Book description
Check Point NGX R65 is the next major release of Check Point's flagship firewall software product, which has over 750,000 registered users. Check Point's NGX is the underlying security software platform for all of the company's enterprise firewall, VPN and management solutions. It enables enterprises of all sizes to reduce the cost and complexity of security management and ensure that their security systems can be easily extended to adapt to new and emerging threats. This title is a continuation of Syngress' best-selling references on Check Point's market leading Firewall and VPN products.- First book to market covering Check Point's new, flagship NGX R65 Firewall/VPN
- Provides bonus coverage for Check Point's upcoming NGX R65 Certification exams
- Companion Web site offers customized scripts for managing log files
Table of contents
- Copyright
- Technical Editor
- Assistant Technical Editor
- Contributing Authors
-
1. NGX R65 Operational Changes
- Introduction
- New SmartPortal Features
- New FireWall-1/VPN-1 Features
- Edge Support for CLM
- Integrity Advanced Server
-
New VPN Features
-
Understanding the New VPN Options
- Allowing Directional VPN Rules
- Allowing Backup Links and On-Demand Links
- Allowing Wire Mode VPN Connectivity
- Allowing Route-Based VPNs
- Allowing Permanent Tunnels
- Same Local IP and Cluster IP Address for VTIs
- Antispoofing for Unnumbered Interfaces on IPSO
- Dynamic Routing and VTIs
- Configurable Metrics for Dial-up Routes
- Interoperability between SecurePlatform and IPSO
- Route-Based VPN Improvements
- Customer-Defined Scripts for VPN Peers
- Route-Based VPN and IP Clustering Support
- RIM Performance Improvements on IPSO
- SSL Extender
- SecureClient Mobile
-
Understanding the New VPN Options
- ClusterXL
- Summary
- Solutions Fast Track
- Frequently Asked Questions
- 2. SmartClients and SmartManagement
-
3. Management Portal
- Introduction
- SmartCenter Installation
- Dedicated Server Installation
- A Tour of the Dashboard
- New in SmartDashboard NGX
- Your First Security Policy
- Other Useful Controls on the Dashboard
- Managing Connectra and Interspect Gateways
- SmartPortal
- Summary
- Solutions Fast Track
- Frequently Asked Questions
-
4. Advanced Authentication
- Introduction
- Authentication Overview
- Users and Administrators
- SmartDirectory
- User Authentication
- Session Authentication
-
Client Authentication
-
Configuring Client Authentication in the Rulebase
- ClientAuth | Edit Properties | General | Source
- ClientAuth | Edit Properties | General | Destination
- ClientAuth | Edit Properties | General | Apply Rule Only if Desktop Configuration Options are Verified
- ClientAuth | Edit Properties | General | Required Sign-On
- ClientAuth | Edit Properties | General | Sign On Method
- General | Successful Authentication Tracking
- Limits | Authorization Timeout
- Limits | Number of Sessions Allowed
- Advanced Topics
-
Configuring Client Authentication in the Rulebase
- Summary
- Solutions Fast Track
- Frequently Asked Questions
- 5. Advanced VPN Concepts and Tunnel Monitoring
- 6. Advanced VPN Client Installations
-
7. SmartDefense
- Introduction
- Configuring SmartDefense
- Network Security
- Application Intelligence
- Web Intelligence
- Summary
- Solutions Fast Track
- Frequently Asked Questions
- Protocol Summary
- 8. High Availability and Clustering
- 9. SecurePlatform
-
10. Advanced Troubleshooting
- Introduction
- NGX Debugging
- Packet Analysis
- Log Troubleshooting
-
VPN Analysis
- Encryption failure, decrypted methods did not match rule
- Received notification from peer: no proposal chosen
- Cannot identify peer for encrypted connection
- Encryption failure: packet is dropped as there is no valid SA
- Encryption failure: Clear text packet should be encrypted or clear text packet received within an encrypted packet
- Encryption Failure: Packet was decrypted, but policy says connection should not be decrypted
- VPN Client Analysis
- ClusterXL Troubleshooting
- Summary
- Solutions Fast Track
- Frequently Asked Questions
Product information
- Title: Check Point NGX R65 Security Administration
- Author(s):
- Release date: August 2011
- Publisher(s): Syngress
- ISBN: 9780080558677
You might also like
book
Microsoft® Windows® 2000 Security Handbook
Windows 2000 Security Handbook covers NTFS fault tolerance, Kerberos authentication, Windows 2000 intruder detection and writing …
book
Configuring Check Point NGX VPN-1/Firewall-1
Check Point NGX VPN-1/Firewall-1 is the next major release of Check Point's flagship firewall software product, …
book
CCENT Quick Reference Sheets
As a final exam preparation tool, the CCENT Quick Reference Sheets provide a concise review of …
book
CISSP Exam Cram™ 2
A new edition of this title is available, ISBN-10: 0789738066 ISBN-13: 9780789738066 Learn what you need …