R81 Multi-Domain Security Management Administration Guide

Server Processes

Multi-Domain Server Processes

Each Multi-Domain Server Dedicated Check Point server that runs Check Point software to host virtual Security Management Servers called Domain Management Servers. Synonym: Multi-Domain Security Management Server. Acronym: MDS. Level process has one instance on every Multi-Domain Server/Multi-Domain Log Server Dedicated Check Point server that runs Check Point software to store and process logs in a Multi-Domain Security Management environment. The Multi-Domain Log Server consists of Domain Log Servers that store and process logs from Security Gateways that are managed by the corresponding Domain Management Servers. Acronym: MDLS. machine, when it is running. These processes run on the Multi-Domain Server.

Process	Description
`cpd`	Check Point daemon - A generic process for many Check Point services, such as installing and fetching policy, online updates, and pushing SIC Secure Internal Communication. The Check Point proprietary mechanism with which Check Point computers that run Check Point software authenticate each other over SSL, for secure communication. This authentication is based on the certificates issued by the ICA on a Check Point Management Server. certificates.
`cpca`	The Certificate Authority management process
`fwd`	Audit Log Log that contains administrator actions on a Management Server (login and logout, creation or modification of an object, installation of a policy, and so on). server process
`fwm`	Legacy Check Point management server main process (R77.x and earlier)

For proper operation of the Multi-Domain Server, these processes must run together with CPM, postgres, and solr. An exception to this rule Set of traffic parameters and other conditions in a Rule Base (Security Policy) that cause specified actions to be taken for a communication session. is instances where cpca cannot run, such as for Domain Log Servers. cpca must always run for Domain Management Servers Virtual Security Management Server that manages Security Gateways for one Domain, as part of a Multi-Domain Security Management environment. Acronym: DMS..

Domain Management Server Processes

Each one of these processes runs a different instance for each Domain Management Server Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server.:

Process	Description
`cpd`	Check Point daemon - A generic process for many Check Point services, such as installing and fetching policy, online updates, and pushing SIC certificates.
`cpca`	The Certificate Authority manager process (Domain Servers only)
`fwd`	Log server process
`fwm`	Legacy Check Point management server main process (R77.x and earlier)
`status_proxy`	Status collection of SmartLSM Security Gateways

For proper operation of the Domain Management Server, cpca, fwd and fwm must always run, except for specified configurations where cpca cannot run. Other processes are required only as necessary for applicable functionality.

For more information, see sk97638: Check Point Processes and Daemons.

12 November 2024

© 2020 - 2024 Check Point Software Technologies Ltd.