3 arrows

Get a Free AWS Exam retake using promo code DOUBLESHOT


VMware NSX Advanced Load Balancer: Web Application Firewall Security

  • Tuition USD $2,775 GSA  $2,376.57
  • Reviews star_rate star_rate star_rate star_rate star_half 4731 Ratings
  • Course Code EDU-NSXALBWAFS
  • Duration 3 days
  • Available Formats Classroom

This three-day course provides comprehensive training on how to configure, maintain and troubleshoot the Web Application Firewall component of the VMware NSX Advanced Load Balancer (Avi Networks) solution as well as provide an understanding of additional security related functionality. This course covers key NSX Advanced Load Balancer (Avi Networks) Web Application Firewall features and functionality offered in the NSX Advanced Load Balancer 18.2 release, including the overall infrastructure, virtual services and application components as well as application troubleshooting and solution monitoring. Access to a software-defined data center environment is provided through hands-on labs to reinforce the skills and concepts presented in the course.

Skills Gained

By the end of the course, you should be able to meet the following objectives:

  • Describe NSX Advanced Load Balancer architecture
  • Describe the NSX Advanced Load Balancer components and main functions
  • Explain the NSX Advanced Load Balancer key features and benefits
  • Describe NSX Advanced Load Balancer Web Application Firewall architecture
  • Describe the NSX Advanced Load Balancer Web Application Firewall components and main functions
  • Explain the NSX Advanced Load Balancer Web Application Firewall key features and benefits
  • Explain and configure Local Load Balancing constructors such as Virtual Services, Pools, Health Monitors and related components
  • Understand and modify application behavior leveraging Profiles, Policies and DataScripts
  • Configure and customize the NSX Advanced Load Balancer Web Application Firewall
  • Describe and leverage NSX Advanced Load Balancer REST API interfaces and related automation capabilities
  • Describe and configure NSX Advanced Load Balancer Web Application Firewall application and infrastructure monitoring
  • Gather relevant information and perform basic troubleshooting of Web Application Firewall applications leveraging built-in NSX Advanced Load Balancer tooling

Who Can Benefit

Experienced system administrators or network administrators and security professionals

Course Details

Product Alignment

  • NSX Advanced Load Balancer 18.2


Course Introduction

  • Introductions and course logistics
  • Course objectives

Introduction to NSX Advanced Load Balancer

  • Introduce NSX Advanced Load Balancer
  • Discuss NSX Advanced Load Balancer use cases and benefits
  • Explain NSX Advanced Load Balancer architecture and components
  • Explain the management, control, data, and consumption planes and their respective functions

Introduction to NSX ALB Web Application Firewall

  • Introduce the NSX Advanced Load Balancer Web Application Firewall
  • Discuss NSX Advanced Load Balancer Web Application Firewall use cases and benefits

Virtual Services Configuration Concepts

  • Explain Virtual Service components
  • Explain Virtual Service types
  • Explain and configure basic virtual services components such as Application Profiles, Network Profiles, Pools and Health Monitors

Attacking and Defending Web Applications

  • Introduce the processes and methodologies used when attacking and defending web applications
  • Introduce the tools used to attack web applications
  • Explain with examples terminology such as Reflected XSS and SQL injection

Profiles and Policies

  • Explain and deep dive on Advanced Virtual Service creation
  • Explain and deep dive on Application Profiles and Types such as L4, DNS, Syslog and HTTP
  • Explain and configure advanced application HTTP Profile options
  • Deep dive on Network Profiles and Types
  • Explain and configure SSL Profiles and Certificates
  • Explain and Configure HTTP and DNS policies

DDOS Protection

  • Introduce the NSX Advanced Load Balancer rate limiting functionality
  • Explain the NSX Advanced Load Balancer rate limiting functionality
  • Hands on examples of rate limiting in action

Customizing Application Delivery with Datascripts

  • Introduce the concept of datascripts to manipulate data
  • Explain the various components and inspection points

IWAF Deep Dive

  • Describe the building blocks of the iWAF implementation
  • Explain the various iWAF components
  • Introduce both Positive and Negative security models
  • Explain the iWAF Policies, profiles and rule sets

IWAF Core Rule Set

  • Explain the history and rationale of the core rule set
  • Describe the NSX ALB (Avi) Core Rule Set

IWAF Custom Rules

  • Describe the power and complexity available via custom rules
  • Explain the rule language
  • Implement various use cases
  • Explain common errors and possible solutions

IWAF Operations

  • Describe the iWAF application onboarding process
  • Tuning the iWAF policies
  • Working with iWAF logs and analytics
  • Explaining false positive mitigation tactics

IWAF Best Practices

  • Provide guidance on how to get the best results

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

What does vendor-authorized training mean?

As a vendor-authorized training partner, we offer a curriculum that our partners have vetted. We use the same course materials and facilitate the same labs as our vendor-delivered training. These courses are considered the gold standard and, as such, are priced accordingly.

Is the training too basic, or will you go deep into technology?

It depends on your requirements, your role in your company, and your depth of knowledge. The good news about many of our learning paths, you can start from the fundamentals to highly specialized training.

How up-to-date are your courses and support materials?

We continuously work with our vendors to evaluate and refresh course material to reflect the latest training courses and best practices.

Are your instructors seasoned trainers who have deep knowledge of the training topic?

ExitCertified instructors have an average of 27 years of practical IT experience. They have also served as consultants for an average of 15 years. To stay up to date, instructors will at least spend 25 percent of their time learning new emerging technologies and courses.

Do you provide hands-on training and exercises in an actual lab environment?

Lab access is dependent on the vendor and the type of training you sign up for. However, many of our top vendors will provide lab access to students to test and practice. The course description will specify lab access.

Will you customize the training for our company’s specific needs and goals?

We will work with you to identify training needs and areas of growth.  We offer a variety of training methods, such as private group training, on-site of your choice, and virtually. We provide courses and certifications that are aligned with your business goals.

How do I get started with certification?

Getting started on a certification pathway depends on your goals and the vendor you choose to get certified in. Many vendors offer entry-level IT certification to advanced IT certification that can boost your career. To get access to certification vouchers and discounts, please contact Edu_customerexperience@techdata.com

Will I get access to content after I complete a course?

You will get access to the PDF of course books and guides, but access to the recording and slides will depend on the vendor and type of training you receive.

The class covered the concepts needed for the AWS Cloud Practitioner Certification.

It would be better if the classroom had two power point screens so the instructor could have two screens shown to the class at the same time to reduce confusion switching back and forth

This course gave me a clearer understanding of the AWS cloud architecture.

Both course material and instructor demonstrated a sound foundation on Maximo material

Fantastic and great training. Tons of hands-on labs to really make you understand the material being thought.

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward