SD-WAN Service GUI

This section provides a brief description of the views and pages available in Check Point Infinity Portal > SD-WAN Service.

The "Network" View

Page

Description

Getting Started

Contains the SD-WAN Wizard:

  • To create a new asset

  • To create a new profile

  • To open the Monitor view

Assets

Contains the objects you configured in SmartConsole on the on-premises Management Server or Smart-1 Cloud.

These are objects of such types as Security Gateway, Cluster, Host, Network, Service, Group, Address Range, Security Zone, Dynamic Object, and so on.

Notes:

  • You can use these objects in the Source and the Destination columns of SD-WAN rules.

  • From the top toolbar, you can:

    • Clone a selected object

    • Delete a selected object

    • Search for objects

    • Change the object view between List and Tiles

    • Enable the multi-select view (to select more than one object)

    • Refresh the list of objects

  • To see more information in the Tile view, click an Asset object and see the Attributes and General tabs.

  • To see more information in the List view, click a table row and see the Attributes and General tabs below the summary table.

Zones

Contains the objects you configure in Infinity Portal.

These objects are collections of assets.

Notes:

  • You can use these objects in the Source and the Destination columns of SD-WAN rules.

  • The Zone object that represents the entire Internet:

    • If you do not use the SD-WAN Wizard, then to represent the entire Internet, you must manually create a Zone object called Public Networks (the object name is case-sensitive).

    • The SD-WAN Wizard creates this object automatically, if you configure the connection type "Local Breakout".

  • In each Zone object, you must configure a query (on the General tab).

  • From the top toolbar, you can:

    • Create a new object

    • Search for objects

    • Change the object view between List and Tiles

    • Enable the multi-select view (to select more than one object)

    • Refresh the list of objects

  • To see more information in the Tile view, click a Zone object and see the General tab.

  • To see more information in the List view, click a table row and see the General tab below the summary table.

SD-WAN Policy

Contains the configured rules for steering the traffic.

See Configuring SD-WAN Policy.

Notes:

  • You configure these columns:

    • Name

    • Source

    • Destination

    • Services & Applications

    • Behavior

    • Enforcement

  • From the top toolbar, you can:

    • Create a new rule

    • Delete a selected rule

    • Enable the multi-select view (to select more than one rule)

    • Configure WAN Link Mapping

    • Configure Manage Objects

    • Search in rules

Profiles

Contains the summary of configured profiles for Nano-Agents on Security Gateways.

In the List view, the summary table shows these columns:

  • Profile

  • Status

  • Authentication

  • Connected agents

  • Outdated agents

Notes:

  • From the top toolbar, you can:

    • Create a new profile

    • Delete a selected profile

    • Search in profiles

    • Change the object view between List and Tiles

  • To see more information in the Tile view, click a Profile and see the General and Advanced tabs.

  • To see more information in the List view, click a table row and see the General and Advanced tabs below the summary table.

Agents

Contains the summary with Nano-Agents on Security Gateways.

From the top toolbar, you can control how to show the data:

  • Feed View

    Shows only the Hostname of the Security Gateway and the assigned Profile.

  • Grid View

    Shows all available data.

    The top summary table shows basic information.

    The bottom pane General shows more details for the row you clicked in the top summary table.

 

Notes:

  • To change the top table view between SD-WAN and General, right-click the table header and click the applicable view.

  • From the top toolbar, you can:

    • Select the type of agents to show (connected, disconnected, or both)

    • Delete a selected agent

    • Delete all agents

    • Search in agents

    • Change the object view between Feed View and Grid View

The "Monitor" View

See SD-WAN Monitoring.

Page

Description

Dashboard

The General tab shows a dashboard with widgets:

  • Gateways

  • VPN Tunnels

  • Steering Objects

  • Link Swaps (*)

  • Overall SLA (*)(**)

  • Top Applications by Traffic

(*) For more information, click the View Details link in the widget header.

(**) For more information, hover the mouse cursor over the icon.

The Live Monitoring tab shows real time information for Security Gateways and Steering Behaviors:

  • Link Swaps

  • Gateway Details

See:

Events

Shows steering events.

See Monitoring SD-WAN Steering Events in Infinity Portal.

You can:

  • Select a time period

  • Search in events (with special queries)

  • See the event statistics

  • Export the events

  • Change the order of columns in this view

Logs

Shows the traffic logs.

See Monitoring SD-WAN Traffic Logs in Infinity Portal.

You can:

  • Double-click a log record to see more details

  • Select a time period

  • Search in logs (with special queries)

  • See the log statistics

  • Export the logs

  • Change the order of columns in this view

Important:

  • For the on-premises Management Server, you must enable the Log Sharing in SmartConsole (see Optional: Enable Log Sharing:).

  • In Smart-1 Cloud, the Log Sharing is enabled by default.

The "Support" View

Page

Description

System

You can discard unpublished changes in all active sessions.

This operation is useful if an administrator is not available to complete the current session and leaves some objects locked. If objects remain locked, other administrators cannot change the configuration.

API

Provides an interface for GraphQL API.

See SD-WAN GraphQL API.

The "Global Settings" View

Provides access to your tenant global settings.

See the Infinity Portal Administration Guide > "Global Settings".

Page

Description

Account Settings

Shows the information about your Infinity Portal account.

Identity & Access

You can configure Identity Providers to authenticate your users with SSO in your Infinity Portal.

Users

Shows the information about users in your Infinity Portal account.

User Groups

You can configure User Groups and their Roles in your Infinity Portal account.

Audits

Shows the actions of each user in your Infinity Portal account.

Services & Contracts

Shows the subscription information about all registered services in your Infinity Portal account.

API Keys

You can configure Application Program Interface (API) keys for each of the security services in your Infinity Portal account to automate your configuration and integrate with third-party applications.

Each third-party application must receive its own API key.

Account Management

For accounts of the Partner type, you can configure child accounts associated with your current Infinity Portal account.

Event Forwarding

You can forward logs and events from your Infinity Portal account to a SIEM or a Syslog server.