A2501

Check Point Security Administration NGX I

Utbildningen riktar sig till nätverksadministratörer och säkerhetspersonal som behöver lära sig FireWall-1 NG. Utbildninen ger hands-on erfarenhet. Utbildningen förbereder för Check Points certifiering CCSA.

Denna kurs kommer att fasas ut under våren -10 och vi hänvisar i stället till den nya versionen R70. Länk till kursen: A2512 Check Point Security Administrator R70

Audience:

You are a systems administrator, security manager, or network engineer who manages NGX R65 Security Gateway deployments
Want to earn Check Point Certified Security Administrator (CCSA) NGX R65 certification

Check Point Security Administration I NGX (R65) is a foundation course for Check Point's flagship product, VPN-1 (NGX R65). This course provides an understanding of basic concepts and skills necessary to configure VPN-1. During this course, students will configure a Security Policy, and learn about managing and monitoring a secure network.

**With the addition of the optional Check Point Security Administration I NGX on UTM-1/Power-1 supplement, the Check Point Certified Security Administrator NGX (CCSA NGX) certification candidate also learns the basic skills for configuring VPN-1 NGX on a Check Point UTM-1/Power-1 Appliance during the course.

You will learn

How VPN-1 components and Check Point's three-tier architecture works to secure your network
How to perform command-line operations using Check Point's SecurePlatform operating system
How to back up critical files and directories, for availability and timely recovery of Security Gateways and SmartCenter Servers
How to create objects and rules and modify a Security Policy's properties
How to use monitoring tools to track, monitor, and account for all connections logged by Check Point components
How to configure network-bandwidth requirements and interpret the results
How to use Network Address Translation to overcome IP addressing limitations
How to verify the identity of users logging in to VPN-1 using authentication schemes
How to implement LDAP, and integrate it with a SmartCenter Server
How to protect organizations from known network attacks and entire categories of emerging or unknown attacks, using SmartDefense
How to configure Web-filtering and antivirus settings on a Gateway to ensure traffic content is inspected for specific conditions.

Exercises

Installing and configuring the SmartCenter Server
Installing SecurePlatform Pro on the Security Gateway
Configuring the Security Gateway using the WebUI
Configure an interface as your management connection using the sysconfig utility
Backing up a current configuration from the command line
Create network objects
Establish trust between a Gateway and SmartCenter Server
Develop a network model using SmartMap
Create a Policy Package to configure a Rule Base
Enable Static NAT on a network
Simulate a malicious network intrusion, and blocking the attack
Enforce the Suspicious Activity Rule with SmartView monitor
Create user templates and define users
Test Client Authentication
Configure SmartDirectory using Microsoft Active directory to authenticate users
Configure QoS rules to support traffic-priority requirements
Configure SmartDefense to detect port scans and successive multiple-connection attempts
Configure Web Intelligence to detect a simple worm signature