TABLE OF CONTENTS Check Point has worked hard to develop an easy-to-use interface for installing and configuring their product line. With the continuing development of SecurePlatform, installing FireWall-1/VPN-1 has become easier.
In this chapter we review what must be done prior to the actual installation and configuration of a Check Point environment. We then demonstrate how to install SecurePlatform and then install and configure the gateway and management server. Once communication between the different components is set up, we will install and configure the SmartConsole, which will be used to connect to the SmartCenter Server to configure the security policy.
Prior to installation of the gateway, Check Point recommends following a simple check list to ensure that your gateway is fully functional after installation. One of the most important steps to do in preparation for your gateway is to harden the underlying operating system (OS). You must ensure that your OS is not running any unnecessary services that may leave your gateway vulnerable and take up valuable processing time. For example, if you plan to run FireWall-1/VPN-1 on a Windows 2000 server, there may be many unwanted services that were installed during the installation of the OS. Take the time to review the services and remove or disable those you will not be using. Typical services include NETBIOS Extended User Interface (NetBEUI), File Transfer Protocol (FTP), and Web servers. If you harden the system from isolated networks, no one can access it.
Your gateway s prime function after inspecting packets...
