MHO-140 Front Panel

Important - This section describes the default configuration. It is possible to change the port type (Management, Uplink, and Downlink) in the Gaia Operating System on the Quantum Maestro OrchestratorClosed A scalable Network Security System that connects multiple Check Point Security Appliances into a unified system. Synonyms: Orchestrator, Quantum Maestro Orchestrator, Maestro Hyperscale Orchestrator. Acronym: MHO.. See the Maestro Administration Guide for your version > Chapter Configuring Security Groups > Section Configuration Procedure > Section Configuring Security Groups in Gaia Clish > Section Configuring the Port Settings.
Legend

Item

Description

1

Ports 1 - 4 (colored green), through which you manage the Security GroupsClosed A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected..

To these ports you connect:

Important - It is possible to use only these four ports to manage the Security Groups.

Only these ports support the Gaia Clish command "show maestro port <ID> type management".

2

LEDs. See LEDs.

3

Ports 5 - 26 (colored gray) are the Uplink portsClosed Interfaces on the Quantum Maestro Orchestrator used to connect to external and internal networks. Gaia operating system shows these interfaces in Gaia Portal and in Gaia Clish. SmartConsole shows these interfaces in the corresponding SMO Security Gateway object. 1 Gbps / 10 Gbps.

To these ports you connect your external traffic and internal traffic networks.

You use DAC or Fiber cables (with transceivers).

Note - The 25 Gbps speed is available in:

4

Ports 27 - 47 (colored orange) are the Downlink ports.

To these ports you connect your Check Point Security Appliances.

You use DAC or Fiber cables (with transceivers).

5

Ports 49 - 55 (colored dark red) are the Uplink ports 25 Gbps / 40 Gbps / 100 Gbps.

To these ports you connect your external traffic and internal traffic networks.

You use DAC or Fiber cables (with transceivers).

Note - The 25 Gbps speed is available in:

6

LEDs that show the state of the split interfaces when you connect with Breakout cablesClosed An optical fiber cable that contains several jacketed simplex optical fibers that are packaged together inside an outer jacket. Synonyms: Fanout cable, Fan-Out cable, Splitter cable. to the 40 / 100 GbE Uplink ports (5).

7

Port 48 (colored blue) is the Internal Synchronization port.

You connect a DAC cableClosed Direct Attach Copper cable. A form of the high-speed shielded twinax copper cable with pluggable transceivers on both ends. Used to connect to network devices (switches, routers, or servers). between ports 48 on two Quantum Maestro OrchestratorsClosed See "Maestro Orchestrator". MHO-140 for redundancy on the same site.

Important - It is not supported to change the default type of this port ("ssm_sync").

8

Port 56 (colored yellow) is the External Synchronization port in the Dual Site configuration.

You connect a DAC cable between ports 56 on two Quantum Maestro Orchestrators MHO-140 for redundancy between different sites.

Note - In the R80.20SP version, Port 47 is the default External Synchronization port.

Note - It is possible to connect DAC or Fiber cable (with transceivers) to each port (from 1 to 56).

Warning - It is possible to connect Breakout cables only to the top ports 49, 51, 53, and 55.

In this case, the bottom ports 50, 52, 54, and 56 are disabled.

See MHO-140 Splitting Options.