Roberto Carratalá, Cloud & DevOps Architect, Red Hat®
Diego Escobar, Cibersecurity Specialist Architect, Check Point®
In this hands-on lab, we will cover the comprehensive Cybersecurity capabilities available in Red Hat Ansible Tower and Checkpoint Threat Prevention Systems. You will gain experience with:
-
Hands on with Ansible Tower and how to integrate them through cloud native environments as Microsoft Azure
-
Define as a code all the objects of Ansible Tower (Job Templates, Inventories, Workflows, Nodes, etc)
-
Automatic deployment of a fully functional Checkpoint environment with Security Management Server and Gateway
-
Automatic installation and configuration of a Windows Server (including installation of Packages and Updates)
-
Deployment fully automated of Kubernetes cluster and deployment of an Application of example (Etherpad)
-
Deployment fully automated of a Jboss server and deployment of an Application of example (Ticket Monster)
-
Deployment and configuration of Checkpoint Rules & Policies for hardening and securing your apps.
-
Establish NAT rules and expose your applications through a Checkpoint Gateway, logging and monitoring all the actions through your Apps
-
How to work with Infrastructure as Code. EVERYTHING is code. Everything. No manual actions will be performed in this lab :)
The entire lab environment is hosted online and includes Red Hat Ansible Tower®, Red Hat Enterprise Linux®, Checkpoint® Security Management Virtual Appliances, Checkpoint® Security Gateway, Microsoft® Windows, Microsoft Azure®, Red Hat® JBoss Web Server and Kubernetes®.
The lab could be pre-hosted, or you can deploy your own flavor for your own tests (check link::documentation/prelab.doc[prelab.doc] in the documentation).
-
Lab 1: Integrating Ansible Tower with DevOps and Cloud Tools
-
Lab 2: Deploying the DevSecOps environment in Azure with Ansible Tower
-
Lab 3: Checkpoint Cybersecurity environment automatic configuration
-
Lab 4: Automatic systems securization through Policies and Checkpoint Management Objects
-
Lab 5: Application Hardening with Checkpoint Firewall and NAT Rules fully automated
-
Lab Opt: Preprovision Infrastructure for self deploy the lab
This lab was presented by Roberto Carratalá and Diego Escobar in the AnsibleFest2020. The slides are available with more details about the event, and with links to the Video Demos.