1. Home
  2. Networking
  3. Check Point FireWall

Chapter 2. Planning Your FireWall-1 Installation

Careful planning should precede the installation of any firewall. In this chapter, I first discuss how to determine the current state of your network by developing a network topology. Next, I discuss how to discover "zones of trust" and figure out where to put your firewalls. I then show you how to set down some basic security policies in writing. And finally, I cover one of the trickiest parts of a FireWall-1 installation: licensing.

By the end of this chapter, you should be able to:

  • Explain what a security policy is and how it applies to your organization

  • Break down a security policy into three critical components: what, who, and how

  • Develop an overall firewall architecture and rulebase design using your organization's security policy as a guide

  • Understand what license types are available, how they are enforced, and how to get them



    		Frequently Asked Questions
    		Preface
    		Chapter 1. Introduction to Firewalls
    		Chapter 2. Planning Your FireWall-1 Installation
    		Network Topology
    		Developing a Site-Wide Security Policy
    		Fun with Check Point Licensing
    		Summary
    		Chapter 3. Installing FireWall-1
    		Chapter 4. Building Your Rulebase
    		Chapter 5. Logging and Alerting
    		Chapter 6. Common Issues
    		Chapter 7. Remote Management
    		Chapter 8. User Authentication
    		Chapter 9. Content Security
    		Chapter 10. Network Address Translation
    		Chapter 11. Site-to-Site VPN
    		Chapter 12. SecuRemote and SecureClient
    		Chapter 13. High Availability
    		Chapter 14. INSPECT
    		Appendix A. Securing Your Bastion Host
    		Appendix B. Sample Acceptable Usage Policy
    		Appendix C. 'firewall-1.conf' File for Use with OpenLDAP v1
    		Appendix D. 'firewall-1.schema' File for Use with OpenLDAP v2
    		Appendix E. Performance Tuning
    		Appendix F. Sample 'defaultfilter.pf' File
    		Appendix G. Other Resources
    		Appendix H. Further Reading