The Certified Stormshield Network Expert (CSNE) certification attests to the advanced features of Stormshield Network Security (SNS) firewalls. In particular, it makes it possible to evaluate the candidate's ability to configure all the features of an SNS firewall in a computer network in order to ensure the security and integrity against internal and external attacks.

This article is a continuation of the article "Certified StormShield Network Administrator, I am...".

The Certified Stormshield Network Expert (CSNE) is the highest level of Certified Stormshield Network Administrator (CSNA) certification. CSNE training and certification is only available to CSNA holders.

Arkoon and Netasq, wholly-owned subsidiaries of Airbus Defense and Space CyberSecurity, operate the Stormshield brand and offer innovative end-to-end security solutions in France and internationally to protect networks (Stormshield Network Security ), workstations (Stormshield Endpoint Security) and data (Stormshield Data Security). The various Arkoon and Netasq products are now marketed under the common Stormshield brand.

These next-generation trusted solutions, certified at the highest European level (EU RESTRICTED, NATO and ANSSI EAL4 +), protect strategic information and are deployed through a network of distribution partners, integrators and operators in companies of all sizes, government institutions and defense organizations all over the world.

Stormshield won four security visas from ANSSI (National Agency for Security Information Systems):

Guillaume Poupard, Directeur Général de l'ANSSI, lors du discours d'ouverture de la cérémonie (source)

Éric Hohbauer, Vice-Président Sales Stormshield, aux côtés de Mounir Mahjoubi, Secrétaire d'État auprès du Premier ministre, chargé du Numérique

European leader in the security of digital infrastructures, Stormshield offers communicating and intelligent solutions to anticipate attacks and protect digital infrastructures.

Here is the content of the Certified Stormshield Network Administrator (CSNA) course:

Curriculum and certifications

Presentation of the company and the products

    Stormshield Overview
    Stormshield Data Security
    Stormshield Endpoint Security
    Stormshield Network Security
    Standard and optional functions

Getting started with the firewall

    Firewall registration on the Stormshield customer area
    Start / Stop / Reset
    Firewall connection
    Installation wizard
    The administration interface
    The dashboard
    System configuration
    Changing the password of the account "admin"
    Licence
    Maintenance

Logs and monitoring

    The categories of traces
    Local storage of traces
    Audit logs
    Supervision and historical graphics
    Stormshield Network Administration Suite
    Syslog, SVC, email notifications and reports

Objects

    Overview
    Network Objects

Network configuration

    Configuration modes
    Types of interfaces
    System Routing
    Advanced routing
    Scheduling of routing types

Address Translation

    Overview
    Dynamic translation
    Static translation by port
    Static translation
    "NAT" menu
    Order of application of NAT rules

filtering

    Overview
    The notion of "stateful"
    The scheduling of filtering and translation rules
    Filtering menus
    The consistency and conformity analyzer

Application protection

    URL filtering
    SMTP and antispam filtering
    Antiviral analysis
    Breach Fighter Analysis
    Intrusion prevention and safety inspection

Users & authentication

    Introduction
    User directories
    Set up an external directory
    Configure an internal LDAP directory
    User Management
    Authentication methods
    The authentication policy
    The captive portal
    User enlistment
    LDAP authentication via the captive portal
    Define new administrators

VPN

    The different virtual private networks
    IPsec VPN - Concepts and generalities
    IPsec VPN - Configuring a site-to-site tunnel
    IPSec VPN - Configuring Multiple Site-to-Site Tunnels
    IPsec VPN - Virtual Tunneling Interface

SSL VPN

    Concepts and generalities
    Implementation of a tunnel

Labs

    LAB 1: Getting Started with the Firewall
    LAB 2: The Objects
    LAB 3: Network Configuration
    LAB 4: Address Translation
    LAB 5: Filtering
    LAB 6: Content Filtering (HTTP)
    LAB 7: Authentication
    LAB 8: IPsec VPN (site-to-site)
    LAB 9: SSL VPN

Here is the content of the training "Certified Stormshield Network Expert" (CSNE)

Intrusion prevention

    The Stormshield Network Intrusion Prevention Engine
    IP protocol analysis
    Protocol analysis on the transport layer
    Application analysis
    Contextual analysis
    Protocol and application profiles
    Stormshield Network Vulnerability Manager
    Modes of inspection

Public Key Infrastructure

    What is cryptography?
    The types of encryption
    Infrastructures with public keys
    PKI Stormshield Network
    Creating a certificate authority
    Creating a server certificate
    Creating a user certificate
    Revocation of certificates and CRL

SSL Proxy

    Operation
    Configuration
    Examples of use

Advanced IPSec VPN

    reminders
    NAT- Traversal
    Dead Peer Detection (DPD) Liveliness
    Star / chaining
    NAT in IPsec
    Site-to-site with certificates from several authorities
    Site-to-site with certificates from a single authority
    Site-by-certificate site with peer definition id = subject
    Nomad by certificate
    Nomad: xauth mode (IKEv1 only)
    Nomad: hybrid mode (IKEv1 only)
    Nomad: config mode
    IPSec Failover

GRE and GRETAP Tunnels

    GRE Tunnel
    GRETAP Tunnel

Transparent authentication

    Introduction
    SPNEGO
    SSL Certificate
    SSO agent (single sign-on)
    Multi-user

High availability

    Principle of operation
    Create a Cluster
    Join a Cluster
    The "high availability" menus
    High Availability Monitoring

Labs

    Architecture diagram
    LAB 1: Basics of configuration
    LAB 2: Stateful tracking in a routed environment
    LAB 3: Configuring NAT Objects and Policy
    LAB 4: Event of application protocols
    LAB 5: PKI
    LAB 6: SSL Proxy
    LAB 7: IPSec VPN with Certificates
    LAB 8: GRE and GRETAP Tunnels
    LAB 9: Transparent authentication by certificate
    LAB 10: High Availability

In the article "Cyberattack ... still alive!" was reported how we coped with a terrible cyberattack a few months ago. And that was before I was certified "Network Expert"! Now it's official: the pirates just have to stand ... Here is Verdun (*): we do not pass ;-)

(*) Encart culturel : Verdun (55100)

La ville de Verdun s’est autoproclamée Capitale Mondiale de la paix en 1966. Les présidents Mitterrand et Kohl s’y sont tenu la main en 1984.

François Mitterrand (à gauche) et Helmut Kohl, le 22 septembre 1984, à Douaumont (Meuse), près de Verdun. (source)

Liens :

• https://www.stormshield.com/fr/qui-sommes-nous/
• https://www.ssi.gouv.fr/entreprise/produits-certifies/cc/produits-certifies-cc/produits-reseau/
• https://inventaire.cncp.gouv.fr/fiches/2870/
• https://www.ssi.gouv.fr/entreprise/produits-certifies/cc/produits-certifies-cc/produits-reseau/
• http://www.netasq.com/landing/netasq-fr.html
• https://www.nrc.fr/stormshield-securite-informatique/
• http://www.intercariforef.org/formations/certified-stormshield-network-expert-csne/certification-96557.html
• https://fr.wikipedia.org/wiki/Stormshield