Summary of Configuration Options

Table: Summary of configuration options in Quantum Maestro Orchestrators

Configuration Option

In Gaia Portal

In Gaia Clish*

Configuring the number of Maestro sites (Single Site or Dual Site)

N / A

See Configuring the Number of Maestro Sites

Viewing the configured number of Maestro sites

  1. Click Orchestrator page.

  2. In the Topology pane, open the Security Groups.

See Viewing the Number of Maestro Sites

Configuring the Site ID in the Dual Site deployment

N / A

See Configuring the Site ID in Dual Site Deployment

Viewing the Site ID in the Dual Site deployment

N / A

See Viewing the Site ID in Dual Site Deployment

Configuring the number of Orchestrators on a Maestro Site

N / A

See Configuring the Number of Orchestrators on a Maestro Site

Viewing the configured number of Orchestrators on a Maestro Site

N / A

See Viewing the Number of Orchestrators on a Maestro Site

Creating a New Security GroupClosed A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected.

See Creating a New Security Group

See Creating a New Security Group

Deleting a Security Group

See Deleting a Security Group

See Creating a New Security Group

Adding the Network Configuration to a Security Group

See Adding the Network Configuration and First Time Wizard settings to a Security Group

See Adding the Network Configuration to a Security Group

Removing the Network Configuration from a Security Group

See Removing the Network Configuration and First Time Wizard settings from a Security Group

See Removing the Network Configuration from a Security Group

Configuring the First Time Wizard settings in a Security Group

See Adding the Network Configuration and First Time Wizard settings to a Security Group

See Configuring First Time Wizard settings in a Security Group

Removing the First Time Wizard settings from a Security Group

See Removing the Network Configuration and First Time Wizard settings from a Security Group

See Removing First Time Wizard settings from a Security Group

Assigning available Security Appliances to a Security Group

See Assigning Available Security Appliances to a Security Group

See Assigning One Security Appliance to a Security Group

Removing one Security Appliance from a Security Group

See Removing One Security Appliance from a Security Group

See Removing One Security Appliance from a Security Group

Removing all Security Appliances from a Security Group

See Removing All Security Appliances from a Security Group

N / A

Moving Security Appliances from one Security Group to a different Security Group

See Moving Security Appliances from One Security Group to a Different Security Group

N / A

Assigning Interfaces to a Security Group

See Assigning Interfaces to a Security Group

See Assigning One Interface to a Security Group

Removing one interface from a Security Group

See Removing One Interface from a Security Group

See Removing One Interface from a Security Group

Removing all interfaces from a Security Group

See Removing All Interfaces from a Security Group

N / A

Moving interfaces from one Security Group to a different Security Group

See Moving Interfaces from One Security Group to a Different Security Group

N / A

Adding VLAN interfaces on Uplink portsClosed Interfaces on the Quantum Maestro Orchestrator used to connect to external and internal networks. Gaia operating system shows these interfaces in Gaia Portal and in Gaia Clish. SmartConsole shows these interfaces in the corresponding SMO Security Gateway object.

N / A

See Configuring VLAN Interfaces on Uplink Ports

Viewing VLAN interfaces on Uplink ports

See Configuring VLAN Interfaces on Uplink Ports

Follow these steps:

  1. Click Orchestrator page.

  2. See the Unassigned Interfaces column.

or these steps:

  1. Click Orchestrator page.

  2. Click the [+] on the left side of the applicable Security Group.

  3. Click the [+] on the left side of the Interfaces section.

See Viewing VLAN Interfaces on Uplink Ports

See Configuring VLAN Interfaces on Uplink Ports

Verifying the configuration changes in Security Groups

Automatic

See Verifying the Configuration Changes

Applying the configuration changes to Security Groups

In the bottom left corner, click Apply.

See Applying the Configuration Changes

Deleting configuration changes in Security Groups that were not applied yet

In the bottom left corner, click Refresh.

See Deleting Configuration Changes That Were Not Applied Yet

Configuring the port settings

N / A

See Configuring the Port Settings

Viewing the port settings

N / A

See Viewing the Port Settings

Viewing the Security Group settings

Follow these steps:

  1. Click Orchestrator page.

  2. In the Topology column, click the [+] on the left side of the Security Groups.

  3. Click the [+] on the left side of the applicable Security Group.

See Viewing the Security Group Settings

*Important - After every change in Gaia ClishClosed The name of the default command line shell in Check Point Gaia operating system. This is a restricted shell (role-based administration controls the number of commands available in the shell)., verify (see Verifying the Configuration Changes) and then apply (see Applying the Configuration Changes) the new configuration.

Watch the Demonstration Videos