InstruktorMarija Desnica
Vrsta kursaU školi
DatumTermin u najavi
VremeTermin u najavi
MestoNovi Sad, Trg Mladenaca 5
Slobodnih mesta0/0
Prijavi se

This course is designed for technical professionals who will be demonstrating Sophos SG UTM and provides an overview of the product, including an introduction to the major capabilities and core configuration concepts.

It consists of presentations and practical lab exercises to reinforce the taught content, and electronic copies of the supporting documents for the course will be provided to each trainee through the online portal.

The course is expected to take 2 days (16 hours) to complete, of which approximately half will be spent on the practical exercises.




On completion of this course, trainees will be able to:

  • Understand the technical capabilities of Sophos SG UTM and their benefits
  • Complete common configuration tasks
  • Demonstrate the most commonly used features
  • Complete a simple evaluation or deployment
  • Perform preliminary sizing


Prior to taking this course you should:

  • Have completed and passed the Fundamentals Certified Engineer course We also recommend that you have the following knowledge and experience:
  • Knowledge of networking to a CompTIA N+ level
  • Experience configuring network security devices

If you are uncertain whether you meet the necessary prerequisites to take this course, please email us at and we will be happy to help.


To complete the course, trainees must take and pass an online assessment. The assessment tests their knowledge of both the presented and practical content. The pass mark for the assessment is 80%, and is limited to 4 attempts. Trainees should note that to become a Sophos Certified Engineer, they must complete and pass two product courses.

Lab Environment

Each student will be provided with a pre-configured environment which simulates a company network with two sites, a head office and a branch office and contains Windows Servers and two SG UTMs.


Module 1: Security Threats and how the UTM Protects Against Them (30 mins)

  • Identify common threats
  • Recognize the protection provided by Sophos UTM

Module 2: Getting Started with XG Firewall (55 mins)

  • Perform basic system configuration
  • Create network, service and time definitions
  • Configure interfaces on the UTM
  • Configure how multiple Internet links are used by the UTM
  • Labs (70 mins)
  • Configure a UTM using the Setup Wizard
  • Navigate the WebAdmin
  • Configure system settings
  • Create definitions
  • Configure interfaces and routing

Module 3: Network Protection (25 mins)

  • Create firewall and NAT rules
  • Configure intrusion prevention and Advanced Threat Protection (ATP)
  • Labs (40 mins)
  • Create firewall rules
  • Configure NATing
  • Demonstrate Advanced Threat Protection
  • Configure Intrusion Prevention (IPS)

Module 4: Site-to-Site Connections (35 mins)

  • Explain the VPN options available for site-to-site connections
  • Configure an SSL and IPsec site-to-site VPN
  • Understand RED deployment and configuration
  • Labs (25 mins)
  • Configure an SSL site-to-site VPN
  • Configure an IPsec site-to-site VPN

Module 5: Authentication (35 mins)

  • Enable one-time passwords
  • Configure Active Directory SSO for web filtering

Module 6: Web Protection and Application Control (35 mins)

  • Describe the main features in the Web Protection module
  • Configure web filtering with multiple policies
  • Enable Application Control and create rules to block applications
  • Labs (75 mins)
  • Deploy the HTTPS CA certificate
  • Configure Filter Actions
  • Sophos Certified Engineer
  • Manage Websites
  • Configure Web Policies
  • Configure Web Profiles
  • Configure Application Control

Module 7: Email Protection (35 mins)

  • Enable the Quarantine Report
  • Configure simple Email Protection
  • Configure Data Protection
  • Configure SPX encryption
  • Configure SMTP Profiles
  • Labs (65 mins)
  • Enable and configure quarantine digests
  • Configure an Email Protection Policy for MTA mode
  • Encrypt emails that match a Data Control List using SPX
  • Manage quarantined items as a user

Module 8: Wireless and Remote Access (45 mins)

  • Describe the main capabilities of Wireless Protection
  • Configure wireless access points
  • Create hotspots
  • Configure SSL remote access
  • Enable the HTML5 VPN portal
  • Describe support for native Cisco VPN clients
  • Labs (25 mins)
  • Configure an SSL remote access VPN
  • Configure the HTML5 VPN Portal

Module 9: Endpoint Protection and Mobile Control (25 mins)

  • Install and launch the endpoint client
  • Manage protected endpoints
  • Describe the integration between Sophos Mobile Control and the UTM
  • List the types of configuration that can be pushed to Sophos Mobile Control

Module 10: Logging, Reporting and Troubleshooting (30 mins)

  • Understand remote monitoring and managing in the UTM
  • Examine options for logging
  • Understand on-box reporting and iView
  • Examine available troubleshooting tools
  • Labs (30 mins)
  • Run, customize and schedule reports
  • View and manage log files
  • Use built-in support tools

Module 11: Sizing and Evaluation (25 mins)

  • Describe how to size UTM appliances
  • Plan for onsite evaluations
  • Find additional resources online

Further information

If you require any further information on this course, please contact us at

Sophos Certified Engineer