MHO-170 Front Panel

Important - This section describes the default configuration. It is possible to change the port type (Management, Uplink, and Downlink) in the Gaia Operating System on the Quantum Maestro OrchestratorClosed A scalable Network Security System that connects multiple Check Point Security Appliances into a unified system. Synonyms: Orchestrator, Quantum Maestro Orchestrator, Maestro Hyperscale Orchestrator. Acronym: MHO.. See the Maestro Administration Guide for your version > Chapter Configuring Security Groups > Section Configuration Procedure > Section Configuring Security Groups in Gaia Clish > Section Configuring the Port Settings.
Legend

Item

Description

1

Ports 1 - 2 (colored green), through which you manage the Security GroupsClosed A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected..

To these ports you connect:

Important - It is possible to use only these two ports to manage the Security Groups.

Only these ports support the Gaia Clish command "show maestro port <ID> type management".

2

Ports 3 – 16 (colored gray) are the Uplink portsClosed Interfaces on the Quantum Maestro Orchestrator used to connect to external and internal networks. Gaia operating system shows these interfaces in Gaia Portal and in Gaia Clish. SmartConsole shows these interfaces in the corresponding SMO Security Gateway object. 25 Gbps / 40 Gbps / 100 Gbps.

To these ports you connect your external traffic and internal traffic networks.

You use DAC or Fiber cables (with transceivers).

Note - The 25 Gbps speed is available in:

3

Ports 17 – 30 (colored orange) are the Downlink ports.

To these ports you connect your Check Point Security Appliances.

You use DAC or Fiber cables (with transceivers).

4

Port 31 (colored yellow) is the External Synchronization port in the Dual Site configuration.

You connect a DAC cableClosed Direct Attach Copper cable. A form of the high-speed shielded twinax copper cable with pluggable transceivers on both ends. Used to connect to network devices (switches, routers, or servers). between ports 31 on two Quantum Maestro OrchestratorsClosed See "Maestro Orchestrator". MHO-170 for redundancy between different sites.

Note - In the version R80.20SP, the default External Sync was Port 30.

5

RJ45 port with the label MGMT. See MGMT Ports.

To this port you connect a client, from which you configure the Gaia Operating System on the Quantum Maestro Orchestrator (in Gaia Portal, or Gaia Clish).

6

USB 2.0 port. See USB Port.

7

System Health LEDs. See LEDs.

8

Reset button with the label RST. See Reset Button.

9

Port 32 (colored blue) is the Internal Synchronization port.

You connect a DAC cable between ports 32 on two Quantum Maestro Orchestrators MHO-170 for redundancy on the same site.

Important - It is not supported to change the default type of this port ("ssm_sync").

10

RJ45 port with the label CONSOLE. See Console Port.

To this port you connect a client, from which you configure the Gaia Operating System on the Quantum Maestro Orchestrator (in Gaia Clish).

Notes - It is possible to connect DAC or Fiber cable (with transceivers) to each port (from 1 to 32).

Warnings: