Create a Post
Shay_Levin
Admin
Admin

CloudGuard Network For Public Cloud - News - April 2021

  1. AWS Gateway Load Balancer (GWLB) Auto Scaling Group

GWLB is quite unique and a giant step forward in networking

See the CloudGuard Network for AWS Centralized Gateway Load Balancer R80.40 Deployment Guide (This link was edited by Check Point on 19 Dec 2021)

 

  1. CME management session improvement

“CME” is now configured as the session description when automatically installing policy and modifying objects.

See the sk157492 - CME (Cloud Management Extension) for CloudGuard Latest Updates for more information.

 

  1. CME Automatic NAT for Azure

We now support automatic NAT rules generation in Azure (similar to what we have in AWS).
This feature allows CME to automatically create access and NAT rules according to tagged resources in Azure, thus letting you add or remove new applications in Azure without opening SmartConsole.
See the Cloud Management Extension R80.10 and Higher Administration Guide > section "Automatic NAT and Acces... (This link was edited by Check Point on 19 Dec 2021) for more information.

 

  1. XFF support for Autoscaling solutions (as part of CME)

It is now possible to inject XFF headers for Source-NATed traffic. See sk167578 for more information.

We have extended CME to support XFF without using a custom script, as part of the template configuration.
Run “autoprov_cfg -h" for instructions.

 

  1. AWS Security Hub

It is now possible to forward logs to AWS Security Hub using CME.

See the Cloud Management Extension R80.10 and Higher Administration Guide > section "AWS Security Hub" (This link was edited by Check Point on 19 Dec 2021) for more information.

 

  1. AWS Terraform Templates

We have released several Terraform templates for AWS:
Management, MDS, Standalone, Single Gateway, Single AZ cluster, Quick-start Autoscaling

Visit the GitHub repository for more information.

 

  1. Azure Terraform Templates

We have released a new Terraform template for deploying a Management Server in Azure.
See the GitHub repository for more information.

 

  1. Azure Application Gateway Support

We have extended the Azure VMSS solution and now support External and Internal Application Gateways.

See the CloudGuard Network for Azure VMSS R80.10 and Higher Administration Guide > section "Configuration St... (This link was edited by Check Point on 19 Dec 2021) for more information.

 

  1. Azure Monitoring integration for Single Gateways and Cluster

We have extended the integration with Azure Monitoring and have published sk171057 for enabling/disabling sending CloudGuard metrics to Azure Monitoring.

 

  1. IPv6 Support for Azure VMSS

We have released an official SK for configuring IPv6 on Azure VMSS.

See sk170760 for more information.

0 Kudos
0 Replies