Check Point Firewall Enforcement

This topic describes Check Point Firewall Enforcement and the related supported configurations and objects it adds to the management system. It also outlines prerequisites for on-premises onboarding.

With Check Point Firewall Enforcement, you can select the Check Point Firewalls and Managements through which you want to execute an automation. It lists the Check Point Firewall from both on-premises Security Management Server and (S1C).

For an on-premises Security Management Server, make sure that you have on-boarded the Check Point Firewall. See ../on-boarding-products/on-boarding-products.dita.

Note:
  • Check Point Firewall R81 and higher is supported as the enforcer.

  • VSX Check Point Firewalls/VSX Clusters are supported with Management on versions R81.20 and higher with Configuration Sharing Take 187. See https://support.checkpoint.com/results/sk/sk177205.

  • Check Point Firewalls/Clusters managed with SmartProvisioning are not supported.

Playblocks adds these network objects to your Security Management Server:

  • Allowed Sources - External or internal resources that are not blocked by Playblocks.

  • Blocked Sources - External resources that are blocked from accessing the organization by Playblocks's enforcement points.

  • Blocked Destinations - External or internal destinations that are blocked by Playblocks's enforcement points.

  • Quarantined Sources - Internal resources that have limited outgoing access by Playblocks's enforcement points.

  • Playblocks DataCenter - Generic Data Center that allows dynamic enforcement of Playblocks on Check Point Firewalls.

  • Playblocks Policy - UserCheck Interaction. A block page appears in the browser in case the device is in quarantine. You can customize this page in SmartConsole.

It also creates a predefined Access Policy Layer called Automated Remediation. This layer is added all your security policies and installed on the selected Check Point Firewalls.