A SmartConsole user with permissions to manage Check Point security products and the network environment.
A virtual interface that contains (enslaves) two or more physical interfaces for redundancy and load sharing. The physical interfaces share one IP address and one MAC address. See Link Aggregation.
A Security Gateway or Virtual System that works as a Layer 2 bridge device for easy deployment in an existing topology.
Two or more Security Gateways that work together in a redundant configuration - High Availability.
A Security Gateway that is part of a cluster.
Cluster of Check Point Security Gateways that work together in a redundant configuration. The ClusterXL both handles the traffic and performs State Synchronization.
These Check Point Security Gateways are installed on Gaia OS:
Note - In ClusterXL Load Sharing mode, configuring more than 4 Cluster Members significantly decreases the cluster performance due to amount of Delta Sync traffic.
A separate physical interface on VSX Gateway or VSX Cluster Members, through which Check Point Security Management Server or Multi-Domain Server connects directly to VSX Gateway or VSX Cluster Members. DMI is restricted to management traffic, such as provisioning, logging and monitoring.
A technology that joins multiple physical interfaces together into one virtual interface, known as a bond interface. Also known as Interface Bonding.
A Domain Management Server, on which you defined the object of your VSX Gateway or VSX Cluster. In this case, objects of your Virtual Systems are defined on different Domain Management Servers (Target Domain Management Servers).
A Check Point Security Management Server or a Multi-Domain Server.
A computer that runs Check Point software to store and process logs in Multi-Domain Security Management environment. The Multi-Domain Log Server consists of Domain Log Servers that store and process logs from Security Gateways that are managed by the corresponding Domain Management Servers.
A centralized management solution for large-scale, distributed environments with many different Domain networks.
A computer that runs Check Point software to host virtual Security Management Servers called Domain Management Servers.
A shared physical interface on VSX Gateway or VSX Cluster Members, which carries user "production" traffic and through which Check Point Security Management Server or Multi-Domain Server connects to VSX Gateway or VSX Cluster Members. Non-DMI configuration requires the use of a Virtual Router or Virtual Switch.
A predefined group of SmartConsole access permissions assigned to Domains and administrators. With this feature you can configure complex permissions for many administrators with one definition.
The Multi-Domain Server in Management High Availability that you install as Primary.
The <Multi-Domain Server in Management High Availability that you install as Secondary.
A computer that runs Check Point software to inspect traffic and enforces Security Policies for connected network resources.
A computer that runs Check Point software to manage the objects and policies in Check Point environment.
A legacy Check Point GUI client used to create and manage the security policy in R77.30 and below.
All Domain Management Servers for a Domain that are not designated as the Active Domain Management Server.
All Multi-Domain Servers in a Management High Availability deployment that cannot manage global policies and global objects. Standby Multi-Domain Servers are synchronized with the Active Multi-Domain Server.
A Domain Management Server, on which you defined the objects of your Virtual Systems. In this case, object of your VSX Gateway or VSX Cluster are defined on a different Domain Management Server (Main Domain Management Server).
The flow of data between network devices.
A logical object that emulates the functionality of a type of physical network object.
A Virtual Device that functions as a physical router. Virtual Routers are not supported (see Known Limitations 01413513 and MBS-5214).
Also vSwitch. A software abstraction of a physical Ethernet switch. It can connect to physical switches through physical network adapters to join virtual networks with physical networks. It can also be a Distributed Virtual Switch (dvSwitch), for definition and use on multiple ESXi hosts.
A Virtual Device that implements the functionality of a Security Gateway.
|
See Also: |
Virtual Local Area Network. Open servers or appliances connected to a virtual network, which are not physically connected to the same network.
A connection between two switches that contains multiple VLANs.
Virtual Private Network. A secure, encrypted connection between networks and remote clients on a public infrastructure, to give authenticated remote users and sites secured access to an organization's network and resources.
Virtual System Load Sharing. A VSX Cluster technology that assigns Virtual System traffic to different Active Cluster Members.
Virtual System Extension. Check Point virtual networking solution, hosted on a computer or cluster with virtual abstractions of Check Point Security Gateways and other network devices. These Virtual Devices provide the same functionality as their physical counterparts.
Physical server that hosts VSX virtual networks, including all Virtual Devices that provide the functionality of physical network devices. It holds at least one Virtual System, which is called VS0.
An interface between a Virtual System and a Virtual Switch or Virtual Router that is created automatically in a VSX topology.