This is enrollment page for only Checkpoint module.
To enroll to complete Combo Bundle: Firewall mastery 5IN1 – Learn 5 Top Technologies = PALO + CHECKPOINT + FORTIGATE + ASA/FTD + F5 LTM LOADBALANCER, more info !!!
Check Point R81 Firewall
Welcome to Check Point’s Cyber Security Platform.
R81 is the industry’s most advanced Threat Prevention and security management software that delivers uncompromising simplicity and consolidation across the enterprise. Whether it is deploying the latest technologies and security to protect the organization or expertly crafting security policies.
R81 new features include: Infinity Threat Prevention, the industry’s first autonomous Threat Prevention system that provides fast, self-driven policy creation and one-click security profiles keeping policies always up to date.
Policies are installed in seconds, upgrades require only one click, and gateways can be simultaneously upgraded in minutes.
R81 further features secure connectivity for encrypted traffic utilizing the latest standards including TLS 1.3 and HTTP/2. In addition, the Scalable Platform software is now aligned with the R81 Cyber Security Platform bringing feature parity to Check Point Maestro.
What’s New in R81:
Features | Features | Features |
---|---|---|
Infinity Threat Prevention | Security Gateway and Gaia | Scalable Platforms |
HTTPS Inspection | Access Control | Policy Installation |
NAT Rule Base | Identity Awareness | IPsec VPN |
Mobile Access | Clustering | VSX |
Acceleration | Remote Access VPN | Gaia OS |
Gaia REST API | Advanced Routing | CloudGuard Controller |
CloudGuard Data Centers | Central Deployment | Multi-Domain Server |
SmartConsole | SmartEvent | Logging and Monitoring |
Management Server Upgrade | Central Deployment | Endpoint Security |
What You Get:
- 40+ Hours – Live Online Instructor-led Training
- Lifetime Access to Web-portal Recordings
- 1.5 Months – Access to Our Lab Server Rack
- 1.5 Months – Live Dedicated Trainer Support
- You Learn – Checkpoint R81
- Instant Access to Recordings after the Live Class
- 24×7 – Home Lab Setup Provided with 100+ Workbook for self practicing
- 10% OFF – Avail additional discount on our next Instructor-led Online Course
- Material: All training Material will be provided in pdf, CLI commands, study material
Course Content – Detailed
Module 1: NGFW overview & CheckPoint Features
- [THEORY] Why do we need Firewall in spite of ACL in Router
- [THEORY] Stateful Inspection
- [THEORY] CheckPoint UTM Features
Module 2: CheckPoint Components Overview
- [THEORY] Firewall / Gateway/ Enforcement Module (NG Appliances)
- [THEORY] Management Server (Smart-1 Appliances)
- [THEORY] Log Server
Module 3: CheckPoint Installation Scenarios
- [THEORY] Standalone Installation (2 Tier)
- [THEORY] Distributed Installation (3 Tier)
- [THEORY] Standalone vs Distributed
Module 4: CheckPoint Standalone (2-Tier) Installation
- [LABS] Installation of CheckPoint ISO (FW + Management) in PNET Site-A setup
- [LABS] Installation of Smart Console at Site-A on Windows PC
- [LABS] Enabling Blades on CheckPoint Objects
- [LABS] Configure Network Interfaces & Topology (Anti-Spoofing concept)
- [LABS] Configure Routing (static & Default Routes)
- [LABS] Login to the Console and install Default Policy
Module 5: CheckPoint Distributed (3-Tier) Installation
- [LABS] Installation of CheckPoint ISO (FW) in PNET Site-B setup
- [LABS] Installation of CheckPoint ISO (Management) in PNET Site-B setup
- [LABS] Adding a Gateway to the Security Management Server (SIC Integration)
- [LABS] SIC Troubleshooting
- [THEORY] Expert Mode & CLISH
- [LABS] Expert Mode & CLISH
Module 6: Managing Administrators
- [THEORY] Add Permission Profile
- [LABS] Add Permission Profile
- [THEORY] Add Administrator and Add Permission Profile
- [LABS] Add Administrator and Add Permission Profile
- [THEORY] Database Lock concepts
- [LABS] Database Lock concepts
Module 7: Policies
- [LABS] Add a Site-C Firewall to Management Server at Site B
- [LABS] Add a Policy for Site-C Firewall on Management Server B
- [LABS] Add a Policy for Site-B to Site-C connectivity
- [THEORY] Policy Objects ( Nodes, Host, Network, Groups, Address Ranges, Services etc.)
- [LABS] Policy Objects ( Nodes, Host, Network, Groups, Address Ranges, Services etc.)
- [LABS] Add Internet Access Rule
Module 8: Policies (contd.)
- [LABS] Add FW Management Rules
- [LABS] Add DMZ Access Rules
- [THEORY] Policy Layers (Introduction)
- [THEORY] Ordered Layers and Inline Layers
- [LABS] Ordered Layers and Inline Layers
- [THEORY] Policy Optimization for performance
- [THEORY] Implied rules & Global Properties
- [LABS] Implied rules & Global Properties
- [THEORY] Stealth Rule, Clean-up Rule
- [LABS] Stealth Rule, Clean-up Rule
Module 9: Logs Management and Adminsitration
- [THEORY] Log Files & Troubleshootin (Filters, etc)
- [LABS] Log Files & Troubleshootin (Filters, etc)
- [THEORY] Log files Management
- [LABS] Log files Management
Module 10: Network Address Translation
- [THEORY] NAT Theory & Concepts
- [THEORY] Auto NAT (Hide & Static) Lab
- [LABS] Auto NAT (Hide & Static) Lab
- [THEORY] Manual NAT (Hide & Static) Lab
- [LABS] Manual NAT (Hide & Static) Lab
- [THEORY] PAT Concepts
- [THEORY] No-NAT Concept
Module 11: CheckPoint Clustering
- [LABS] Add Cluster object
- [LABS] Add Cluster Members
- [LABS]Configure Clustering
- [LABS] Test Clustering
- [LABS] High-Availabilitiy and Load Sharing scenarios
Module 12: HTTPS Inspection
- [THEORY] SSL Concept & HTTPS Inspection
- [LABS] Configure HTTPS Inspection
- [LABS] Generate HTTPS Cerificate and install the Certificate on Nodes
- [LABS] Enable HTTPS Inspection Blade & Deploy Policy for SSL Decrytion
- [LABS] Test SSL Decryption
Module 13: UTM Features
- [LABS] Application Control
- [LABS] URL filtering
- [LABS] Conetent Awareness
- [LABS] DLP
- [THEORY] Threat Prevention Policy (Concept and Overview)
- [THEORY] IPS (Concept and overview)
Module 14: Identity Awareness
- [THEORY] User based Access rule with authenticated Access
- [LABS] User based Access rule with authenticated Access
- [LABS] Client Authentication
- [LABS] Install AD server at Site-b
- [LABS] Enable Identity Awareness Blade
- [LABS] Configure Identity Awareness rules based on Access objects
- [THEORY] VPN Theory
- [LABS] VPN Site-A to Site-B configuration (Lab)
- [LABS] Remote Access VPN
- [LABS] Mobile Access / SSL VPN
- [LABS] VPN tunnel Utility
- [LABS] Backup, Restore & Snapshot through Web GUI
- [LABS] Backup, Restore & Snapshot through CLI
- [THEORY] Central License
- [THEORY] Local License
- [THEORY]Smart update for Licenses& Contracts
- [THEORY] cpconfig
- [LABS] cpconfig
- [THEORY] cpstop and cpstart commands, cprestart
- [LABS] cpstop and cpstart commands, cprestart
- [THEORY] configure interfaces
- [LABS] configure interfaces
- [THEORY] configure routes
- [LABS] configure routes
- [THEORY] Some More commands
- [LABS] Some More commands
More Preview Before You Buy:
Requirements
- PC or Laptop with internet Connection
- Knowledge on basic Networking Components
Who this course is for:
- CCNA certified Network Engineer
- Network L1, L2, L3 Tier
- Senior Network Engineer
- Network Trainers
- Network Consultant
- Mid-level network engineers
- Network administrators
- Network support technicians
- Help desk technicians
- Interns, Freshers, Graduate
Prerequisites
- There are no formal prerequisites, but you should have a good understanding of the exam topics before taking the exam.
- Students expected to have knowledge in basic Network Fundamentals
Certification
- CCSA certification | Exam Code: 156-215.80 | Official Exam Price: $250 (USD)
Student Success Feedback
Option 2 - You may proceed to the CCSE to continue in the certification path. This will not extend the CCSA.
Option 3 - You may retake and pass the CCSA exam for another 2-year extension.
Recertify your CCSA by passing the CCSA certification exam again.
You are still eligible to take the CCSE to advance in the certification path if your CCSA is expired.
2. Click “MY CHECK POINT”
3. Click “My Certifications” under the “My Info” option to see a list of your certifications and their expiration dates.
Note: Starting at 60 days before a core certification expires, our system will notify you by email several times on a regular interval to remind you of your expiring certification.
Passing a second ISA exam will award you the CCSM certification.
Option 2 - You may retake the CCSE for another 2-year extension.
Requirements
- PC or Laptop with internet Connection
- Basic Knowledge of Networking fundamentals
Features
- No prior knowledge of Checkpoint required. We start from Scratch
- 1.5 Months of Lab access provided
- 40+ Hours Video Content - Lifetime Access
- Live Dedicated Trainer Support - 1.5 Months
- Detailed Course Content Shared Already
Target audiences
- NOC Engineers
- L1, L2, L3, L4 Network Engineers
- Network Engineers
- CCNA, CCNP, CCIE Certified Engineers
- Network security administrators
- Network administrators
- Network analyst
- Network engineers
- Network analyst
- Network consultants