Check Point Basics R80.40 - SmartConsole Part02 - Firewall Policy

Показать описание

In this video we check on how the rules are built within check point.
Checking the diff fields and what they do actually mean within the smartconsole.
We are using the latest version of check point, in this case R80.40

This will be a multipart serie to show you the basics of check point smart console

Рекомендации по теме

Комментарии

awesomely described. need to see your more lectures on R80 console.

sportsboy

Hi Magnus, is there another way to reset hit count on a specific rule other than sk111832?

leeyoroshiyoshi

I learned you can use a NFS mount to extend your storage. This solution is several times cheaper than upgrading the checkpoint hardware.

anonymous

Hello, Magnus.
A query, please. When customers have several policy packages, and in turn, have several ClusterXL that manage it from an SMS, and ask you to create a rule, from a source to a destination, how can I know, in which policy package of all those that have, I must apply their requirements? Could you please guide me?

ranghelsoto

Hi, Thanks for the information, may I check how to extract firewall rules with "Hits" field?

kennoay

I learned that since R80 Check Point doesn’t exactly read the rule base top down rather to be more accurate it’s column based. It looks if there’s any rule matches the source address then makes a list of what it found then moves to the destination column and looks for matches and makes another list... etc, etc.. moving from one column to the other until it finds the matching rule.

anonymous

Can i use ip-addresses for rule source or destination, instead of network object id?

rikisyahputra

With regards to time based rules keep in mind that these rules will not drop an existing connection when the time expires it will only block new connections. The only way to drop existing connections is to automate policy install with connection rematch enabled.

anonymous

How the gateway identify users for source filtering in policies? they are just a bunch of IP packets? there is no LDAP user information in IP packets !!!

alejandrorodriguez

keep it in English or at least in Goblin 😄

davidjones

Trash firewalls, FortiGate is much more intuitive.

rexmundi

Check Point Basics R80.40 - SmartConsole Part02 - Firewall Policy

Check Point Basics R80.40 - SmartConsole Part01

Check Point Basics R80.40 - SmartConsole Part05 - Geoblocking

Check Point Basics R80.40 - SmartEvent Intro

Check Point Basics R80.40 - cpview and basic cli commands

Check Point Basics R80.40 - SmartConsole Part03 - Nat

Check Point Basics R80.40 - SmartConsole Part02 - Firewall Policy

Check Point Lab R80.40 - 10. Content Awareness

Check Point Basics R80.40 - SmartConsole Part04 - Application control and URL Filtering

Check Point Lab R80.40 - 2. Install SmartConsole

Check Point Firewall basics - How to add and generate licens files.

Check Point Lab R80.40 - 11. IPS

Check Point CCSE r80.40 Exam Topics

Learn Check Point Certified Security Expert (CCSE) R80.40 online | Koenig Solutions

Check Point CCVS r80.40 Course overview

Lecture 1 - Checkpoint firewall R80.40 Complete installation

Check Point Firewall R80.40 - Training Lab 7 | New interfaces and Antispoofing

How To's Upgrade Check Point R80.40 to R81.10

Check Point Firewall R80.40 - Training Lab 1 | Management installation

Check Point Firewall R80.40 - Training Lab 6 | Cluster XL failover and priority

Check Point Lab R80.40 - 7. Logs&Monitor + SmartEvent

Adding an identity provider to Check Point R80.40

Check Point Lab R80.40 - 5. Compliance and Https Inspection

Check Point Firewall R80.40 - Training Lab 9 | Create scpuser account

Check Point R80.40 Boot Camp Training