TRAINING‎ > ‎COURSES‎ > ‎

VSX Administration

 
  
 
 
Course VSX Administration
Description

VSX is a CheckPoint product that supports up to 250 virtual systems/firewalls on one physical platform. Although many of the administrative aspects from the GUI perspective have remained the same, administrators must be aware that they are on a physical chassis that is supporting 250 other firewalls and thus caution is required so as not to corrupt the operation of the physical chassis.

This class covers all aspects of VSX administration from the basic setup to advanced debug with an afternoon of break and fix.

Hours

3 days

 Outline
  1. VSX Overview - Overview of VSX compared to non-VSX systems
  2. Rule Administration - Adding and deleting rules is 95% the same with some minor changes. This sectiion reviews the differences
  3. Interfaces - Interfaces are somewhat different on VSX systems. This section describes the differences
  4. Routing - Adding and removing routes is also different on VSX systems. This section describes the differences.
  5. Internal Architecture Overview - Review of CheckPoint and VSX internals
  6. Command Line Review - Review of important command line debugging commands from GAIA, Unix, SPLAT, VSX
  7. Advanced Debugging - tcpdump, wireshark, fw monitor, fw ctl debug, cluster debug
  8. Break and Fix - Afternoon of instructor breaking systems and students find and resolving the issue

Labs

This class has 5 labs that go through the process of creating and attaching and debugging network connections to a VSX environment. These labs are led by the instructor and the students follow as the instructor leads them.

  1. LAB 1: Install VSX physical platform
  2. LAB 2: Create a Virtual System 
  3. LAB 3: Create and push policy on VSX
  4. LAB 4: Create new interfaces and debug and fix spoofing issues
  5. LAB 5: Debug routing problem and add new routes
  6. LAB 6: Break and Fix
Prerequisites
  1. Mandatory
    1. TCP/IP basics
    2. Check Point firewall admin basics - adding and deleting rules
    3. 3+ years of CheckPoint firewall admin
  2. Helpful
    1. VLANs
    2. Routing

Materials
  1. Labs - Performed on Amazon Web Services (AWS) - You need your laptop with Windows Remote Desktop client to connect to AWS 
  2. Powerpoint slides - Provided