Check Point Topics
Home »
Check Point (CCSA) Course Curriculum
Check Point Firewall Installation
- Standalone installation
- Distributed installation
- Primary and Secondary installation
- Rule base, Objects and Smart view tracker
Network Address Translation
- Configuring Hide mode or Dynamic NAT
- Configuring Static NAT
- Configuring Manual NAT
Cryptography
- Symmetric Key Cryptography
- Asymmetric Key Cryptography
- Public Key Infrastructure, Public and Private Keys
- Encryption and Decryption Message Digest, Hashing Algorithm
- Digital Signature
- Authentication, Integrity and Non-repudiation
- Diffie Helman Key exchange
Authentication
- Kerberos
- User Authentication
- Client Authentication
- Session Authentication
- Partially automatic/ Fully automatic authentication
Check Point Smart Defense
- Tracking and alerting
- TCP/IP 3 way handshake
- SYN Defender
- SYN Relay
- Passive SYN Defender
VPN
- VPN Fundamentals
- Creating VPN tunnels
- Internet Key Exchange (IKE)
- ISAKMP Phase 1 (SA Negotiation)
- IPSec Phase 2 (SA Negotiation)
- AH and ESP headers
- Site to Site VPN using Pre-shared secret
- Site to Site VPN using Certificate Authority
- Site to Site VPN (Secure Remote)
Content Security
- Security Servers on the Firewall
- SMTP, HTTP and FTP traffic security
- The Content Vectoring Protocol (CVP Server)
- The URL Filtering Protocol (UFP Server)
- Filtering with UFP Server
- Filtering with CVP server
Check Point (CCSE) Course Curriculum
Upgrading, Backup and Restore Security Gateways and Management Servers
- Snapshot management
- Upgrade Tools
- Backup Schedule Recommendations
- Upgrade Tools
- Performing Upgrades
- Performing Upgrades
- Support Contract
Upgrading Standalone Full High Availability
Lab 1: Upgrading to Check Point R77
- Install Security Management Server
- Migrating Management server Data
- Importing the Check Point Database
- Launch SmartDashboard
- Upgrading the Security Gateway
Advanced Firewall - Check Point Firewall Infrastructure
- Advanced Firewall - Check Point Firewall Infrastructure
- Management
Advanced Firewall - Security Gateway
- User and Kernel Mode Processes
- CPC Core Process
- FWM
- FWD
- CPWD
- Inbound and Outbound Packet Flow
- Inbound FW CTL Chain Modules
- Outbound Chain Modules
- Columns in a Chain
- Stateful Inspection
Kernel Tables
- Connections Table
- Connections Table Format
Check Point Firewall Key Features
- Packet Inspection Flow
- Policy Installation Flow
- Policy Installation Process
- Policy Installation Process Flow
Network Address Translation
- How NAT Works
- How NAT Works
- Security Servers
- How a Security Server Works
- Basic Firewall Administration
- Common Commands
FW Monitor
- What is FW Monitor
- C2S Connections and S2C Packets
- FW monitor
Lab 2: Core CLI Elements of Firewall Administration
- Policy Management and Status
- Verification from the CLI
- Using cpinfo
- Run cpinfo on the Security Management Server
- Analyzing cpinfo in InfoView
- Using FW ctl pstat
- Using tcpdump
Clustering and Acceleration
VRRP
- VRRP vs ClusterXL
- Monitored Circuit VRRP
- Troubleshooting VRRP
Clustering and Acceleration
- Clustering Terms
- ClusterXL
- Cluster Synchronization
- Synchronized-Cluster Restrictions
- Securing the Sync Interface
- To Synchronize or Not to Synchronize
ClusterXL: Load Sharing
VRRP
- VRRP vs ClusterXL
- Monitored Circuit VRRP
- Troubleshooting VRRP
Clustering and Acceleration
- Clustering Terms
- ClusterXL
- Cluster Synchronization
- Synchronized-Cluster Restrictions
- Securing the Sync Interface
- To Synchronize or Not to Synchronize
Our Trainers
Saurabh Yadav
Triple CCIE R&S, SP, Security # 46962
Baldev Singh
CCIE Security # 37094
Sudhanshu Bhat
CCIE Voice # 41212
Surendra Singh
CCIE R&S # 60346
What Our Students Say
I have enrolled here in CCIE R&S integrated course at I-Medita and I recently got placed in Winlintech, Pune . My experience with I-Medita was excellent; the faculty over here is very helpful and skilled. The labs here are really 24*7, you can experience it and the lab is quite big and you can avail the facility at any time. I would really suggest I-Medita to candidates who are looking to start career in networking domain.
I enrolled here at I-Medita for CCIE Security Integrated training and the experience with I-Medita is exceptional, to be honest. The support that you get from the trainers and the placements division here is exceptional. I don’t have the words to express the feelings when I get thesupport from the team over here. I recently got placed with Sophos with the decent package.
I am basically from Ahmedabad, I enrolled in I-Medita for CCIE Security Integrated course and I got placed with Sophos during my training program.I-Medita is really amazing training institution, trainer really helped me with the knowledge that they have given me.
I have enrolled in I-Medita for Multi-Track course.I got placed in SecurView into Security domain andI am ready happy and tahank I-Medita for the training & support they have provided, I will recommend I-Medita for networking certification training.
I came here from Saudi Arabia in I-Medita for CCNA and CCNP. When I come here I got know what they have, what facilities they have -they have the great teachers like Mr Saurabh Yadav who was teaching me very great things about Cisco, CCNA and CCNP. I am really happy with the training.
I found this website I-Medita online and checked the web page with pictures and their pictures match the actual equipment actual labs. Very good labs and very good classroom. I did CCNA
course and it improved my knowledge on the basic principle of CCNA. Training was upto the mark and effective
WhatsApp Us