Book Image

Check Point Firewall Administration R81.10+

By : Vladimir Yakovlev
Book Image

Check Point Firewall Administration R81.10+

By: Vladimir Yakovlev

Overview of this book

Check Point firewalls are the premiere firewalls, access control, and threat prevention appliances for physical and virtual infrastructures. With Check Point’s superior security, administrators can help maintain confidentiality, integrity, and the availability of their resources protected by firewalls and threat prevention devices. This hands-on guide covers everything you need to be fluent in using Check Point firewalls for your operations. This book familiarizes you with Check Point firewalls and their most common implementation scenarios, showing you how to deploy them from scratch. You will begin by following the deployment and configuration of Check Point products and advance to their administration for an organization. Once you’ve learned how to plan, prepare, and implement Check Point infrastructure components and grasped the fundamental principles of their operation, you’ll be guided through the creation and modification of access control policies of increasing complexity, as well as the inclusion of additional features. To run your routine operations infallibly, you’ll also learn how to monitor security logs and dashboards. Generating reports detailing current or historical traffic patterns and security incidents is also covered. By the end of this book, you'll have gained the knowledge necessary to implement and comfortably operate Check Point firewalls.

Related Content you might be interested in

Current Title:

Small book image
Check Point Firewall Administration R81.10+
Vladimir Yakovlev
Aug, 2022 | 654 pages
Small book image
Mastering Palo Alto Networks
Tom Piens aka reaper
Jun, 2022 | 636 pages
Table of Contents (21 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Legal disclaimer
Share your thoughts
1
Part 1: Introduction to Check Point, Network Topology, and Firewalls in Your Infrastructure and Lab
Part 1: Introduction to Check Point, Network Topology, and Firewalls in Your Infrastructure and Lab
Free Chapter
2
Chapter 1: Introduction to Check Point Firewalls and Threat Prevention Products
Chapter 1: Introduction to Check Point Firewalls and Threat Prevention Products
Technical requirements
Learning about Check Point's history and the current state of the technology
Understanding the Check Point product lineup and coverage
Introducing the Unified Management concepts and the advantages of security product consolidation
Familiarization with the Security Management Architecture (SMART)
Determining how we learn
Navigating the Check Point User Center
Summary
Further reading
3
Chapter 2: Common Deployment Scenarios and Network Segmentation
Chapter 2: Common Deployment Scenarios and Network Segmentation
Understanding your network topology
Learning about network segmentation
Protecting the core
Protecting the perimeter
Sizing appliances for new implementations and determining load on current systems
Summary
Further reading
4
Chapter 3: Building a Check Point Lab Environment – Part 1
Chapter 3: Building a Check Point Lab Environment – Part 1
Technical requirements
Lab topology and components
Downloading the prerequisites
Installing Oracle VirtualBox
Deploying the VyOS router
Summary
5
Chapter 4: Building a Check Point Lab Environment – Part 2
Chapter 4: Building a Check Point Lab Environment – Part 2
Technical requirements
Creating a Windows base VM
Creating a Check Point base VM
Creating linked clones
Summary
6
Part 2: Introduction to Gaia, Check Point Management Interfaces, Objects, and NAT
Part 2: Introduction to Gaia, Check Point Management Interfaces, Objects, and NAT
7
Chapter 5: Gaia OS, the First Time Configuration Wizard, and an Introduction to the Gaia Portal (WebUI)
Chapter 5: Gaia OS, the First Time Configuration Wizard, and an Introduction to the Gaia Portal (WebUI)
Technical requirements
Learning about Gaia's roots – a historical note
Using the First Time Configuration Wizard
Introduction to the Gaia Portal (WebUI)
Summary
8
Chapter 6: Check Point Gaia Command-Line Interface; Backup and Recovery Methods; CPUSE
Chapter 6: Check Point Gaia Command-Line Interface; Backup and Recovery Methods; CPUSE
Learning about the Check Point Gaia CLI
Introduction to Expert mode
Configuring Gaia using CLISH
Saving Gaia configuration, backups, snapshots, and migration tools
Saving and loading the configuration
Offline configuration editing and comparison
Using CPUSE
Summary
9
Chapter 7: SmartConsole – Familiarization and Navigation
Chapter 7: SmartConsole – Familiarization and Navigation
Technical requirements
Introduction to the SmartConsole application and Demo Mode
SmartConsole components, capabilities, and navigation
Summary
10
Chapter 8: Introduction to Policies, Layers, and Rules
Chapter 8: Introduction to Policies, Layers, and Rules
Access Control policies, layers, and rules
Packet flows and acceleration
Best practices for Access Control rules
APCL/URLF layer structure
Logs, tracking depth, and oddities
Summary
11
Chapter 9: Working with Objects – ICA, SIC, Managed, Static, and Variable Objects
Chapter 9: Working with Objects – ICA, SIC, Managed, Static, and Variable Objects
Working with objects
Object categories
Introduction to Internal Certificate Authority and Secure Internal Communication
Gateways and servers
Creating networks and Host objects
Variable objects
Summary
12
Chapter 10: Working with Network Address Translation
Chapter 10: Working with Network Address Translation
The need for NAT
NAT policies, rules, and processing orders
Automatic NAT
When NAT is not enough
NAT logging
Summary
13
Part 3: Introduction to Practical Administration for Achieving Common Objectives
Part 3: Introduction to Practical Administration for Achieving Common Objectives
14
Chapter 11: Building Your First Policy
Chapter 11: Building Your First Policy
Defining the access control policy structure
Creating rules for the firewall/networking layer
Creating the APCL/URLF layer and rules
Using Identity Awareness and access roles
Summary
15
Chapter 12: Configuring Site-to-Site and Remote Access VPNs
Chapter 12: Configuring Site-to-Site and Remote Access VPNs
An introduction to site-to-site VPN capabilities
Configuring a remote gateway and creating its policy
Building a site-to-site VPN using gateways managed by the same management server
An introduction to Check Point remote access VPN solutions
Configuring a remote access IPSec VPN
Summary
16
Chapter 13: Introduction to Logging and SmartEvent
Chapter 13: Introduction to Logging and SmartEvent
Logging into a single security domain
Introduction to SmartEvent
Summary
17
Chapter 14: Working with ClusterXL High Availability
Chapter 14: Working with ClusterXL High Availability
ClusterXL in HA mode
ClusterXL HA failover simulations
Alternative preferred HA options
Summary
18
Chapter 15: Performing Basic Troubleshooting
Chapter 15: Performing Basic Troubleshooting
Troubleshooting constraints and your actions
Typical issues and the tools to solve them
Service Requests – getting them right every time
Community resources and engagements
Postmortems and lessons learned
Summary
19
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share your thoughts
Appendix: Licensing
Appendix: Licensing
Licensing
Licensing for gateways
Licensing for management servers
Central and local licenses
License activation
Evaluation licenses for the lab
SmartUpdate and additional information
Why subscribe?

Navigating the Check Point User Center

The Check Point User Center is the portal for access to a variety of resources, and the place where you will create or manage your Check Point accounts, users, and products. It is also a place where you generate and download licenses and support contracts.

It is accessible at https://usercenter.checkpoint.com.

Figure 1.9 – User Center

Figure 1.9 – User Center

We will be using the ASSETS/INFO and TRY OUR PRODUCTS sections to obtain and maintain our lab licenses as we go through the book.

From the User Center, you can get to Support Center, a place where you can open and manage Service Requests (SRs), report security issues, subscribe to or access the PRO Support portal (a proactive monitoring and reporting service), and gain access to the technical documentation, alerts, subscriptions, product downloads, and search capabilities across SecureKnowledge articles, downloads, documentation, and CheckMates community posts and discussion threads.

The following screenshot shows Support Center:

Figure 1.10 – Support portal

Figure 1.10 – Support portal

Both portals are interlinked, but if you know what you need, it is simpler to get to the right place through a corresponding link.

The Support Center may be accessed at https://supportcenter.checkpoint.com.

Important Note

While it is not necessary to register with Check Point in order to download and try their firewall product, this trial will be limited to 15 days. To extend it beyond the initial 15 days, you will have to go through the registration process to request a trial or lab license(s).

Since we must learn how to register and manage users and accounts and how to license the product, we will now start with the registration process.

Follow these steps to register as a portal user and create an account:

  1. In your browser, go to https://usercenter.checkpoint.com.
  2. When prompted with the Sign In screen, click on Sign Up Now.
Figure 1.11 – Sign Up Now

Figure 1.11 – Sign Up Now

Populate the fields with your information and then click Submit.

Figure 1.12 – Sign Up; user information

Figure 1.12 – Sign Up; user information

  1. The Success! popup will appear; check your mailbox to continue.
  2. Click on Confirm Email in the body of the message.
  3. Create and confirm a suitably strong password using a combination of uppercase and lowercase letters, numbers, and symbols and then click Submit.
  4. Click Sign In.
  5. Enter your username (the same as the email in step 2 and the password from step 5) and then click Sign In.
  6. Once you are logged in for the first time, click on your username in the top-right portion of the screen and then click on the Security shield icon on the left to configure the Multifactor Authentication (MFA).
Figure 1.13 – Securing User Center access

Figure 1.13 – Securing User Center access

  1. Toggle the 2-Step Verification switch to the On position:
Figure 1.14 – Turning on 2-Step Verification

Figure 1.14 – Turning on 2-Step Verification

  1. Enter your mobile phone number, verify that the Text Message option is selected, and then click Verify Phone.
  2. Enter the code received via text message and then click Activate.
  3. Your phone number is now shown as Verified. Click on the Display Backup codes arrow.
Figure 1.15 – Backup codes for 2FA

Figure 1.15 – Backup codes for 2FA

  1. Click on Generate New Backup codes. When backup codes are displayed, click Print. If you do not have a printer connected, print codes to PDF. Click Close.
  2. In the Authenticator App section, click the arrow to the right of Set Up.
  3. Choose your mobile phone platform and then click Next.
  4. If you do not have an authentication application on your phone, install either Microsoft Authenticator or Google Authenticator or your preferred MFA application. When installed, or if already available, add the new account to it by scanning the QR code and then click Next.
  5. If the scan fails (observed on very high-resolution monitors with particular brightness and contrast), click on CAN'T SCAN IT?, manually enter the key into the authentication manager, and then click Next.
  6. Enter the dynamically generated one-time code and click Next. Note the time remaining for the action on your phone while doing it.
  7. The authentication app now becomes the default method for the second factor. Let's look at the following screenshot:
Figure 1.16 – Authentication app as the default 2FA

Figure 1.16 – Authentication app as the default 2FA

We can now securely log on to the User Center and access its resources.

Previous Section
End of Section 8
Next Section