Creating SmartLSM Security Profiles

A SmartLSM Security GatewayClosed Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. must have a SmartLSM Security Profile, which fetches a Check Point Security PolicyClosed Collection of rules that control network traffic and enforce organization guidelines for data protection and access to resources with packet inspection. from the Security Management ServerClosed Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server. or Domain Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server.. This Security Policy determines the settings of the firewall.

Before you can add a SmartLSM Security Gateway to SmartProvisioningClosed Check Point Software Blade on a Management Server (the actual name is "Provisioning") that manages large-scale deployments of Check Point Security Gateways using configuration profiles. Synonyms: Large-Scale Management, SmartLSM, LSM., you must create the Security Policies and Security Profiles for them in SmartConsoleClosed Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on..

This procedure describes how to create a SmartLSM Security Profile for Security Gateways. After you create a Security Profile, you can assign the gateway objects to it.

Do these steps again for each SmartLSM Security Profile. Make a new profile for each type of appliance or server:

  1. In SmartConsole, go to Menu > Manage policies and layers > Policies > New.

  2. Create a Security Policy and save it.

  3. In the Global Toolbar, go to New Object > LSM Profile, and select the type of profile you wish to create.

    The SmartLSM Security Profile window opens.

  4. Configure the Profile properties.

    To open the online help for each view of this window, click Help.

    Note - In a High Availability environment, click Add > the Add Masters window opens. From the Available Management Stations column, select all servers and click Add. Then click OK.

  5. Click OK.

  6. Install Policy on the LSM Security Profile you created.

    1. Click Install Policy.

      The Install Policy window opens.

    2. Select the SmartLSM Security Profile object.

    3. Click Install.