Check Point Next Generation Security Gateway Solution

Item	Description
1	SmartConsole Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on.
2	Security Management Server Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server.
3	Internet and external networks
4	Security Gateway Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. (Security Group A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected.)
5	Internal network

These are the primary components of a Check Point Firewall solution:

• Security Gateway (Security Group) - The engine that enforces the organization's security policy Collection of rules that control network traffic and enforce organization guidelines for data protection and access to resources with packet inspection., is an entry point to the LAN, and is managed by the Security Management Server Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server..

• Security Management Server - The application that manages, stores, and distributes the security policy to Security Gateways (Security Groups).

• SmartConsole - A Check Point GUI application that manages security policies, monitor products and events, install updates, provision new devices and appliances, and manage a multi-domain environment.

Notes: For general information about Cluster Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing., see the R80.20 ClusterXL Administration Guide. For information about Security Management Server and SmartConsole, see the R80.20 Security Management Administration Guide.