Check Point CCSE NGX R71 Course Overview


Published on

Check Point CCSE NGX R71 Course Overview

Published in: Technology
  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Check Point CCSE NGX R71 Course Overview

  1. 1. Check Point Security Administration NGX I<br />Course Overview<br />
  2. 2. Course Description<br />Objectives<br />Describe Check Point’s unified approach to network management, and the key elements of this architecture<br />Design a distributed environment using the network detailed in the course topology<br />Install the Security Gateway version R71 in a distribute environment using the network detailed in the course topology<br />Given Check Point’s latest integration of CoreXL technology, select the best security solution for your corporate environment<br />Given network specifications, perform a backup and restore the current Gateway installation from the command line<br />Check Point Security Administration NGX R71 I<br />
  3. 3. Course Description<br />Objectives<br />Identify critical files needed to purge or backup, import and export users and groups and add or delete administrators from the command line<br />Deploy Gateways using sysconfig and cpconfig from the Gateway command line<br />Use the Command Line to assist support in troubleshooting common problems on the Security Gateway<br />Given the network topology, create and configure network, host and gateway objects<br />Verify SIC establishment between the SmartCenter Server and the Gateway using SmartDashboard<br />Create a basic Rule Base in SmartDashboard that includes permissions for administrative users, external services, and LAN outbound use<br />Check Point Security Administration NGX R71 I<br />
  4. 4. Course Description<br />Objectives<br />Configure NAT rules on Web and Gateway servers<br />Evaluate existing policies and optimize the rules based on current corporate requirements<br />Maintain the Security Management Server with scheduled backups and policy versions to ensure seamless upgrades and minimal downtime<br />Use queries in SmartView Tracker to monitor IPS and common network traffic and troubleshoot events using packet data<br />Using packet data on a given corporate network, generate reports, troubleshoot system and security issues, and ensure network functionality<br />Using SmartView Monitor, configure alerts and traffic counters, view a Gateway's status, monitor suspicious activity rules, analyze tunnel activity and monitor remote user access based on corporate requirements<br />Check Point Security Administration NGX R71 I<br />
  5. 5. Course Description<br />Objectives<br />Monitor remote Gateways using SmartUpdate to evaluate the need for upgrades, new installations, and license modifications<br />Use SmartUpdate to apply upgrade packages to single or multiple VPN-1 Gateways<br />Upgrade and attach product licenses using SmartUpdate<br />Centrally manage users to ensure only authenticated users securely access the corporate network either locally or remotely<br />Manage users to access to the corporate LAN by using external databases<br />Select the most appropriate encryption algorithm when securing communication over a VPN, based on corporate requirements<br />Check Point Security Administration NGX R71 I<br />
  6. 6. Course Description<br />Objectives<br />Establish VPN connections to partner sites in order to establish access to a central database by configuring Advanced IKE properties<br />Configure a pre-shared secret site-to-site VPN with partner sites<br />Configure a certificate based site-to-site VPN using one partner's internal<br />Configure a certificate based site-to-site VPN using a third-party CA<br />Configure permanent tunnels for remote access to corporate resources<br />Configure VPN tunnel sharing, given the difference between host-based, subnet-based and gateway-based tunnels<br />Check Point Security Administration NGX R71 I<br />
  7. 7. Course Description<br />Objectives<br />Configure Check Point Messaging Security to test IP Reputation, content based anti-spam, and zero hour virus detection<br />Based on network analysis disclosing threats by specific sites, configure a Web-filtering and antivirus policy to filter and scan traffic<br />Implement default or customized profiles to designated Gateways in the corporate network<br />Check Point Security Administration NGX R71 I<br />
  8. 8. Course Layout<br />Course Requirements<br />Prerequisites<br />Check Point Certified Security Administrator (CCSA)<br />Check Point Security Administration NGX R71 I<br />
  9. 9. The course is geared towards<br />System administators<br />Support analysts<br />Network engineers<br />Course Requirements<br />
  10. 10. Each delegate should have :<br />General knowledge of TCP/IP<br />Working knowledge of Windows and/or Unix<br />Working knowledge of network technology<br />Working knowledge of the Internet<br />Pre-requisites<br />
  11. 11. Course Map<br />Module 1: Check Point Technology Overview<br />Module 2: Deployment Platforms<br />Module 3: Introduction to the Security Policy<br />Module 4: Monitoring Traffic and Connections<br />Module 5: Using SmartUpdate<br />Module 6: Upgrading to R71<br />Module 7: User Management and Authentication<br />Module 8: Encryption and VPNs<br />Module 9: Introduction to VPNs<br />Module 10: Messaging and Content Security<br />Course Map<br />
  12. 12. Lab Setup<br />Lab Topology<br />IP Addresses<br />Lab Terms<br />Lab Stations<br />Lab Setup<br />
  13. 13. Lab Topology<br />
  14. 14. NGX R71 Security Software Containers by Platform<br />
  15. 15. NGX R71 Security Gateway Software Blades by Platform<br />
  16. 16. NGX R71 Security Management Software Blades by Platform<br />
  17. 17. NGX R71 Minimum RequirementSecurity Management Server<br />
  18. 18. NGX R71 SmartConsoleHardware Requirements<br />
  19. 19. End<br />End of Course Overview<br />