Check Point Security Administration (CCSA) R70 — A 5-day course

Synopsis

Check Point Security Administration R70 is a foundation course for Check Point's Security Management Systems, Security Gateway Systems, and deployment platforms.

This course provides an understanding of basic concepts and skills necessary to configure Check Point Software Blades including Firewall, IPSEC VPN, IPS, Network Policy Management, Logging and Status, and Monitoring, URL Filtering, Antivirus and Anti-malware, Anti-spam and Email Security.

During this course, students will configure a Security Policy, secure communications across the Internet, defend against network threats, and learn about managing and monitoring a secure network.

Course Objectives

On completion of this course, delegates will be able to:

Design and install version R70 in a distributed environment
Perform a backup and restore the current installation.
Identify critical files
Deploy Gateways
Create and configure network, host and gateway objects.
Verify SIC establishment
Create a basic Rule Base
Configure NAT rules
Evaluate existing policies and optimize rules
Ensure seamless upgrades and minimal downtime
Use queries to monitor IPS and common network traffic and troubleshoot events
Generate reports, troubleshoot system and security issues, and ensure network functionality
Configure alerts and traffic counters, monitor suspicious activity, analyze tunnel activity and monitor remote user access
Apply upgrade packages
Attach product licenses
Perform a pre-installation compatibility assessment
Centrally manage users and manage users’ access using external databases
Configure a pre-shared secret site-to-site VPN
Configure a certificate based site-to-site VPN using an internal CA or a third party CA
Configure permanent tunnels for remote access
Configure VPN tunnel sharing
Configure Check Point Messaging Security to test IP Reputation, content based anti-spam, and zero hour virus detection
Configure a Web-filtering and antivirus policy to filter and scan traffic
Implement default or customized profiles to designated Gateways
Create and install IPS policies

Suitable for

You are a systems administrator, security manager, or network engineer who manages R70 Security Gateway deployments on open servers, IP appliances, UTM-1 appliances, or Power-1 appliances.
You want to earn Check Point Certified Security Administrator (CCSA) R70 certification.

Prerequisites

Basic networking knowledge, knowledge of Windows Server and/or UNIX, and experience with TCP/IP and the Internet.

Certification

This course meets the requirements for the CCSA NGX R70 certification.

A separate examination (not part of or included with the course) is available for delegates who wish to have formal certification. Please contact us for more details.

Prior to taking Check Point certifications, Check Point recommend delegates attending the authorized training course(s), study the official manual (provided only on authorized courses) and have 6 months experience using the technology.

Publicly scheduled dates, locations, and prices

London — £2195 (+VAT)

2–6 Aug 2010
16–20 Aug 2010
6–10 Sep 2010
4–8 Oct 2010
29 Nov–3 Dec 2010

Reading — £2195 (+VAT)

8–12 Nov 2010

Manchester — £2195 (+VAT)

13–17 Sep 2010
25–29 Oct 2010
6–10 Dec 2010

Harrogate — £2195 (+VAT)

27 Sep–1 Oct 2010

Course Contents

Distributed Installation

Install and configure the Security Management Server
Install SecurePlatform on the Security Gateway
Configure the Security Gateway using WebUI
Launch SmartDashboard

Branch Office Security Gateway Installation

Configure Branch Gateway via WebUI

Command Line Interface (CLI) Tools

Initialize the ICA
Set expert password
Add and delete administrators
Run backup and restore

Configure DMZ

Configure DMZ Interface on the Gateway
Create a DMZ Object

Configure NAT

Configure Hide NAT
Configure Static NAT
Observe NAT using fw monitor

Monitoring with SmartView Tracker

Launch SmartView Tracker
Track by Source and Destination

Using SmartUpdate

Get Gateway data and run Cpinfo
Download HFA Package

Upgrade a Security Gateway Locally

Client Authentication

Configure Manual Client Authentication with FTP and Local User
Configure Partially Automatic Client Authentication with LDAP
Test Active Directory Authentication
Create a Database Revision

Configure a Site-to-Site VPN

Define the VPN Domain
Create the VPN Community
Create VPN Rule
Test VPN Connection
VPN Troubleshooting

Configure Two Gateway IKE Encryption Using Certificates

Save a Certificate for Export
Add Machine to VPN Community
Create a Certificate Authority
Modify Rule Base
Install and Verify Security Gateway Configuration
Test Encryption with Certificates
Revert to Standard Security Policy

Remote Access and Office Mode

Create Remote Access Group
Configure Gateway for IKE Encryption and LDAP Authentication
Configure VPN Domain
Configure Office Mode IP Pool
Configure Remote Access Object
Modify Rule Base for Remote Access
Create a Site Using Site Wizard
Verifying Office Mode IP Assignment
Test Remote Connection

Messaging and Content Security

Configure IPS for Preliminary Detection
Analyze Attacks
Reconfiguring IPS to Block Attacks
Review Logs

Printer-friendly version

Check Point training UK enquiries

Training Enquiries & Feedback Form.

Email: training@gbdirect.co.uk

Phone: 0800 651 0338

Please call between 0900 and 1700 (UK time) on Monday to Friday

Your Wishlist

Check Point training UK prices

For publicly scheduled training (individual places), see our UK training schedule.

For current special offers on courses, see our Special Offers section.

In-house training for company groups is charged at a daily rate per group — see our In-House UK Training Guidelines.

Publicly Scheduled Training Locations

We currently run public training courses across the UK including following locations:

London, UK
Leeds, West Yorkshire, UK
Aberdeen, Scotland, UK
Bradford, West Yorkshire, UK
Birmingham, West Midlands, UK
Bournemouth, Dorset, UK
Bristol, South West
Carshalton, Surrey, UK
Chester, North West, UK
Cheshire, North West, UK
Coventry, West Midlands, UK
Crawley, West Sussex, UK
Derby, East Midlands, UK
Dublin, Ireland
Edinburgh, Scotland, UK
Exeter, South West, UK
Glasgow, Scotland, UK
Harrogate, North Yorkshire, UK
Harwell, Oxfordshire, UK
Hinckley, Leicestershire, UK
Lancashire, North West, UK
Liverpool, North west, UK
Maidenhead, Berkshire, UK
Manchester, North West, UK
Milton Keynes, Buckinghamshire, UK
Nottinghamshire, East Midlands, UK
Reading, Berkshire, UK
Sheffield, South Yorkshire, UK
Slough, Berkshire, UK
Stevenage, Hertfordshire, UK
Swindon, South West, UK
Tyne and Wear, North East, UK
Wakefield, West Yorkshire, UK
Wokingham, Berkshire, UK
Wiltshire, South West, UK
Wirral, North West, UK

Most UK public training courses are available on a monthly basis.

Please see the individual course outlines or our public training schedule for details.

In-house (on-site) training locations

We deliver in-house courses at client premises and/or training facilities in any part of the world which is practically and commercially accessible.

Our In-house training guidelines outline our basic requirements and our UK pricing structure. To estimate costs for training in other countries, simply convert to your local currency and then make a rough calculation of our tutor's costs for travelling to and staying at your location.