GIAC GCFW Certification

abrunaabruna Posts: 11Member ■□□□□□□□□□
I am thinking of taking GCFW(Giac certified firewall analyst) exam, and was wondering if anyone has already taken this exam.
I am preparing by myself without any Sans training, just wondering how hard it is to pass this exam. Not enough material available on internet. The exam is so expensive and even the course material. I am a firewall specialist , work primarily on Cisco PIX and ASAs and just reading the book "Inside Perimeter Security" to prepare. Do I really need to buy Sans material to pass it ?

Any help in this regards will be appreciated.

Comments

  • dynamikdynamik Posts: 12,314Banned ■■■■■■■■□□
    Are you able to decode a hex **** of a packet? icon_eek.gif
  • Paul BozPaul Boz Posts: 2,621Member ■■■■■■■■□□
    You're going to waste a thousand bucks if you challenge this course without their material. I'm taking it on November 13th and when I took one of the practice tests (after reading about 85% of the material and not doing any labs at that point) I only got a 75%. I do GCFW-related material for my job on a daily basis and knew quite a lot of the material going in, but even still, I would fail the test probably 9/10 times without their material. I have never met anyone that has passed a SANS exam without their training material. I'm not saying it can't be done, but your chance of success is laughably low.

    Just being a firewall admin won't really help. You have to fully understand TCP/IP to the point where you can decode a packet in HEX format and answer questions about the contents and options. You have to know snort, TCP/Windump, architecture, auditing, etc...
    CCNP | CCIP | CCDP | CCNA, CCDA
    CCNA Security | GSEC |GCFW | GCIH | GCIA
    [email protected]
    http://twitter.com/paul_bosworth
    Blog: http://www.infosiege.net/
  • unsupportedunsupported Posts: 192Member
    SANS bases their tests on the courseware. If you are unable/unwilling to purchase the material then you may want to try to track down some books written by the instructors/author of the course. Since it is open book, read it, index it, use it. When I took my GCIH I had the courseware and the authors book, atleast one of the questions was lifted directly from the book.

    There are also other less expensive methods for SANS training which will get you the MP3 of the course and courseware.

    Good luck!
    -un

    “We build our computer (systems) the way we build our cities: over time, without a plan, on top of ruins” - Ellen Ullman
  • abrunaabruna Posts: 11Member ■□□□□□□□□□
    Thanks for the info, I am planning to buy their course material. Please let me know what all books you have been reading to pass this exam apart from the course material.
    So far I have read this book which I have heard is recommeded for this exam.
    Inside Network Perimeter Security
  • Paul BozPaul Boz Posts: 2,621Member ■■■■■■■■□□
    I have not used any outside reference materials.
    CCNP | CCIP | CCDP | CCNA, CCDA
    CCNA Security | GSEC |GCFW | GCIH | GCIA
    [email protected]
    http://twitter.com/paul_bosworth
    Blog: http://www.infosiege.net/
  • abrunaabruna Posts: 11Member ■□□□□□□□□□
    Paul, Can you please let me know what courses did you buy from them ? I can only buy self study package but cannot attend a course as it will cost more. Please advise is it worth challenging this exam after studying self study package ?
Sign In or Register to comment.