Go to Home Page

Check Point Training


Check Point Security Administration NGX II R65


 

Course Description


This two-day course provides an understanding of upgrading and advanced configuration of VPN-1 (NGX R65), installing and managing VPN-1 (on both internal and external networks), gaining the maximum security from Security Gateways, and resolving Gateway performance issues.

 

Certification

 

Check Point Certified Security Expert (CCSE) NGX R65 - exam #156-315.65

 

Who Should Take This Course?

 

  • This course is designed for systems administrator, security manager, or network engineer implementing VPN-1 (NGX R65) for VPN
  • If you want to earn Check Point Certified Security Expert (CCSE) NGX R65 certification

 

Course Fee:$1,995

 

 

Course Prerequisites

 

  • Check Point Security Administration I NGX (R65), or equivalent knowledge and experience

 

Course Objectives

 

After completion of this course, participants will learn

 

  • How to use NGX tools to upgrade to VPN-1 (NGX R65)
  • How to configure VPNs, using IKE encryption and Check Point's simplified VPN setup
  • How to use VPN-1 SecureRemote/SecureClient to configure remote access
  • How to identify the features and limitations of Check Point High Availability solutions

 

Course Outline

 

Chapter 1: SmartUpdate

 

  • Introduction to SmartUpdate
  • Upgrading Packages
  • Managing Licenses
  • Lab 1: Updating an Installation with SmartUpdate

 

Chapter 2: Upgrading VPN-1

 

  • Preinstallation Configuration
  • Distribution Installation
  • Upgrading to VPN-1 NGX R65
  • VPN-1 Backward Compatibility
  • Licensing VPN-1
  • Performing License Upgrade
  • Pre-Upgrade Considerations
  • Upgrading SmartCenter Server
  • Gateway Upgrade

 

Chapter 3: Encryption and VPNs

 

  • Securing Communication
  • IKE
  • Certificate Authorities

 

Chapter 4: Introduction to VPNs

 

  • The Check Point VPN
  • VPN Deploymentsver Share
  • VPN Implementation

 

Chapter 5: Site-to-Site VPNs

 

  • Site-to-Site VPN
  • VPN Tunnel Management
  • Wire Mode
  • Directional VPN Enforcement
  • Multiple Entry Point VPNs
  • Traditional Mode VPNs
  • Lab 2: Two-Gateway IKE Encryption (Shared Secret)
  • Lab 3: Two-Gateway IKE Encryption (Certificates)

 

Chapter 6: : Remote Access VPNs

 

  • Remote Access VPN
  • Office Mode
  • Office Mode Planning
  • VPN Routing – Remote Access
  • SSL Network Extender
  • Clientless VPN
  • Lab 4: Configuring Remote Access in an IKE VPN
  • Lab 5: Using SecuRemote in an IKE VPN
  • Lab 6: Remote Access and Office Mode
  • Lab 7: SSL Network Extender

 

Chapter 7: : High Availability and Cluster XL

 

  • Management High Availability
  • Cluster XL
  • Cluster XL Modes
  • Synchronizing Clusters
  • Sticky Connections
  • CPHA Commands
  • Debugging Cluster XL Issues
  • Cluster XL Configuration Issues
  • Lab 8: Deploying New Mode HA
  • Lab 9: Load Sharing Unicast (Pivot) Mode
  • Lab 10: Configuring Load Sharing Multicast Mode
Copyright 2007-2008 Forsythe Solutions Group, Inc. All Rights Reserved. Contents may not be reproduced in part or in whole, without written permission from Forsythe.