A firewall's basic task is to regulate some of the flow of traffic between computer networks of different trust levels. Typical examples are the Internet which is a zone with no trust and an internal network which is a zone of higher trust. A zone with an intermediate trust level, situated between the Internet and a trusted internal network, is often referred to as a "perimeter network" or Demilitarized zone (DMZ).
Without proper configuration, a firewall can often become worthless. Standard security practices dictate a "default-deny" firewall ruleset, in which the only network connections which are allowed are the ones that have been explicitly allowed. Unfortunately, such a configuration requires detailed understanding of the network applications and endpoints required for the organization's day-to-day operation. Many businesses lack such understanding, and therefore implement a "default-allow" ruleset, in which all traffic is allowed unless it has been specifically blocked. This configuration makes inadvertent network connections and system compromise much more likely
About this training
This set of programs cover various aspects of Firewall Security related to software based firewalls and hardware based firewalls. To derive the complete benefit of implementing a firewall as part of the organization’s network security the firewall needs to be properly configured and managed.
Checkpoint SA
The objective of this program is to teach participants how to implement administer and maintain perimeter security using Checkpoint Firewall. The program provides in-depth demonstration of different topologies and real time scenarios.
Course Outline
- Check Point Solutions
- Check Point NG with Application Intelligence - Management I
- VPN-1/FireWall-1 Overview
- The Security Policy
- Working with the Smart Dashboard
- SmartView
- Smart Defense
- Authentication
- Network Address Translation
- Installation Backups
- VPN-1/FireWall-1 Upgrades
- Licensing
Checkpoint SE
The objective of this program is to teach participants how to implement administer and maintain perimeter security using the advanced features of Checkpoint Firewall. The program provides in-depth demonstration of different topologies and real time scenarios.
Course Outline
- Check Point NG with Application Intelligence - Management II
- VPN-1/FireWall-1 Installation
- Tracking and Alerts
- Load Balancing
- Enabling Voice Over IP Traffic
- Content Security
- Encryption and Virtual Private Networks
- Certificate Authorities
- Configuring VPNs
- VPN for Remote Clients
- VPN-1 Secure Client
Cisco IOS Secur
The objective of this program is to educate network / security professionals on how to describe, configure, verify and manage the Cisco Router as a perimeter security device. The knowledge gained through this program can be used to implement secure solutions for enterprise or small to medium sized networks.
Course Outline
- Basic Cisco Router Security
- Advanced AAA Security for Cisco Router Networks
- Cisco Router Threat Mitigation
- Cisco IOS Firewall CBAC Configuration
- Cisco IOS Firewall Authentication Proxy Configuration
- Cisco IOS Firewall IDS Configuration
- Building Basic IPSec Using Cisco Routers
- Building Advanced IPSec VPNs Using Cisco Routers and Certificate Authorities
- Configuring Cisco Remote Access IPSec VPNs
- Managing Enterprise VPN Routers
Cisco PIX
The objective of this program is to educate network / security professionals on how to describe, configure, verify and manage Cisco PIX firewall. The knowledge gained through this program can be used to implement secure solutions for enterprise or small to medium sized networks.
Course Outline
- Cisco PIX Firewall Technology and Features
- Cisco PIX Firewall Family
- Getting Started with the Cisco PIX Firewall
- Translations and Connections
- Access Control Lists and Content Filtering
- Object Grouping
- Advanced Protocol Handling
- Attack Guards, Intrusion Detection, and Shunning
- Authentication, Authorization, and Accounting
- Failover
- Virtual Private Networks
- System Maintenance
- Cisco PIX Device Manager
|
