- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- Cloud Network Security
- :
- Discussion
- :
- Re: Nutanix Flow
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Nutanix Flow
Hi,
Is there anyone running Nutanix Flow and have it integrated with check point?
Its listed as opsec partner but there is no solution brief,
https://next.nutanix.com/blog-40/security-is-frictionless-with-nutanix-flow-32910
"Not only have physical networking vendors embraced the Nutanix vision, but major firewall vendors have joined as well to bring enhanced inspection that compliments Flow microsegmentation. Firewall VMs from CheckPoint, Juniper, Palo Alto Networks, and more are certified to run on Nutanix AHV with Flow traffic redirection for additional traffic inspection and threat detection."
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
HI All,
Nutanix Flow at this point is not supported by us.
We do support a qcow2 image that can be used on Nutanix as appears on our HCL. (Virtual Machines Section)
If there is a special request for this feature please let me know.
Thanks
KfirB
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
We are looking on Nutanix and would like the have similar integration as NSX for building firewall rule bases in check point with dynamic objects. If this is on the roadmap or a special release for it, it could be very interesting for us.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Magnus,
I'm glad to inform you that we are currently in EA state of CloudGuard for Nutanix.
We have been developing the following capabilities:
- CloudGuard Controller support for Nutanix DC.
- Deployment of CloudGuard Network Security Gateways with Nutanix Calm Blueprint.
- Applying Micro-segmentation with Nutanix Flow and CloudGuard Network Security Gateways.
- Cloud Management extension (CME) integration with Nutanix.
Please PM me if it's still relevant.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Daniel,
Are you still developping CloudGuard for Nutanix solution.
Because our customers have newer versions of AHV, Flow and Calm than those mentioned in sk173224 and they are not considering downgrade.
We have tried the blueprint as it is with these new versions of nutanix and it doesn't work.
Thanks for help
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
What are the versions they are using ?
What is the error message they get when using the Nutanix Calm Blueprint ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thank you for asking.
AHV: 20220304.392
AOS: 6.5.2.7
FLOW: 1.0.1
CALM: v3.5.2
NCC: 4.6.3.1
PC: 2022.6.0.4
The error message:
VM created with Name: Check_Point_R81.10_GW-01, UUID: 6f1b5bf7-1be9-4f29-b46f-d50b1e97c9d5
Waiting for 0 seconds to finish the guest customization
Waiting for VM 6f1b5bf7-1be9-4f29-b46f-d50b1e97c9d5 to get an IP
ERROR: Failed to get an IP for the VM 6f1b5bf7-1be9-4f29-b46f-d50b1e97c9d5
NB:
when we configure IPs manually in the gateways, they show up in smart console.
But we can't steer traffic in the security policy (there is no "redirect traffic to service chain..." when editing inbound rule for example)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Have you tried reaching out to Nutanix Support regarding this issue?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes we did.
they are working on it.