Decryption Profile
99-SSL Decryption Exceptions for Custom URLs Category
100- Enable SSL Opt-out Page
101- Configure SSH Proxy Decryption
102- Blocked all VPN-Proxy Apps like Psiphon3 & Ultrserf
103- Block or Allow specific applications using App-ID & SSL Inspection
104- Configure Certificate for Palo Alto WebGUI
105- Import certificate from an Internal PKI (Active Directory CA)
106- Install a Chained Certificate Signed by an External CA

10. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
10 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
10
Module 12- Palo Alto Quality of Service (QOS)
107- Palo Alto Quality of Service(QOS) Concept
108- Palo Alto Quality of Service(QOS) Components
109- Configure QOS based on App-ID
110- Configure QOS based on URL Category
111- Configure QOS to Limit Download Bandwidth
Module 13- Palo Alto Threat Prevention (Content-ID)
112- Palo Alto Threat Prevention (Content-ID) Concepts.
113- Configure dynamic updates for Threat Prevention
114- Manual updates for Threat Prevention
115- PAN-OS Enable Anti-Virus Profile
116- Block Threats in encrypted Traffic
117- PAN-OS Anti-Virus Exception for specific application
118- PAN-OS virus Exception for False positive
119- PAN-OS Enable Anti-Spyware Profile
120- PAN-OS Vulnerability Protection (IPS)
121- PAN-OS File Blocking - Block Download files
122- PAN-OS File Blocking - upload Download files
123-PAN‐OS External Dynamic Lists

11. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
11 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
11
Module 14- Palo Alto WildFire (Palo Alto Sandboxing)
124- WildFire concept (Palo Alto Sandboxing)
125- Configure dynamic updates for WildFire
126- Configure WildFire setting
127- PAN-OS Enable WildFire Analysis Profile
128- Manual Upload Unknown file to WildFire Sandboxing
Module 15- Palo Alto High Availability
129- Palo alto High Availability Concept
130-Palo alto High Availability requirements
131-Palo Alto High Availability Components and operation
132-Palo Alto High Availability Failure Detection methods
133-Palo Alto High Availability Lab
134-ISPs Failover using Round robin
135-Policy-Based Forwarding (PBF) Lab
136-ISPs Load Sharing using (ECMP) Lab

12. { Palo Alto NGFW for Arab }
PAN-OS 8.0 & 8.1 Advanced Course
By : Mostafa El Lathy
********
***
12 MostafaEllathyIT | Mostafa.IT@Hotmail.Com | MostafaEllathy
12
Module 16- Palo Alto Advanced Networking
137-Advanced Networking - DMZ Concept
138-Advanced Networking - Layer 2 concept
139-Advanced Networking - Layer2 deployment
140-Advanced Networking - V-Wire Concept
141-Advanced Networking - V-Wire deployment
142-Advanced Networking - TAP Concept
143-Advanced Networking - Implement Sub-interfaces with VLANs (EVE lab)
144-Advanced Networking - DHCP Relay Lab (EVE )
145-Advanced Networking - DHCP Server Lab (EVE )
Module 17- PAN-OS VPN Site to Site
146-VPN Technology concept
147-VPN Site to Site concept
148-VPN Site to site Tunneling Protocols concept
149-IPSec framework Concept
150-Palo alto VPN Site to Site Lab