Features
- Cover Type: Paperback with 656 pages
- Published by: Addison-Wesley Professional
- Edition: 1st Edition January 31, 2004
- Written in: English
- ISBN 10 Number: 0321180615
- ISBN 13 Number: 978-0321180612
-
Book Dimensions:
9.1 x 7 x 1.2 inches
- Weighs: 2.2 pounds
Product Review
There are open-source firewalls, and there are commercial firewalls that are easier to configure. No
software firewall, however, has the reputation for impermeability that Check Point FireWall-1 NG has.
Essential Check Point FireWall-1 NG exists to serve the network administrator as a manual and ready reference for the defensive utility. It's a sensitive role, because a poorly administered firewall can be worse than no firewall at all. Dameon Welch-Abernathy provides his readers with the knowledge they need--in the form of both instructions and raw information--to install, set up, and administer FireWall-1 NG properly in a variety of configurations.
A word of warning: This book provides detailed installation instructions for
Microsoft Windows 2000 only. Though other supported operating systems get some coverage, only for Windows does the author walk you through the complete set of installation screens. This may or may not be a problem for you. With installation out of the way, the book treats configuration in an approximately platform-neutral fashion (though all screen shots are from Windows 2000). Typically, Welch-Abernathy opens a section with some theoretical information (about authentication, say, or firewalling in VPNs), then provides a relevant stepped procedure for a typical scenario, then goes through a very useful series of questions and answers (which are indexed separately--a helpful feature). It's a good approach that helps guarantee the reader gets the required information.
--David Wall Topics covered: How to knowledgeably and effectively support Check Point FireWall-1 NG. In addition to basic firewall functionality and rule-setting, the author covers Virtual Private Network (VPN) setups, alternative forms of user authentication, Network Address Translation (NAT), and reliability issues. Special chapters cover the INSPECT and SecuRemote/SecureClient utilities.
Back Cover Copy
"When it comes to security products and technologies, experience is far and away the best teacher. PhoneBoy has been installing, running, and supporting Check Point FireWall-1 for years, and his experience shows in this book. Save yourself the pain of learning from your own mistakes--let PhoneBoy show you the right way to manage your FireWall-1 NG infrastructure."
--Tina Bird, Computer Security Officer, Stanford University
"Dameon has taken his original definitive guide and updated it thoroughly for NG. No other book is informed by his depth of experience with Check Point. Accept no substitutes!"
--Matthew Gast, author of 802.11 Wireless Networks: The Definitive Guide
"PhoneBoy is the de facto expert on this product, and people have been clamoring for an NG book from him since he published the first one. No one can compete with him."
--Valerie M. Leveille, Professional Educator
"Dameon is the foremost authority on FireWall-1. He has the knowledge to give details of FireWall-1 functionality that no other reference on this topic can."
--Paul Keser, Senior Network Security Engineer, Raytheon ITSS/NASA Ames Research Center
"This book is the Swiss army knife solution for Check Point FireWall-1 NG."
--Thomas Warfield, TNT-OK.com
Now there's a definitive insider's guide to planning, installing, configuring, and maintaining the newest version of the world's #1 firewall: Check Point™ FireWall-1® Next Generation™. Leading Check Point support authority Dameon Welch-Abernathy (a.k.a. PhoneBoy) offers exclusive hands-on tips, techniques, checklists, and detailed sample configurations you can use right now to improve reliability, efficiency, and manageability in your Check Point environment.
The author's previous Check Point FireWall-1 guide became an instant bestseller, earning the praise of security professionals worldwide. This new book has been thoroughly revamped to reflect Check Point FireWall-1 NG's powerful new features, and it includes even more expert solutions from PhoneBoy's FireWall-1 FAQ, the Web's #1 independent Check Point support site. Whether you're a security/network architect, administrator, or manager, you'll find it indispensable.
Whether you're running FireWall-1 NG on UNIX or Windows platforms, this book brings together expert guidance for virtually every challenge you'll face: building your rulebase, logging and alerting, remote management, user authentication, inbound/outbound content restriction, managing NAT environments, building site-to-site VPNs with SecuRemote, even INSPECT programming. Welch-Abernathy also covers high availability in detail, identifying proven solutions for the challenges of implementing multiple firewalls in parallel.
0321180615B12192003
Reader Reviews
This is a how-to book clearly intended primarily for those who have already decided to install firewall 1 software on their systems. There are several things I like about this book, not the least of which is the author's honest, straightforward approach to his subject matter. I also really like the extensive use of FAQ's to resolve many of the challenges likely to be encountered in implementing your firewall protection. But what makes that especially helpful is the comprehensive table of contents listing just the FAQ's. My favorite chapter is the one devoted to planning your firewall system. It's thorough, including all of the items that should be considered in the planning process. For my money, this chapter alone is probably worth the cost of the book. My advice is to read this book before you start spending money on the software. Follow all of the advice about planning. Then use the book to help you make the most of what you buy.
Comment | |
(Report this)
Search for books at
