+91-7838386771
+91-7838173747
Why EIIT? | About Us | Contact Us

COURSE TOPICS:

  • Introduction to Check Point Technology
  • Deployment Platforms
  • Introduction to the Security Policy
  • Monitoring Traffic and Connections
  • Network Address Translation
  • Using Smart Update
  • User Management and Authentication
  • Identity Awareness
  • Introduction to Check Point VPNs
COURSE OBJECTIVES INCLUDE:

Describe Check Point’s unified approach to network management, and the key elements of it

  • Design a distributed environment & Install the Security Gateway in a distributed environment
  • Perform a backup and restore the current Gateway installation from the command line
  • Identify critical files needed to purge or backup, import and export users and
  • groups and add or delete administrators from the command line
  • Deploy Gateways using the Gaia web Interface Create and configure network, host and
  • gateway objects
  • Verify SIC establishment between the Security Management Server and the Gateway using Smart Dashboard
  • Create a basic Rule Base in Smart Dashboard that includes permissions for administrative users,
  • external services, and LAN outbound use
  • Configure NAT rules on Web and Gateway servers
  • Evaluate existing policies and optimize the rules based on current corporate requirements
  • Maintain the Security Management Server with scheduled backups and policy
  • versions to ensure seamless upgrades with minimal downtime
  • Using Smart View Monitor, configure alerts and traffic counters, view a Gateway’s status,
  • monitor suspicious activity rules, analyze tunnel activity and monitor remote user access
  • Monitor remote Gateways using Smart Update to evaluate the need for upgrades, new
  • installations, and license modifications
  • Use Smart Update to apply upgrade packages to single or multiple VPN-1 Gateways
  • Upgrade and attach product licenses using Smart Update
  • Centrally manage users to ensure only authenticated users securely access the
  • corporate network either locally or remotely
  • Manage users to access the corporate LAN by using external databases
  • Use Identity Awareness to provide granular level access to network resources
  • Acquire user information used by the Security Gateway to control access
  • Define Access Roles for use in an Identity Awareness rule
  • Implement Identity Awareness in the Firewall Rule Base
  • Configure a pre-shared secret site-to-site VPN with partner sites
  • Configure permanent tunnels for remote access to corporate resources
LAB EXERCISES INCLUDE:
  • Distributed Installations and SIC
  • Stand-alone Security Gateway Installations
  • Common Tools
  • Building a Security Policy
  • Configure the DMZ
  • Configure NAT
  • Monitor with Smart View Tracker
  • Client Authentication
  • Identity Awareness
  • Site-to-Site VPN between corporate and branch office

Exam# 156-215.80

COURSE TOPICS:

  • Advanced Firewall
  • Advanced Upgrading
  • Advanced User Management
  • Advanced Clustering
  • Advanced Acceleration
  • Advanced IPsec VPN
  • Remote Access
  • Auditing and Reporting
COURSE OBJECTIVES INCLUDE:
  • Perform debugs on firewall processes using your knowledge of Security Gateway infrastructures including chain modules, packet flow and kernel tables
  • Perform a backup of a Security Gateway and Management Server using the differences between backups, snapshots and upgrade-exports
  • Upgrade and troubleshoot a Management Server using a database migration
  • Upgrade and troubleshoot a clustered Security Gateway deployment
  • Configure SmartDirectory to incorporate user information for authentication services on the network
  • Manage internal and external user access to resources for Remote Access of across a VPN
  • Troubleshoot user access issues found when implementing Identity Awareness
  • Build, test and troubleshoot a ClusterXL Load Sharing deployment on an enterprise network
  • Build, test and troubleshoot a ClusterXL High Availability deployment on an enterprise network
  • Build, test and troubleshoot a management HA deployment on an enterprise network
  • Configure, maintain and troubleshoot SecureXL and CoreXL acceleration solutions on the corporate network traffic to ensure noted performance enhancement on the firewall
  • Troubleshoot a site-site or certificate-based VPN on a corporate gateway using IKEView, VPN log files and command-line debug tools
  • Optimize VPN performance and availability by using Link Selection and Multiple Entry Point solutions
  • Manage and test corporate VPN tunnels to allow for greater monitoring and scalability with multiple tunnels defined in a community including other VPN providers
LAB EXERCISES INCLUDE:
  • Upgrade to Check Point R77
  • Core CLI elements of firewall administration
  • Migrate to a clustering solution
  • Configure SmartDashboard to interface with Active Directory
  • Configure site-to-site VPNS with third-party certificates
  • Remote access with Endpoint Security VPN
  • SmartEvent and SmartReporter

156-315.80 – CCSE

ENQUIRY NOW