We will begin by introducing you to the Check Point Next Generation Suite of products in Chapter 1. You will learn about the various components available in NG and how they communicate using the Secure Virtual Network (SVN) foundation. NG utilizes an internal certificate authority on the primary management station, which generates, distributes, and authenticates certificates using Secure Internal Communication (SIC). You’ll get your first glimpse of the Security Dashboard and the Visual Policy Editor. We will explain the VPN-1/FireWall-1 architecture, describing how it inspects packets, and we’ll touch on performance and scalability. In Chapter 2 we will start by preparing you to install the VPN-1/FireWall-1 product. We will discuss licenses, securing a firewall host, networking, and DNS. Once prepared, we will walk you through the software installation on a Windows, Solaris, and Nokia platform step-by-step.
This chapter should prove to be an invaluable resource for those of you who must install the product, whether installing NG in a standalone or a distributed environment. Once the product is installed and your basic configuration is finished, you’ll need to utilize the management GUIs. Chapter 3 will familiarize you with each of the VPN-1/FireWall-1 GUI clients: Policy Editor, Log Viewer, System Status and SecureUpdate.We will explain how to log in and use each interface, as well as detail a long list of objects that need to be defined before you can begin creating a security policy.
These will be the building blocks for your rules. Before you can start creating your security policy in the FireWall-1 Rule Base, you will need to have an enterprise-wide information security policy that includes an Executive Security Policy accompanied by standards, guidelines, and procedures for implementing and maintaining an information security program. Chapter 4 starts out by guiding you in this process. Once the policy is down on paper, then you can begin translating those written words into an enforceable Security Policy within the FireWall-1 NG Policy Editor.
The rest of the chapter is focused on utilizing the Check Point Policy Editor. Starting with an empty policy, we will give you the tools necessary to create and maintain a security rule base. Next, we go into Network Address Translation (NAT) in detail in Chapter 5. NAT is an important piece to the network puzzle, which allows organizations to use private addresses inside their firewall and preserve their public addresses outside.
Formore: https://www.troytec.com/exam/156-215-exams
Comments
Post a Comment