training@wcp


CheckPoint
 » CCSA (CP2000) 
» CCSE (CP2000) 
» CCSA & CCSE 

 » CCSA NG
 » CCSE NG
 » CCSA&CCSE  NG

CISCO
» PIX v6.x


NOKIA
» VPN-1 Appliance

Hacking
» Hacking & Countermeasures

Training
» Home

Need training
at your location?
          
Please contact us and we will be happy to assist you.

 


 

   VPN-1/Firewall-1 Management II CP2000

Course Overview

This course builds on the concepts covered in the CCSA class and provides a more in-depth coverage of FireWall-1 technology. Topics that are covered include the concepts of Load Balancing, Security Management, Account and Remote Management, and Encryption including SecuRemote.  It includes more in-depth information on setting up multiple firewall systems, using different encryption schemes, integration with routers, LDAP and more.

The course contains extensive hands-on lab exercises accompanied by lecture and discussion.

Both NT and Unix servers are discussed in this course.


Course Fee
 The course fee includes lecture, labs and detailed course material and test voucher. Free continental breakfast is provided every day.

Course Duration Cost Register
CCSE (NT/Unix) 3 days $2,195.00


Who Should Attend
 Network Administrators and Security Professionals interested in learning the FireWall-1 product and features with a hands-on approach.

Prerequisites
 Unix or NT experience and knowledge of TCP/IP. It is strongly recommended that students have a working knowledge of the FireWall-1 product or complete the CCSA course prior to attending this class.

Course Outline

User Defined Tracking
  • Setting Up User Defined Tracking
  • Adding User Defined Tracking to the Security Policy
  • Lab: User Defined Tracking using alertf
LDAP
  • LDAP
  • AMC Installation
  • Starting the AMC
  • Account Management Configuration
  • Adding LDAP Authentication to a Security Policy
  • Lab: Using LDAP
Load Balancing
  • Load Balancing Components
  • Logical Server Types
  • Setting Up Load Balancing Algorithms
  • HTTP Logical Server
  • Labs
Content Security and CVP
  • Understanding Content Security
  • Installing and Configuring the CVP Manager
  • Chained Server Functionality
  • Load Sharing
  • Configuration
  • Authenticated Communications (Control) Channel
  • RADIUS Server
Encryption and VPNs
  • VPN-1 Products
  • Licensing VPN-1 Products
  • How Encryption Works
  • FW-1 Encryption Schemes and Algorithms
  • Encryption Technologies
  • Tunneling vs In-Place Encryption
  • Digital Signatures
  • Certificate Authorities and Digital Certificates
Encryption Schemes Detailed
  • FWZ Encryption
  • IKE Encryption
  • SKIP Encryption
  • Labs
SecuRemote
  • Installation of SecuRemote
  • Configuring SecuRemote
  • FWZ Encapsulation
  • Support for Public Key Infrastructures
  • Lab: SecuRemote Server using SecuRemote in an FWZ VPN
Using Policy Server with SecuRemote/SecureClient
  • Securing a Subnetwork
  • Defining the Desktop Policy
  • Defining Users and Groups
  • Configuring the Policy Server
  • Lab: Configuring the Policy Server
  • Installing Desktop Policies
  • Adding a Policy Server to the RuleBase
  • Passwords
  • User Modification of Desktop Configuration
  • Lab: Using SecureClient in an FWZ VPN
SYNDefender
  • TCP/IP Handshake
  • Deploying SYNDefender with FW-1
  • Defense Against SYN Flood Attacks
  • SYNDefender Gateway
  • Passive SYNDefender Gateway
  • Lab: Reacting and Deploying SYNDefender

.

 

 
CCSA-CCSE Bundle!


Register Today

Class Schedules

Testimonials