CheckPoint CCSA CCSE Bootcamp (CCSA-CCSE-Bootcamp) R81.10

CheckPoint CCSA CCSE Bootcamp (CCSA-CCSE-Bootcamp) R81.10 – Fast Track Training for 5 days

About this Course

- Save 20% on your CCSA + CCSE Certification with this Fast Track Bundled Offer.
- Five-day course covers everything you need to start-up, configure and manage daily operations of Check Point Security Gateway and Management Software Blades systems on the GAiA operating system.
- Advanced course teaches how to build, modify, deploy and troubleshoot Check Point Security Systems on the GAiA operating system. Hands-on lab exercises teach h ow to debug firewall processes, optimize VPN performance and upgrade Management Servers. Validate and enhance your skills and optimally manage Check Point advanced security management systems.

Course Goals/Skills

Know how to perform periodic administrator tasks
• Describe the basic functions of the Gaia operating system
• Recognize SmartConsole features, functions, and tools .
• Describe the Check Point Firewall infrastructure
• Understand how SmartConsole is used by administrators to grant permissions and user access
• Learn how Check Point security solutions and products work and how they protect networks
• Understand licensing and contract requirements for Check Point security products
• Describe the essential elements of a Security Policy
• Understand the Check Point policy layer concept
• Understand how to enable the Application Control and URL Filtering software blades to block access to various applications
• Describe how to configure manual and automatic NAT
• Identify tools designed to monitor data, determine threats and recognize opportunities for performance improvements
• Identify SmartEvent components used to store network activity logs and identify events
• Know how Site-to-Site and Remote Access VPN deployments and communities work
• Explain the basic concepts of ClusterXL technology and its advantages
Articulate Gaia system management procedures.
• Explain how to perform database migration procedures.
• Articulate the purpose and function of Management High Availability.
• Describe how to use Check Point API tools to perform management functions.
• Articulate an understanding of Security Gateway cluster upgrade methods.
• Discuss the process of Stateful Traffic inspection.
• Articulate an understanding of the Check Point Firewall processes and debug procedures.
• Describe advanced ClusterXL functions and deployment options.
• Explain how the SecureXL acceleration technology enhances and optimizes Security Gateway performance.
• Describe how the CoreXL acceleration technology enhances and improves Security Gateway performance.
• Articulate how utilizing multiple traffic queues can make traffic handling more efficient.
• Describe different Check Point Threat Prevention solutions for network attacks.
• Explain how SandBlast, Threat Emulation, and Threat Extraction help to prevent security incidents.
• Recognize alternative Check Point Site-to-Site deployment options.
• Recognize Check Point Remote Access solutions and how they differ from each other.
• Describe Mobile Access deployment options.

Intended Audience

Technical professionals who need to deploy and manage Endpoint Security within their security environment.

Course Format

Присъствен Курс — **Classic – Classroom Training**

Онлайн (Live) Отдалечен — **Live Virtual (Online) with Instructor**

Language: English or Bulgarian

Course Materials:Digital Format. Lifetime Access. Official Learning Material from Check Point.

Lab: Individual Environment for each Delegate.

Course Duration

5 working days (09:00 – 17:00 / 9:00 am – 5:00 pm) UTC +2 (contact us for another Time Zone)

40 learning hours after hours (2 weeks, classes are held 4 times a week in one of the following options):
Sat. and Sun. 10:00 – 14:00 or 14:00 – 18:00 or 18:00 – 22:00
Mon. and Wed. 19:00 – 23:00
Tue. or Thu. 19:00 – 23:00

Payments

You can enroll with your Check Point Learning Credits.

If you are Check Point Partner you can also get free training via the Co-op Program. Check your eligibility and request funds here or For any further questions or additional assistance, please E-Mail: [email protected]

We provide Invoices for Company Sponsored Trainings.

Invoices can be requested up to 7 days after the payment.

Course Schedules

Other Check Point Classes

If you dont see a date, contact us.

All classes are confirmed individually after enrollment.

Course Prerequisites

- - Basic knowledge of networking
  - 6 months to 1 year of experience with Check Point products recommended

This Training will Prepare you to take the following Certification Exams (exam price included)

Check Point Certified Security Admin (CCSA) R81.x
Check Point Certified Security Expert (CCSE) R81.x

You can Certify Online or at our Test Center.

Course Objectives:

• Identify key components and configurations
• Create and confirm administrator users for the domain
• Validate existing licenses for products installed on your network
• Create and modify Check Point Rule Base objects
• Demonstrate how to share a layer between Security Policies
• Analyze network traffic and use traffic visibility tools
• Monitor Management Server States using SmartConsole
• Demonstrate how to run specific SmartEvent reports
• Configure a SmartEvent server to monitor relevant patterns
• Configure and deploy a site-to-site VPN
• Configure and test ClusterXL with a High Availability configuration
• Understand how to use CPView to gather gateway information
• Perform periodic tasks as specified in administrator job descriptions
• Test VPN connection and analyze the tunnel traffic
• Demonstrate how to create custom reports
• Demonstrate how to configure event Alerts in SmartEvent
• Utilize various traffic visibility tools to maintain Check Point logs

Perform an upgrade of a Security Management server in a distributed environment.
Use the migrate_export command to prepare to migrate a Security Management Server.
Deploy a Secondary Management Server.
Demonstrate how to define new network and group objects using the Check Point API.
Perform an upgrade of Security Gateways in a clustered environment.
Use Kernel table commands to evaluate the condition of a Security Gateway.
Use common commands to evaluate the condition of a Security Gateway.
Configure Virtual MAC.
Demonstrate how SecureXL affects traffic flow.
Describe how the CoreXL acceleration technology enhances and improves Security Gateway performance.
Demonstrate how to monitor and adjust interface traffic queues.
Identify specific threat protections used by Check Point Threat Prevention.
Demonstrate how to enable Mobile Access for remote users.

Curriculum

25 Sections
148 Lessons
999 Weeks

Expand all sectionsCollapse all sections

Chapter 1: Introduction to Check Point Technology
3
- 2.1
  Check Point Security Architecture
- 2.2
  Controlling Network Traffic
- 2.3
  Applying the Content Security Policy
Chapter 2: Introduction to Check Point Deployment
5
- 3.1
  Check Point Deployment Options
- 3.2
  Deployment Considerations
- 3.3
  Introduction to Gaia Operating System
- 3.4
  Lab 2.1: Installation of the Primary Security Management Server
- 3.5
  Lab 2.2: Configuration of a Security Gateway
Chapter 3: Check Point Security Management Operations
6
- 4.1
  Network Communication
- 4.2
  The SmartConsole
- 4.3
  SmartConsole Applications
- 4.4
  Administration
- 4.5
  Lab 3.1: Establishing Secure Internal Communication
- 4.6
  Lab 3.2: Managing User Access
Chapter 4: Check Point Licensing
4
- 5.1
  Licensing Overview
- 5.2
  SmartUpdate
- 5.3
  Managing Licenses
- 5.4
  Lab 4.1: Managing Licenses
Chapter 5: Security Policy Management
8
- 6.1
  Introduction to the Security Policy
- 6.2
  The Rule Base
- 6.3
  Global Properties
- 6.4
  Publishing Policy
- 6.5
  Policy Packages
- 6.6
  Install Policy
- 6.7
  Lab 5.1: Creating the Alpha Standard security policy
- 6.8
  Lab 5.2: Creating the Bravo Security Policy 292 Establishing SIC to B-GW
Chapter 6: Policy Layers
4
- 7.1
  Policy Layer Concept
- 7.2
  Layers
- 7.3
  Lab 6.1: Configuring Order Layers
- 7.4
  Lab 6.2: Configuring a Shared Inline Layer
Chapter 7: Application Control & URL Filtering
6
- 8.1
  Application Control & URL Filtering
- 8.2
  Overview of Application Control
- 8.3
  URL Filtering
- 8.4
  Configuring App Control & URL Filtering
- 8.5
  Lab 7.1: Configuring a Unified Policy.
- 8.6
  Lab 7.2: Configuring HTTPS Inspection Policy
Chapter 8: User Access Management
8
- 9.1
  Overview of User Management
- 9.2
  Methods for Acquiring Identities
- 9.3
  Identity Sharing
- 9.4
  Distinguished Name
- 9.5
  Using Multiple LDAP Servers
- 9.6
  Retrieving Information from a User Directory Server
- 9.7
  Managing Users on a User Directory Server
- 9.8
  Lab 8.1: Configuring Identity Awareness
Chapter 9: Network Address Translation
3
- 10.1
  Understanding Network Address Translation
- 10.2
  Manual and Automatic NAT
- 10.3
  Lab 9.1: Configuring Network Address Translation
Chapter 10: Traffic Visibility
3
- 11.1
  Using SmartConsole
- 11.2
  Analyzing Logs
- 11.3
  Lab 10.1: Generate and View Traffic.
Chapter 11: Monitoring System States
2
- 12.1
  Monitoring Traffic and Connections
- 12.2
  Lab 11.1: Monitoring System States
Chapter 12: Threat Prevention
7
- 13.1
  Threat Prevention
- 13.2
  Autonomous Threat Prevention
- 13.3
  Intrusion Prevention System
- 13.4
  Anti-Malware
- 13.5
  Threat Emulation & Threat Extraction
- 13.6
  Internet of Things Protections
- 13.7
  Lab 12.1: Configure Threat Prevention
Chapter 13: Management Upgrade and Migration
8
- 14.1
  Upgrading Security Management Servers
- 14.2
  Upgrade / Download Wizard
- 14.3
  Check Point Upgrade Service Engine (CPUSE)
- 14.4
  CPUSE Upgrade Method
- 14.5
  Advanced Upgrade with Database Migration
- 14.6
  Installing Hotfixes and Major Version Upgrades
- 14.7
  Lab 13.1: Preparing for a Security Management Server Upgrade
- 14.8
  Lab 13.2: Upgrading the Security Management Server
Chapter 14: Management High Availability
4
- 15.1
  Management Redundancy
- 15.2
  Troubleshooting Management High Availability
- 15.3
  Lab 14.1: Deploying a Secondary Security Management Server
- 15.4
  Lab 14.2: Configuring a Distributed Log Server
Chapter 15: Security Gateway Upgrade
5
- 16.1
  Security Gateway Upgrade
- 16.2
  Package Repository
- 16.3
  Upgrading Security Gateway Clusters
- 16.4
  Using the Blink Utility
- 16.5
  Lab 15.1: Upgrading Security Gateways from SmartConsole
Chapter 16: Advanced Check Point Maintenance
6
- 17.1
  Gaia CLI Commands
- 17.2
  Working with Bash
- 17.3
  Check Point Processes
- 17.4
  Scripts
- 17.5
  Lab 16.1: Working with the Command Line
- 17.6
  Lab 16.2: Using Scripts and SmartTasks
Chapter 17: Security Gateway Operations
7
- 18.1
  Management Data Plane Separation (MDPS)
- 18.2
  Packet Flow
- 18.3
  Monitoring Traffic Flow
- 18.4
  Dynamic Objects
- 18.5
  Updatable Objects
- 18.6
  Lab 17.1: Configuring Dynamic Objects
- 18.7
  Lab 17.2: Monitoring Traffic
Chapter 18: Policy Installation
3
- 19.1
  Policy Types, Layers and Packages
- 19.2
  Policy Installation Flow
- 19.3
  Lab 18.1: Verifying Policy Installation and Status
Chapter 19: Gaia and Management APIs
4
- 20.1
  Automation
- 20.2
  Using Gaia and Management APIs
- 20.3
  API Access Methods
- 20.4
  Lab 19.1 – Working with Gaia and Management APIs
Chapter 20: Acceleration
4
- 21.1
  Introduction
- 21.2
  CoreXL
- 21.3
  Multiple Traffic Queues
- 21.4
  Lab 20.1: Working with Acceleration Features
Chapter 21: Site-to-Site VPN
10
- 22.1
  Introduction to VPN
- 22.2
  Internet Key Exchange (IKE)
- 22.3
  Site-to-Site VPN
- 22.4
  VPN Communities
- 22.5
  Domain Based VPN
- 22.6
  Access Control for VPN Traffic
- 22.7
  Configuring Site-to-Site VPN
- 22.8
  Externally Managed Certificate Authentication
- 22.9
  Lab 21.1: Configuring a Locally Managed Site-to-Site
- 22.10
  Lab 21.2: Configuring a Site-to-Site VPN with an Interoperable Device
Chapter 22: Remote Access VPN
11
- 23.1
  Introduction to Remote Access VPN
- 23.2
  Authentication
- 23.3
  Remote Access Clients
- 23.4
  License Requirements
- 23.5
  Client to Gateway Communication Challenges
- 23.6
  Secure Configuration Verification
- 23.7
  Desktop Security
- 23.8
  Multiple Entry Point (MEP) for Remote Access
- 23.9
  SSL Network Extender
- 23.10
  Configuring Remote Access VPN
- 23.11
  Lab 22.1: Configuring Remote Access VPN
Chapter 23: Mobile Access VPN
6
- 24.1
  Introduction to Mobile Access VPN
- 24.2
  How does Mobile Access VPN work?
- 24.3
  Mobile Access Security Policy
- 24.4
  Configuring Mobile Access
- 24.5
  Mobile Access Applications and Options
- 24.6
  Lab 23.1: Configuring Mobile Access VPN
Chapter 24: Clustering
13
- 25.1
  Introduction to Cluster and ClusterXL
- 25.2
  ClusterXL
- 25.3
  Virtual IP Addresses
- 25.4
  Virtual MAC Addresses (VMAC)
- 25.5
  Cluster Synchronization
- 25.6
  Cluster Failover and Status Commands
- 25.7
  Cluster Traffic Flows
- 25.8
  Cluster Control Protocol (CCP)
- 25.9
  Sticky Connections
- 25.10
  Configuring a Security Gateway Cluster
- 25.11
  NAT and Proxy ARP for Clusters
- 25.12
  Lab 24.1: Configuring a High Availability Cluster
- 25.13
  Lab 24.2: Working with ClusterXL
Chapter 25: Advanced Logs and Monitoring
8
- 26.1
  Compliance Analysis Feature
- 26.2
  SmartEvent
- 26.3
  Remediating Security Events
- 26.4
  Reporting Security Events
- 26.5
  Event Views and Definitions
- 26.6
  Suspicious Activity Monitoring
- 26.7
  Lab 25.1: Configuring Policy Compliance
- 26.8
  Lab 25.2: Deploying SmartEvent

Instructors

IT-Training.pro

CCSE – Check Point Certified Security Expert (CCSE) R81.20

€ 1000,00

18 Students

IT-Training.pro

CCSA – Check Point Certified Security Administrator (CCSA) R81.20

€ 1000,00

50 Students

IT-Training.pro

EC-Council Certified Cloud Security Engineer (CCSE)

€ 1800,00

0 Students

CheckPoint CCSA CCSE Bootcamp (CCSA-CCSE-Bootcamp) R81.10 – Fast Track Training for 5 days

About this Course

- Save 20% on your CCSA + CCSE Certification with this Fast Track Bundled Offer.
- Five-day course covers everything you need to start-up, configure and manage daily operations of Check Point Security Gateway and Management Software Blades systems on the GAiA operating system.
- Advanced course teaches how to build, modify, deploy and troubleshoot Check Point Security Systems on the GAiA operating system. Hands-on lab exercises teach h ow to debug firewall processes, optimize VPN performance and upgrade Management Servers. Validate and enhance your skills and optimally manage Check Point advanced security management systems.

Course Goals/Skills

Know how to perform periodic administrator tasks
• Describe the basic functions of the Gaia operating system
• Recognize SmartConsole features, functions, and tools .
• Describe the Check Point Firewall infrastructure
• Understand how SmartConsole is used by administrators to grant permissions and user access
• Learn how Check Point security solutions and products work and how they protect networks
• Understand licensing and contract requirements for Check Point security products
• Describe the essential elements of a Security Policy
• Understand the Check Point policy layer concept
• Understand how to enable the Application Control and URL Filtering software blades to block access to various applications
• Describe how to configure manual and automatic NAT
• Identify tools designed to monitor data, determine threats and recognize opportunities for performance improvements
• Identify SmartEvent components used to store network activity logs and identify events
• Know how Site-to-Site and Remote Access VPN deployments and communities work
• Explain the basic concepts of ClusterXL technology and its advantages
Articulate Gaia system management procedures.
• Explain how to perform database migration procedures.
• Articulate the purpose and function of Management High Availability.
• Describe how to use Check Point API tools to perform management functions.
• Articulate an understanding of Security Gateway cluster upgrade methods.
• Discuss the process of Stateful Traffic inspection.
• Articulate an understanding of the Check Point Firewall processes and debug procedures.
• Describe advanced ClusterXL functions and deployment options.
• Explain how the SecureXL acceleration technology enhances and optimizes Security Gateway performance.
• Describe how the CoreXL acceleration technology enhances and improves Security Gateway performance.
• Articulate how utilizing multiple traffic queues can make traffic handling more efficient.
• Describe different Check Point Threat Prevention solutions for network attacks.
• Explain how SandBlast, Threat Emulation, and Threat Extraction help to prevent security incidents.
• Recognize alternative Check Point Site-to-Site deployment options.
• Recognize Check Point Remote Access solutions and how they differ from each other.
• Describe Mobile Access deployment options.

Intended Audience

Technical professionals who need to deploy and manage Endpoint Security within their security environment.

Course Format

Language: English or Bulgarian

Course Materials:Digital Format. Lifetime Access. Official Learning Material from Check Point.

Lab: Individual Environment for each Delegate.

Course Duration

5 working days (09:00 – 17:00 / 9:00 am – 5:00 pm) UTC +2 (contact us for another Time Zone)

40 learning hours after hours (2 weeks, classes are held 4 times a week in one of the following options):
Sat. and Sun. 10:00 – 14:00 or 14:00 – 18:00 or 18:00 – 22:00
Mon. and Wed. 19:00 – 23:00
Tue. or Thu. 19:00 – 23:00

Payments

You can enroll with your Check Point Learning Credits.

We provide Invoices for Company Sponsored Trainings.

Invoices can be requested up to 7 days after the payment.