FortiGate Infrastructure

Course Overview

In this two-day course, you will learn how to use advanced FortiGate networking and security. Topics include features commonly applied in complex or larger enterprise or MSSP networks, such as advanced routing, transparent mode, redundant infrastructure, site-to-site IPsec VPN, single sign-on (SSO), web proxy, and diagnostics. 

Course Objectives

After completing this course, you should be able to: 

• Analyze a FortiGate route table
• Route packets using policy-based and static routes for multipath and load -balanced deployments 
• Configure SD-WAN to load balance traffic between multiple WAN links effectively
• Inspect traffic transparently, forwarding as a Layer 2 device
• Divide FortiGate into two or more virtual devices, each operating as an independent FortiGate, by configuring virtual domains (VDOMs)
• Establish an IPsec VPN tunnel between two FortiGate devices
• Implement a meshed or partially redundant VPN
• Diagnose failed IKE exchanges 
• Offer Fortinet Single Sign-On (FSSO) access to network services, integrated with Microsoft Active Directory (AD)
• Deploy FortiGate devices as an HA cluster for fault tolerance and high performance 
• Deploy implicit and explicit proxy with firewall policies, FortiGate Infrastructure Course Description authentication, and caching
• Diagnose and correct common problems


• Knowledge of OSI layers
• Knowledge of firewall concepts in an IPv4 network
• Knowledge of the fundamentals of FortiGate, as presented in the FortiGate Security course

Who Should Attend

Networking and security professionals involved in the design, implementation, and administration of a network infrastructure using FortiGate appliances should attend this course.

This course assumes knowledge of basic FortiGate fundamentals. Participants should have a thorough understanding of all the topics covered in the FortiGate Security course before attending the FortiGate Infrastructure course.

Related Certification Exam

This course and the FortiGate Security course are intended to help participants prepare for the NSE 4 certification exam.

Course Modules

1. Routing
2. Software-Defined WAN (SD-WAN)
3. Virtual Domains
4. Layer 2 Switching
5. IPsec VPN
6. Fortinet Single Sign-On (FSSO)
7. High Availability (HA)
8. Web Proxy
9. Diagnostics 

Course Schedule

Start: 08/04/2022 | End: 08/05/2022

Start: 02/09/2023 | End: 02/10/2023

Start: 03/16/2023 | End: 03/17/2023

Start: 04/27/2023 | End: 04/28/2023

Start: 06/01/2023 | End: 06/02/2023

Start: 06/29/2023 | End: 06/30/2023

Start: 07/27/2023 | End: 07/28/2023

Start: 09/28/2023 | End: 09/29/2023

Start: 10/26/2023 | End: 10/27/2023

Start: 12/07/2023 | End: 12/08/2023


Global brands. One single contact. Endless opportunities.

  • Pasig

    • MSI-ECS Complex M. Eusebio Avenue San Miguel Pasig City Metro Manila Philippines 1600
      Tel No: (+632) 8830 9999, (+632)8688 3333
  • Cebu

    • #17-19 Cebu WGA Compound, Rabaya St., Brgy. San Roque, Talisay City 6045 Cebu
      Tel No: (+032) 345-9441
  • Taguig

    • Shop 4 Ground Flr, Philplans Corporate Center, Kalayaan Ave. & Triangle Drive, Fort Bonifacio, Taguig City.
      Tel No: (+632) 8836-7954, 8828-2105
  • Davao

    • SRC Building, Arroyo corner R. Castillo St., Agdao, Davao City
      Tel No: (+6382) 282-8835 to 38