Working with Virtual Devices

When working with Virtual Devices in Multi-Domain ServerClosed Dedicated Check Point server that runs Check Point software to host virtual Security Management Servers called Domain Management Servers. Synonym: Multi-Domain Security Management Server. Acronym: MDS., you must use the applicable Domain Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server. SmartConsoleClosed Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on..

Otherwise, the configuration procedures are the same to those for a Security Management ServerClosed Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server..

Multi-Domain Server treats Virtual Devices in the same way as physical devices.

You can add as many Virtual Systems to Domain Management Servers as your license permits.

Virtual Systems added to a Domain Management Server do not have to reside on the same VSX GatewayClosed Physical server that hosts VSX virtual networks, including all Virtual Devices that provide the functionality of physical network devices. It holds at least one Virtual System, which is called VS0. or clusterClosed Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing..

Adding a Virtual System to a Domain Management Server

To add a new Virtual System to a Domain Management Server:

  1. Launch SmartConsole from the appropriate Domain Management Server.

  2. Create and configure the Virtual SystemClosed Virtual Device on a VSX Gateway or VSX Cluster Member that implements the functionality of a Security Gateway. Acronym: VS. (see Working with Virtual Systems).

  3. Define and install a security policyClosed Collection of rules that control network traffic and enforce organization guidelines for data protection and access to resources with packet inspection..

Adding Virtual Routers and Virtual Switches to a Domain Management Server

To add Virtual Routers and Virtual Switches to a Domain Management Server:

  1. Launch SmartConsole from the appropriate Domain Management Server.

  2. Create and configure Virtual Routers (see Working with Virtual Routers) and Virtual Switches (see Working with Virtual Switches) as required.