-
This core course covers the fundamentals needed to deploy, configure, and manage daily operations of Check Point Security Gateways and Management Software Blades that run on the Gaia operating system. For this purpose, it introduces the operation of the different software elements and explains the individual steps that are necessary to build an individually customized firewall. In addition to the GAiA operating system, the course draws on release R81.20 for this purpose.
-
Course Contents
-
- Security Architecture
- SmartConsole
- Deployment
- Object Management
- Licenses and Contracts
- Policy Rule and Rulebase
- Policy Packages
- Policy Layers
- Traffic Inspection
- Network Address Translation
- Application Control
- URL Filtering
- Logging
- Snapshots
- Backup and Restore
- Gaia
- Permissions
- Policy Installation
You will receive the original course documentation as a Check Point e-Kit.
-
Target Group
-
Technical professionals who support, install deploy or administer Check Point products.
Those seeking CCSA 81.20 certification should also take this course.
-
Knowledge Prerequisites
-
Participants should have a good knowledge of Unix-like and Windows operating systems and TCP/IP Networking.
-
Complementary and Continuative Courses
-
Check Point Certified Security Expert R81.20 – CCSE
Check Point Cybersecurity BootCamp R81.20 – CCSA & CCSE
Check Point Harmony Endpoint Specialist R81.20 – CCES
Check Point Certified Troubleshooting Administrator R81.20 – CCTA -
Course Objective
-
- Describe the primary components of a Check Point Three-Tier Architecture and explain how they work together in the Check Point environment.
- Explain how communication is secured and how traffic is routed in the Check Point environment.
- Describe the basic functions of the Gaia operating system.
- Identify the basic workflow to install Security Management Server and Security Gateway for a single-domain solution.
- Create SmartConsole objects that correspond to the organization’s topology for use in policies and rules.
- Identify the tools available to manage Check Point licenses and contracts, including their purpose and use.
- Identify features and capabilities that enhance the configuration and management of the Security Policy.
- Explain how policy layers affect traffic inspection.
- Articulate how Network Address Translation affects traffic.
- Describe how to configure manual and automatic Network Address Translation (NAT).
- Demonstrate an understanding of Application Control & URL Filtering and Autonomous Threat Prevention capabilities and how to configure these solutions to meet an organization’s security requirements.
- Articulate how pre-shared keys and certificates can be configured to authenticate with third party and externally managed VPN Gateways.
- Describe how to analyze and interpret VPN tunnel traffic.
- Configure logging parameters.
- Use predefined and custom queries to filter log results.
- Identify how to monitor the health of supported Check Point hardware using the Gaia Portal and the command line.
- Describe the different methods for backing up Check Point system information and discuss best practices and recommendations for each method.
Exercises |
Deploying SmartConsole |
Installing a Security Management Server |
Installing a Security Gateway |
Configuring Objects in SmartConsole |
Establishing Secure Internal Communication |
Managing Administrator Access |
Managing Licenses |
Creating a Security Policy |
Configuring Order Layers |
Configuring a Shared Inline Layer |
Configuring NAT |
Integrating Security with a Unified Policy |
Elevating Security with Autonomous Threat Prevention |
Configuring a Locally Managed Site-to-Site VPN |
Elevating Traffic View |
Monitoring System States |
Maintaining the Security Environment |
Certification as CCSA R81/CCSE R81 Certifications – Check Point Certified Security Administrator/Expert
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses
-
This core course covers the fundamentals needed to deploy, configure, and manage daily operations of Check Point Security Gateways and Management Software Blades that run on the Gaia operating system. For this purpose, it introduces the operation of the different software elements and explains the individual steps that are necessary to build an individually customized firewall. In addition to the GAiA operating system, the course draws on release R81.20 for this purpose.
-
Course Contents
-
- Security Architecture
- SmartConsole
- Deployment
- Object Management
- Licenses and Contracts
- Policy Rule and Rulebase
- Policy Packages
- Policy Layers
- Traffic Inspection
- Network Address Translation
- Application Control
- URL Filtering
- Logging
- Snapshots
- Backup and Restore
- Gaia
- Permissions
- Policy Installation
You will receive the original course documentation as a Check Point e-Kit.
-
Target Group
-
Technical professionals who support, install deploy or administer Check Point products.
Those seeking CCSA 81.20 certification should also take this course.
-
Knowledge Prerequisites
-
Participants should have a good knowledge of Unix-like and Windows operating systems and TCP/IP Networking.
-
Complementary and Continuative Courses
-
Check Point Certified Security Expert R81.20 – CCSE
Check Point Cybersecurity BootCamp R81.20 – CCSA & CCSE
Check Point Harmony Endpoint Specialist R81.20 – CCES
Check Point Certified Troubleshooting Administrator R81.20 – CCTA -
Course Objective
-
- Describe the primary components of a Check Point Three-Tier Architecture and explain how they work together in the Check Point environment.
- Explain how communication is secured and how traffic is routed in the Check Point environment.
- Describe the basic functions of the Gaia operating system.
- Identify the basic workflow to install Security Management Server and Security Gateway for a single-domain solution.
- Create SmartConsole objects that correspond to the organization’s topology for use in policies and rules.
- Identify the tools available to manage Check Point licenses and contracts, including their purpose and use.
- Identify features and capabilities that enhance the configuration and management of the Security Policy.
- Explain how policy layers affect traffic inspection.
- Articulate how Network Address Translation affects traffic.
- Describe how to configure manual and automatic Network Address Translation (NAT).
- Demonstrate an understanding of Application Control & URL Filtering and Autonomous Threat Prevention capabilities and how to configure these solutions to meet an organization’s security requirements.
- Articulate how pre-shared keys and certificates can be configured to authenticate with third party and externally managed VPN Gateways.
- Describe how to analyze and interpret VPN tunnel traffic.
- Configure logging parameters.
- Use predefined and custom queries to filter log results.
- Identify how to monitor the health of supported Check Point hardware using the Gaia Portal and the command line.
- Describe the different methods for backing up Check Point system information and discuss best practices and recommendations for each method.
Exercises |
Deploying SmartConsole |
Installing a Security Management Server |
Installing a Security Gateway |
Configuring Objects in SmartConsole |
Establishing Secure Internal Communication |
Managing Administrator Access |
Managing Licenses |
Creating a Security Policy |
Configuring Order Layers |
Configuring a Shared Inline Layer |
Configuring NAT |
Integrating Security with a Unified Policy |
Elevating Security with Autonomous Threat Prevention |
Configuring a Locally Managed Site-to-Site VPN |
Elevating Traffic View |
Monitoring System States |
Maintaining the Security Environment |
Certification as CCSA R81/CCSE R81 Certifications – Check Point Certified Security Administrator/Expert
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses