Deploying a Single Security Gateway or ClusterXL in Bridge Mode

Introduction to Bridge Mode

A Security Gateway (or ClusterXL) in Bridge Mode is invisible to Layer 3 traffic.

When traffic arrives at one of the bridge subordinate interfaces, the Security Gateway (or Cluster Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing. Members) inspects it and passes it to the second bridge subordinate interface.

Item	Description
1	Network, which an administrator needs to divide into two Layer 2 segments. The Security Gateway in Bridge Mode connects between these segments.
2	First network segment.
3	Switch that connects the first network segment to one bridged subordinate interface (4) on the Security Gateway in Bridge Mode.
4	One bridged subordinate interface (for example, `eth1`) on the Security Gateway in Bridge Mode.
5	Security Gateway in Bridge Mode.
6	Another bridged subordinate interface (for example, `eth2`) on the Security Gateway in Bridge Mode.
7	Dedicated Gaia Check Point security operating system that combines the strengths of both SecurePlatform and IPSO operating systems. Management Interface (1) Interface on a Gaia Security Gateway or Cluster member, through which Management Server connects to the Security Gateway or Cluster member. (2) Interface on Gaia computer, through which users connect to Gaia Portal or CLI. (for example, `eth0`) on the Security Gateway.
8	Switch that connects the second network segment to the other bridged subordinate interface (6) on the Security Gateway in Bridge Mode.
9	Second network segment.

See the:

R81.20 Installation and Upgrade Guide > Chapter Special Scenarios for Security Gateways > Section Deploying a Security Gateway or a ClusterXL in Bridge Mode.
R81.20 Quantum Maestro Administration Guide > Chapter Deploying a Security Group in Bridge Mode.
R81.20 Quantum Scalable Chassis Administration Guide > Chapter Deploying a Security Group in Bridge Mode.