Check Point NGX R65 Security Administration on Nokia IP Security Platforms — A 5-day course

Synopsis

This is a 4-day, instructor-led course, which covers configuring and implementing Check Point NGX on Nokia IP Security Platforms. The course provides the information and experience necessary to deploy and manage Internet firewalls on the Nokia family of security products. Hands-on exercises enable students to demonstrate a thorough knowledge of the platform operations, effectively configure security policies, and successfully deploy Internet security solutions.

Course Objectives

On completion of this course, delegates will be able to:

Define Nokia Security Platform features and routing terminology
Identify the fundamental design considerations for the Nokia IP Security Platform
Deploy VPN-1 NGX modules and components
Define a security policy using the VPN-1 NGX Security Dashboard, incorporating the SmartMap
Implement network address translation (NAT)
Set up user authentication in a VPN-1 NGX environment
Enable high availability using Virtual Router Redundancy Protocol (VRRP)
Use troubleshooting tools and administrative procedures

Suitable for

People who will be responsible for the installation, implementation or maintenance of a Check Point NGX-protected site using a Nokia Security Appliance
Systems administrators, security managers, or network engineers who manage Checkpoint NGX Gateway deployments
Those who seek Nokia Security Administrator (NO0-002 and/or CCSA NGX #156-215.1 certifications

Prerequisites

Basic knowledge of networking concepts and topologies, and an understanding of the OSI model is required
Working knowledge of internetworking concepts and an understanding of TCP/IP, network addressing and subnet masks
Knowledge of basic router concepts as they relate to Layer 3 of the OSI model, including RIPv1 and v2, and static routes

Publicly scheduled dates, locations, and prices

London — £2195 (+VAT)

12–16 Apr 2010
10–14 May 2010
7–11 Jun 2010

Reading — £2195 (+VAT)

21–25 Jun 2010

Exercises:

Integrate and NSP into an existing network

Configure an NSP using Nokia Network Voyager

Monitor and report statistical information regarding the status of an NSP

Enable SSH and configure SSH options

Configure SSL/TLS communication using Voyager

Configure and NGX Security Gateway for a dstributed environment

Implement a distributed installation of VPN-1 NGX

Launch Check Point's SmartDashboard and verify Internal Certificate Authority configuration

Use SmartDashboard to define network objects and groups

Set up anti-spoofing parameters on an NGX gateway object

Use Check Points SmartMap to convert the logical layout of an organization into a graphical schematic

Configure an NGX Rule Base for proper network functionality, based on specific requirements

Use NGX object cloing to create cloned objects

Use Database Revision Contol to save an NGX Security Policy into several versions

Use Check Point's SmartView Monitor to block a malicious user's network activities

Enfore the Suspicious Activity Rule (SAM Rule) with Smartview Monitor

Identify changes in NGX System status, using SmartView Monitor

Configure Check Point's SmartDefese to detect port scans and multiple connection atte,ps

Enable Hide and Static NAT on a network

Demonstrat the math and mechanics that go into encrypted communication

Create an NGX user template to add users

Make changes to a gateway object, to allow the use of NGX authentication features

Define users who can authenticate to an NGX Gateway

Test User Authentication using a Check Point password

Add fully automatic Client Authentication to a Policy

Configure Check Point's SmartDirectory to interact with Microsoft Active Directory

Use available tools to back up and restore your NGX installation

Configure an NSP to perform a scheduled backup

Configure VRRP and State Synchronization, and implement high availability

Printer-friendly version

Check Point Courses training UK enquiries

UK Training enquiries and feedback form.

Check Point Courses training UK prices

For publicly scheduled training (individual places), see our UK training schedule.

For current special offers on courses, see our Special Offers section.

In-house training for company groups is charged at a daily rate per group — see our In-House UK Training Guidelines.

Publicly Scheduled Training Locations

We currently run public training courses across the UK including following locations:

London, UK
Leeds, West Yorkshire, UK
Aberdeen, Scotland, UK
Bradford, West Yorkshire, UK
Birmingham, West Midlands, UK
Bournemouth, Dorset, UK
Bristol, South West
Carshalton, Surrey, UK
Chester, North West, UK
Cheshire, North West, UK
Coventry, West Midlands, UK
Crawley, West Sussex, UK
Derby, East Midlands, UK
Dublin, Ireland
Edinburgh, Scotland, UK
Exeter, South West, UK
Glasgow, Scotland, UK
Harrogate, North Yorkshire, UK
Harwell, Oxfordshire, UK
Hinckley, Leicestershire, UK
Lancashire, North West, UK
Liverpool, North west, UK
Maidenhead, Berkshire, UK
Manchester, North West, UK
Milton Keynes, Buckinghamshire, UK
Nottinghamshire, East Midlands, UK
Reading, Berkshire, UK
Sheffield, South Yorkshire, UK
Slough, Berkshire, UK
Stevenage, Hertfordshire, UK
Swindon, South West, UK
Tyne and Wear, North East, UK
Wakefield, West Yorkshire, UK
Wokingham, Berkshire, UK
Wiltshire, South West, UK
Wirral, North West, UK

Most UK public training courses are available on a monthly basis.

Please see the individual course outlines or our public training schedule for details.

In-house (on-site) training locations

We deliver in-house courses at client premises and/or training facilities in any part of the world which is practically and commercially accessible.

Our In-house training guidelines outline our basic requirements and our UK pricing structure. To estimate costs for training in other countries, simply convert to your local currency and then make a rough calculation of our tutor's costs for travelling to and staying at your location.

Check Point NGX R65 Security Administration on Nokia IP Security Platforms — A 5-day course

Synopsis

Course Objectives

Suitable for

Prerequisites

Publicly scheduled dates, locations, and prices

Contents:

Identify overall features and benfits of the NSP line

Review the Nokia IPSO design and file structure

Execute the initial setup process of an NSP

Describe the tools available to monitor the status of an NSP

Configure the SSH and SSL

Describe the architectire of VPN-1 NGX

Create and modify an NGX Security Policy

Configure and use SmartView Tracker and Smartview monitor

Configure and use SmartDefense

Configure Hide and Static Network Address Translation (NAT)

Explain encryption for VPNs, comparing and constrasting common encryption methods

Configure User, Client, and Session Authentication

Implement LDAP and integrate it with an NGX SmartCenter Server

Select the appropriate backup strategy to mee disaster-recovery requirements

Use NGX upgrade tools and SmartUpdate to upgrade to NGX

Maintain an NSP, installing, upgrading, and backing up Nokia components

Determine the licensing process for VPN-1 NGX

Configure VRRP and SVRRP