Create a Post
Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
icon SMB Security

How To Deploy 1550 SMB Appliance Using Zero Touch Cloud Service

Author: Chris Biernacki

Introduction

The next family of our Small and Medium Business appliances are based on R80 code.

Check Point's R80.20 release for Small and Medium Business Appliances are supported only on the new 1500 Series Security Gateways. For more information about the 1500 Series, refer to sk157412: 1500 Series Security Gateways.

Introduction to Zero Touch Cloud Service

The Zero Touch cloud service is mainly deployed in Small and Medium Business (SMB) environments.

Check Point's Small and Medium Business Appliances are high performance, integrated devices offering Firewall, VPN, Anti-Virus, Application Control, URL Filtering, Email Security, and SandBlast Zero-Day Protection, all in compact form factors that are simple to configure and manage.

The 1500 Security Gateways deliver enterprise-grade security in a series of simple and affordable, all-in-one security solutions to protect small and medium business employees, networks, and data from cybe

...
TO READ THE FULL POST it's simple and free
4 Comments
ericu
Explorer

How does this work if the WAN IP address is static?

Darren_Phang
Participant

Hi Chris,

 

What's the differences between Zero Touch Cloud Service and Security Management Portal (Cloud)? Is there any specific use case where it's more suitable to use Zero Touch than SMP and vice versa? 

 

Regards,

Darren 

PhoneBoy
Admin
Admin

@Darren_Phang

SMP is specifically for SMB appliances (700/1400/1500 series) and offers more complete management of the devices.

Zero Touch is for bootstrapping the initial configuration of Check Point appliances.
It does not manage them beyond the initial configuration and can be used for almost all Check Point appliances. 

@ericu

It should work more or less the same with a static IP. 

Axiomonk
Explorer

Hi,

while trying to make this work on a 1570/90 appliance and R80.20.35, I found that the clish script(which also may have been either copy/pasted to/from the Zero Touch for SMB Appliances User Guide) does not work because using the "set security-management..." command comes back with an error, with "bad parameters".

According to the SMB R80.20 1500 Appliance CLI Guide R80.20 Technical Reference Guide the "set security-management" does not allow the use-one-time-password parameter. Deploying entirely with Zero Touch does however work when you use "connect security-management" instead. So if anybody has tried using the clish script and it did not work, change set to connect and it should work then.

Best Regards

Peter