Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Check Point Firewall Administration R81.10+
  • Table Of Contents Toc
Check Point Firewall Administration R81.10+

Check Point Firewall Administration R81.10+

By : Vladimir Yakovlev
4.9 (9)
Buy this Book
close
close
Check Point Firewall Administration R81.10+

Check Point Firewall Administration R81.10+

4.9 (9)
By: Vladimir Yakovlev
Buy this Book

Overview of this book

Check Point firewalls are the premiere firewalls, access control, and threat prevention appliances for physical and virtual infrastructures. With Check Point’s superior security, administrators can help maintain confidentiality, integrity, and the availability of their resources protected by firewalls and threat prevention devices. This hands-on guide covers everything you need to be fluent in using Check Point firewalls for your operations. This book familiarizes you with Check Point firewalls and their most common implementation scenarios, showing you how to deploy them from scratch. You will begin by following the deployment and configuration of Check Point products and advance to their administration for an organization. Once you’ve learned how to plan, prepare, and implement Check Point infrastructure components and grasped the fundamental principles of their operation, you’ll be guided through the creation and modification of access control policies of increasing complexity, as well as the inclusion of additional features. To run your routine operations infallibly, you’ll also learn how to monitor security logs and dashboards. Generating reports detailing current or historical traffic patterns and security incidents is also covered. By the end of this book, you'll have gained the knowledge necessary to implement and comfortably operate Check Point firewalls.
Table of Contents (21 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the example code files
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Legal disclaimer
Icon
Share your thoughts
1
Part 1: Introduction to Check Point, Network Topology, and Firewalls in Your Infrastructure and Lab
Icon
Part 1: Introduction to Check Point, Network Topology, and Firewalls in Your Infrastructure and Lab
Lock Free Chapter
2
Chapter 1: Introduction to Check Point Firewalls and Threat Prevention Products
Icon
Chapter 1: Introduction to Check Point Firewalls and Threat Prevention Products
Icon
Technical requirements
Icon
Learning about Check Point's history and the current state of the technology
Icon
Understanding the Check Point product lineup and coverage
Icon
Introducing the Unified Management concepts and the advantages of security product consolidation
Icon
Familiarization with the Security Management Architecture (SMART)
Icon
Determining how we learn
Icon
Navigating the Check Point User Center
Icon
Summary
Icon
Further reading
3
Chapter 2: Common Deployment Scenarios and Network Segmentation
Icon
Chapter 2: Common Deployment Scenarios and Network Segmentation
Icon
Understanding your network topology
Icon
Learning about network segmentation
Icon
Protecting the core
Icon
Protecting the perimeter
Icon
Sizing appliances for new implementations and determining load on current systems
Icon
Summary
Icon
Further reading
4
Chapter 3: Building a Check Point Lab Environment – Part 1
Icon
Chapter 3: Building a Check Point Lab Environment – Part 1
Icon
Technical requirements
Icon
Lab topology and components
Icon
Downloading the prerequisites
Icon
Installing Oracle VirtualBox
Icon
Deploying the VyOS router
Icon
Summary
5
Chapter 4: Building a Check Point Lab Environment – Part 2
Icon
Chapter 4: Building a Check Point Lab Environment – Part 2
Icon
Technical requirements
Icon
Creating a Windows base VM
Icon
Creating a Check Point base VM
Icon
Creating linked clones
Icon
Summary
6
Part 2: Introduction to Gaia, Check Point Management Interfaces, Objects, and NAT
Icon
Part 2: Introduction to Gaia, Check Point Management Interfaces, Objects, and NAT
7
Chapter 5: Gaia OS, the First Time Configuration Wizard, and an Introduction to the Gaia Portal (WebUI)
Icon
Chapter 5: Gaia OS, the First Time Configuration Wizard, and an Introduction to the Gaia Portal (WebUI)
Icon
Technical requirements
Icon
Learning about Gaia's roots – a historical note
Icon
Using the First Time Configuration Wizard
Icon
Introduction to the Gaia Portal (WebUI)
Icon
Summary
8
Chapter 6: Check Point Gaia Command-Line Interface; Backup and Recovery Methods; CPUSE
Icon
Chapter 6: Check Point Gaia Command-Line Interface; Backup and Recovery Methods; CPUSE
Icon
Learning about the Check Point Gaia CLI
Icon
Introduction to Expert mode
Icon
Configuring Gaia using CLISH
Icon
Saving Gaia configuration, backups, snapshots, and migration tools
Icon
Saving and loading the configuration
Icon
Offline configuration editing and comparison
Icon
Using CPUSE
Icon
Summary
9
Chapter 7: SmartConsole – Familiarization and Navigation
Icon
Chapter 7: SmartConsole – Familiarization and Navigation
Icon
Technical requirements
Icon
Introduction to the SmartConsole application and Demo Mode
Icon
SmartConsole components, capabilities, and navigation
Icon
Summary
10
Chapter 8: Introduction to Policies, Layers, and Rules
Icon
Chapter 8: Introduction to Policies, Layers, and Rules
Icon
Access Control policies, layers, and rules
Icon
Packet flows and acceleration
Icon
Best practices for Access Control rules
Icon
APCL/URLF layer structure
Icon
Logs, tracking depth, and oddities
Icon
Summary
11
Chapter 9: Working with Objects – ICA, SIC, Managed, Static, and Variable Objects
Icon
Chapter 9: Working with Objects – ICA, SIC, Managed, Static, and Variable Objects
Icon
Working with objects
Icon
Object categories
Icon
Introduction to Internal Certificate Authority and Secure Internal Communication
Icon
Gateways and servers
Icon
Creating networks and Host objects
Icon
Variable objects
Icon
Summary
12
Chapter 10: Working with Network Address Translation
Icon
Chapter 10: Working with Network Address Translation
Icon
The need for NAT
Icon
NAT policies, rules, and processing orders
Icon
Automatic NAT
Icon
When NAT is not enough
Icon
NAT logging
Icon
Summary
13
Part 3: Introduction to Practical Administration for Achieving Common Objectives
Icon
Part 3: Introduction to Practical Administration for Achieving Common Objectives
14
Chapter 11: Building Your First Policy
Icon
Chapter 11: Building Your First Policy
Icon
Defining the access control policy structure
Icon
Creating rules for the firewall/networking layer
Icon
Creating the APCL/URLF layer and rules
Icon
Using Identity Awareness and access roles
Icon
Summary
15
Chapter 12: Configuring Site-to-Site and Remote Access VPNs
Icon
Chapter 12: Configuring Site-to-Site and Remote Access VPNs
Icon
An introduction to site-to-site VPN capabilities
Icon
Configuring a remote gateway and creating its policy
Icon
Building a site-to-site VPN using gateways managed by the same management server
Icon
An introduction to Check Point remote access VPN solutions
Icon
Configuring a remote access IPSec VPN
Icon
Summary
16
Chapter 13: Introduction to Logging and SmartEvent
chevron up
Icon
Chapter 13: Introduction to Logging and SmartEvent
Icon
Logging into a single security domain
Icon
Introduction to SmartEvent
Icon
Summary
17
Chapter 14: Working with ClusterXL High Availability
Icon
Chapter 14: Working with ClusterXL High Availability
Icon
ClusterXL in HA mode
Icon
ClusterXL HA failover simulations
Icon
Alternative preferred HA options
Icon
Summary
18
Chapter 15: Performing Basic Troubleshooting
Icon
Chapter 15: Performing Basic Troubleshooting
Icon
Troubleshooting constraints and your actions
Icon
Typical issues and the tools to solve them
Icon
Service Requests – getting them right every time
Icon
Community resources and engagements
Icon
Postmortems and lessons learned
Icon
Summary
19
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share your thoughts
1
Appendix: Licensing
Icon
Appendix: Licensing
Icon
Licensing
Icon
Licensing for gateways
Icon
Licensing for management servers
Icon
Central and local licenses
Icon
License activation
Icon
Evaluation licenses for the lab
Icon
SmartUpdate and additional information
Icon
Why subscribe?

Logging into a single security domain

Logging is available on all Check Point components – that is, gateways, management servers, dedicated log servers, and SmartEvent servers.

Security logs created by gateways are sent to either management servers (if they are acting as log servers), dedicated log servers, or both if so configured. Additionally, logs can be stored locally and forwarded to the management/log servers on schedule.

Audit logs are created by management servers and are stored locally. They can be forwarded to the designated log servers on schedule, too.

Logs are indexed by log servers and are accessible via SmartConsole, SmartView (browser-based access), an API, or in a raw form via the CLI using either the fw log command or the CPLogFilePrint command in Expert mode. The CPLogFilePrint command, although unwieldy, returns more information. It is officially unsupported beyond logging troubleshooting but might come in handy. See the sk153972 CPLogFilePrint...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Check Point Firewall Administration R81.10+
End of Section 16
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon