Check Point Certified Security Master (CCSM)

Intra-company training

Who is the training for?

A qui s'adresse cette formation:

  • Systems Administrators, Security Engineers, Network Engineers and CCSEs seeking higher certification.
  • Customers and partners who want to learn the advanced skills to troubleshoot and configure Check Point * Security Gateway and Management Software Blades.

Level reached

Beginner

Duration

3,00 day(s)

Language(s) of service

EN

Prerequisites

  • CCSE
  • General knowledge of TCP/IP
  • Working knowledge of Windows and UNIX, network technology and of the Internet

Goals

  • Identify issues and problems using commands
  • Locate the source of encryption failures
  • Identify potentially mis-configured VPNs
  • Reduce IPS false positives
  • Troubleshoot SecureXL and ClusterXL

Contents

Check Point Security Master is an advanced technical 3-day course which teaches how to use advanced commands to configure and troubleshoot Check Point Security Systems.

  • Firewall-1 administration and infrastructure review
  • How policy changes impact chain module behavior
  • Identify management issues and problems with commands
  • Use commands to troubleshoot NAT stages
  • Configure Manual NAT to define specific rules
  • Use commands to review and clear connections table
  • Modify files to allow traffic through a specific cluster member
  • Locate the source of encryption failures using commands
  • Use commands to verify VPN connectivity
  • Identify any potentially mis-configured VPNs
  • Tune NIC performance
  • Increase size and improve hardware performance
  • Improve load capacity
  • Tune the firewall rule base
  • Reduce load on Rule Base application
  • Improve network performance
  • Improve logging efficiency
  • Use IPS Bypass to manage performance
  • Deploy IPv6 in a local envrionment
  • Identify differences between VPNs
  • Configure VPN Tunnel Interface (VTI)
  • Configure Open Shortest Path First (OSPF)

Labs:

  • Evaluate Chain Modules
  • Modify Security Policies
  • Examine how rules and objects affect optimization
  • Troubleshoot Secure Internal Communication issues
  • Identify a mis-configured rule
  • Identify the source of GUI client connectivity problems
  • Improve load capacity through optimization
  • Optimize network performance
  • Configure Manual NAT
  • Troubleshoot ClusterXL and SecureXL
  • Configure IPS to reduce false positives
  • Identify the speed of the system?s CPU
  • Identify connections in the ClusterXL debug file
  • Troubleshoot a mis-configured VPN
  • Identify VPN configuration problems
  • Identify acceleration status of current connections
  • Identify the source of an encryption failure

Evaluation

Une évaluation est remise à chaque stagiaire à la fin du cours.

Certificate, diploma

Un certificat de formation est remis à chaque participant à la fin du cours.

Additional information

Nous limitons par principe, à 8 (voire 10), le nombre de personnes par formation.
Nos formations 'calendrier' sont données en français sur la version courante du logiciel anglais.
Toutes peuvent être organisées sur mesure (durée et contenu personnalisés).
La plupart de nos formations peuvent être assurées en langue française, luxembourgeoise, anglaise ou allemande.

These courses might interest you

EN
Day
Telecommunications - Telecom networks - Computer networks