Hi all,
I've passed the CCSA NGX R65 (156-215.65) 3 weeks ago.
I've been using Check Point Firewall since version 3.0a but I found the questions more difficult than what I expected to find.
And it seems that this new CCSA exam (156-215.65) has been re-organized.
So here are some info that may help to prepare the exam.
The questions are organized in predefined sections (but during the test, the questions are all mixed):
Introduction to VPN-1 Objective 1
Introduction to VPN-1 Objective 2
Introduction to the Security Policy Objective 1&2
Introduction to the Security Policy Objective 3&4
Introduction to the Security Policy Objective 5
Introduction to the Security Policy Objective 6 - Nat
Introduction to the Security Policy Objective 7
Introduction to SecurePlatform Objective 1
Introduction to SecurePlatform Objective 2
Monitoring Traffic and Connection Objective 1&2
Monitoring Traffic and Connection Objective 3&4
SmartDefense & Content Inspection Objective 1&2
SmartDefense & Content Inspection Objective 3&4
Authentication
CheckPoint QoS
Know the most important Ports/Services used between the different Check Point components.:
256 FW1
257 FW1_Log
18190 CPMI
18191 CPD
259 FW1_Telnet Auth
900 FW1_Http Auth
Full list of ports used by NG X:
NGX FAQ - Ports used by Check Point NGX Know how QoS rules and subrules work.
Know what are WFRED, IQ, RDED, Diffserv.
Weird questions concerning SmartDefense and Content Inspection:
Better to know all protections available and in which category they belong to.
Know when to use Client Auth, Session Auth and User Auth
Better to know the options available in Client Auth and when to use them.
Know the difference between static nat and dynamic nat.
And when to use manual nat instead of automatic nat.
VPN is not anymore covered in CCSA NGX R65.
Hope it will help.
Steph