CloudGuard Network High Availability for Azure Stack

Microsoft Azure Stack now provides the ability to move remote data center capabilities to on-premises. For more information about Azure Stack, see Microsoft's Azure Stack documentation.

Prerequisites

Before setting up your system, you must be familiar with the these topics:

Microsoft Azure Stack:

• Virtual Network

• Virtual Machines

• Load Balancers

• High Availability ports

• Public IP addresses

• User Defined Rules (UDR)

• Role Based Access Control (RBAC)

Check Point

• R80.40

• Check Point with Microsoft Azure Stack

Setting Up Check Point Clusters in Azure

About Clusters:

A cluster is a group of Virtual Machines that work together in High Availability Mode. One Cluster Member is the Active, and the second Cluster Member is the Standby. The cluster fails over from the Active Cluster Member to the Standby Cluster Member when necessary.

• Cluster Members communicate with each other w unicast IP addresses.

• For inbound, outbound, and East-West traffic, Cluster Members rely on Azure Load Balancer to represent their external and internal Virtual IP addresses. Load Balancers only forward traffic to the Active Cluster Member.

When cluster failover occurs, the Cluster Member that is promoted to the active member uses an Azure API to reconfigure the routing tables to send traffic to itself.

Azure Stack API authentication:

To make API calls to Azure Stack automatically, Cluster Members need Azure Active Directory or Azure Stack Federation Services credentials. Use the Role-Based Access Control (RBAC) to enable Active Directory.