CheckPoint CCSA R80.10 [2020]
4.3 (287 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
6,180 students enrolled

CheckPoint CCSA R80.10 [2020]

Learn all about Check Point firewall administration. Master to deploy Checkpoint blades efficiently. Upgrade to R80.30
Bestseller
4.3 (287 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
6,180 students enrolled
Created by Evgenii Puzakov
Last updated 7/2020
English
English [Auto]
Current price: $51.99 Original price: $74.99 Discount: 31% off
5 hours left at this price!
30-Day Money-Back Guarantee
This course includes
  • 6 hours on-demand video
  • 1 article
  • 9 downloadable resources
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion
Training 5 or more people?

Get your team access to 4,000+ top Udemy courses anytime, anywhere.

Try Udemy for Business
What you'll learn
  • CheckPoint General Knowledge
  • Setting up a cluster
  • Threat Prevention policy Management
  • Access Control policy Management
  • VPN
  • HTTPs inspection
  • Ipsec
Requirements
  • General knowledge of TCP/IP
  • Working knowledge of Windows and/or UNIX
  • Working knowledge of networking technology
  • Working knowledge of the Internet
Description

The following course includes lectures on how CheckPoint features work and the walk-through of the configuration in the lab/production environment.

Introduction to CheckPoint Technology

  • Building the Lab

  • Installing OS / Configuration

  • Overview of the products

  • Checkpoint Stateful inspection firewall

  • Licensing

CheckPoint Eco System

  • SIC

  • !Restarting SIC without CPstop/CPstart - Extra!

  • Backups

  • NAT

  • Policy configuration (Access Control) Firewall

  • Policy configuration (Access Control) APP control/URL filtering

  • UserCheck

  • Policy configuration (Threat Prevention)

  • Hacking and Protecting by IPS

  • Enforced Suspicious Activity Rules

  • Logging and Reports

VPN (Virtual Private Network)

  • IPSec (Overview)

  • SSL (Overview)

  • Deploy VPN IPSEC [LAB]

ClusterXL

  • High Availability / Load Sharing

  • Deploy ClusterXL [LAB]

  • CCP Overview

HTTPS Inspection

  • HTTPs inspection

  • HTTPs inspection LAB

CCSE Pre-course (Advanced)  [This section will be updated incrementally]

  • Threat Emulation licensing and deployment in the cloud

  • Transparent Upgrade to R80.30 in a cluster


Bonus: Lab guides included


Who this course is for:
  • System Administrators
  • Information Security Analysts
  • Support Analysts
  • Network Engineers
  • Firewall Enthusiasts
  • Security Engineers
Course content
Expand all 37 lectures 05:45:02
+ Introduction to the technology [Lecture]
3 lectures 39:45

A brief history of Evolution of Check Point Blades. Overview of the products.

History
10:05
  • Firewall in OSI model

  • Stateful Inspection

  • Check Point Architecture

Preview 21:00
+ Introduction to the technology [LAB]
4 lectures 28:48

Going through the process of Installing Gaia OS in VMware workstation scenario.

Preview 06:53

Configuring Standalone in First Time Configuration Wizard.

First Time Wizard
09:23
Topology for the LAB
01:46

Installing a license into your Check Point appliances/VMs.

Licensing
10:46
+ Check Point Ecosystem [Lecture]
5 lectures 48:30

Commands that are really useful when you are a Check Point administrator.

Important linux commands (Part1)
10:42

Another chunk of important Linux commands.

Important Linux commands (Part2)
10:25
  • What is SIC?

  • SIC statuses

  • Ports used by SIC

SIC
05:10
  • What is NAT? 

  • Quick look into fw ctl chain and how it relates  to NAT

  • Hide NAT (traffic  flow)

  • Static NAT (traffic flow)

NAT
15:02
  • Snapshot

  • Backup and restore

  • show configuration / save configuration

  • Migrate (upgrade_export / migrate export)

Backups
07:11
+ Check Point Ecosystem [LAB]
11 lectures 01:26:13

Exploring Gaia WebUI and its different features.

Overview of GAIA WebUI
06:44

A general overview of SmartConsole and SIC establishment.

Getting to know SmartConsole / SIC
10:14

SIC restart without stopping a firewall from production.

Restarting SIC without CPstop/CPstart - Extra!
04:59

Exploring and setting up an access control policy for the firewall module.

We are going to take a look at different layers.

Policy configuration (Access Control) Firewall
15:14

We will be setting up automatic NAT.

Automatic NAT
04:00
Policy configuration (Access Control) APP control/URL filtering
08:16
Policy configuration (Threat Prevention)
14:36
Hacking and Protecting by IPS
04:17
Enforced Suspicious Activity Rules
04:24
Logging and Reports
05:27
+ VPN IPSEC and SSL [Lecture]
3 lectures 41:30
  • How IPSEC VPN works

  • IPSEC troubleshooting

VPN IPSEC
17:24
  • What is SSL VPN?

VPN SSL
05:58

We are going to deploy Site-to-Site VPN in our Lab.

Deploy VPN IPSEC [LAB]
18:08
+ ClusterXL [Lecture]
3 lectures 20:49
  • What is a Cluster and how Check Point defines it?

  • ClusterXL High Availability

ClusterXL High Availability
08:34
  • ClusterXL Load Sharing

  • Unicast and Multicast modes

ClusterXL Load Sharing
07:32
  • Synchronization of connections table between Cluster Members

  • Delta Sync and Full Sync

Synchronization (CCP)
04:43
+ ClusterXL [LAB]
2 lectures 18:54

We are going through a process of deploying ClusterXL in production.

Deploy ClusterXL [LAB]
12:35
  • Important notes about ClusterXL routing

  • "clusterXL_admin down" and "clusterXL_admin up" commands

  • Demonstration how a cluster works during failover

ClusterXL Routing [LAB]
06:19
+ HTTPs Inspection [Lecture and LAB]
2 lectures 15:05
  • What is HTTPS inspection?

  • What blades are working in pair with HTTPS inspection? 

  • HTTPS inspection flow

HTTPS inspection
06:37

We are going to deploy outbound HTTPS inspection in our LAB.

Deploy HTTPS inspection [LAB]
08:28
+ CCSE Pre-course (Advanced)
3 lectures 45:24
  • Overview of Sandblast technology (Threat Emulation and Threat Extraction)

  • Ways to license Sandblast

  • Showing steps to enable appliance/cloud/hybrid emulation

Sandblast (Overview, Licensing, Selecting emulation Environment)
09:51

Transparent upgrade to R80.30 in a HA cluster environment

Transparent Upgrade to R80.30 in a cluster
22:15

In this lesson we talk about what types of IPS exist, difference between HIPS and NIPS; In what modes the NIPS works and we also discuss the difference between IPS and WAF.

IPS - [Part1]
13:18