Check Point MDSM with VSX [Multi-Domain Security Management with Virtual System Extension] (CC-CCSME)

This course teaches you how to effectively design, install, configure and manage multi-domain security management with virtual system extension. 

Type

Certified Training Course

Level

Advanced

Cost

R 16 900 p.p. (Excl. VAT)

SATV Redeemable 

N/A

Delivery Method

Classroom-based, Instructor-led with emphasis on hands-on exercises

Duration

5 days

Start time: 09:00 (Registration will commence at 08:30 on the first day)

Prerequisites

Students should have the follwing knowledge:

  • CCSE Certification or attendance of CCSE course or equivalent hand on industry experience. 

Course Objectives

We recommend that students have:

  • Install, configure, and troubleshoot Multi-domain security management
  • Configure and implement a Global Policy
  • Transition and consolidate physical firewalls to a virtualized environment
  • Consolidate multiple firewalls onto a single management platform
  • Convert a security management server to a domain management server
  • Use advanced migration tools to quickly migrate existing configurations
  • Apply common troubleshooting best practices  
  • Implement MDS High-Availability 

Exam & Certifications

This course helps prepare students for the CCMSE exam #156-820.77 Students need to know the following in preparation for exam #156-820.77:

  • How to install, configure and manage the MDM environment
  • To describe common deployment scenarios
  • To describe the traffic inspection process
  • To configure DMS high availability
  • To configure and implement a global policy
  • To apply common troubleshooting practices  

Exam Prerequisites:

  • CCSE R75 or later
  • 6 months to 1 year of experience with Check Point products 

Course Topics

1. Course Introduction

  • Overview
  • Course Goals and objectives
  • Course flow 

2. Multi-Domain Security Management Deployment

  • Identify Multi-Domain security management components
  • Describe how Multi-Domain security management uses domain management servers to manage domain security gateways from one central location
  • Identify the relationships between the MDSM components
  • Identify the remotemanagement communication process
  • Describe the difference between a standard and pointof-presence configuration
  • Describe how to define a multidomain security management operation within a secured environment
  • Describe how to enable control connections 
  • Identify the domain log server 

3. Multi-Domain Security Management Installation and Configuration

  • List the minimum system requirements for installing the multi-domain server
  • Demonstrate how to install a domain management server and multi-domain server 
  • Demonstrate how to configure a multi-domain server as the primary multi-domain server

4. Multi-Domain Security Management Logging Features

  • Define a domain log module
  • Describe the steps needed to configure a domain log server in a multi-domain security management environment
  • Describe the steps needed to install and configure a multidomain log server in a multi-domain security management environment

5. Multi-Domain Security Management Advanced Features

  • Identify the differences between domain management server security policies and global policies
  • Describe the steps for implementing a global policy
  • Describe how to create a global service
  • Describe how to create a global VPN
  • Describe the steps needed to migrate an existing security management server into the multi-domain security management environment
  • Describe the steps needed to install and configure an additional multi-domain server for high availability functions 
  • Describe the steps needed to synchronize multiple multidomain server machines
  •  Describe the steps needed to back up and restore a multidomain server 

6. Virtual System Extension Deployment

  • Compare and contrast virtual network topologies using VSX to physical network environments
  • Design/Plan a network using VSX technology, given a managed service providers business needs/requirements
  • Design/Plan a network using VSX, given business needs/requirements of a company with a large data center
  • Design/Plan a network using VSX, given business needs/requirements of a company that has 50+ enforcement points  

7. VSX Gateway Installation and Configuration

  • Perform initial configuration of a VSX gateway
  • Configure a management virtual system to meet customer/systems/security/ administrator requirements
  • Configure security for virtual router services and interfaces
  • Configure security policies for virtual systems, to secure networks Compare and contrast virtual systems deployments using VLAN-capable interfaces from deployments using dedicated NICs
  • Configure virtual systems to work with a VLAN-capable switch
  • Configure virtual systems to separate network traffic and associate with a defined virtual system for inspection 

8. VSX Advanced Features

  • Design/Plan a network using VSX to meet customer requirements for availability and system requirements
  • Configure VSX gateways to meet customer requirements for availability 
  • Configure VSX gateways to meet customer requirements for load-sharing
  • Compare and contrast the functions of virtual systems deployed in a bridge mode configuration to virtual systems, using IP routing 
  • Design/Plan a network using VSX with Virtual systems in Bridge mode, given a managed service providers business needs/requirements
  • Design/Plan a network using VSX with Virtual systems in Bridge mode, given business needs/requirements of a company with a large data center