This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ramakrishnan
Contributor
‎2023-02-13 09:32 AM

Multi Domain Server and Domain Server

Dears, 

I am setting up a lab to work and demonstrate policy migration package tool ..! [Basically moving a policy from one CMA to another where both of them on same MDM]

I have below setup 

1 - Multi Domain Management server 

1 - Security Gateway & Management [Named as North America CMA/DMS]

1 - Security Gateway & Management [Named as Europe CMA/DMS]

I have successfully install Multi domain management server, But I don't know how to attach NA CMA into MDM. 

I refer Admin guide and followed the given instruction...

But still I am unable to connect domain and gateway from MDM. Can you please help me..?

Attached screenshot for reference.... Both from MDM and Domain 

Preview file
73 KB
Preview file
45 KB
0 Kudos
6 Replies
Danny
Champion Champion
Champion
‎2023-02-13 11:17 AM

It would be cool if Check Point's DemoPoint labs would offer MDSM, VSX demos.
Would save the work of having to set up such demo labs just for minor verifications in MDSM, VSX environments.

_Val_
Admin
Admin
‎2023-02-14 01:16 AM
In response to Danny

Agree, Danny. The issue is about the complexity of the such environment. 

0 Kudos
_Val_
Admin
Admin
‎2023-02-14 01:13 AM

Are you trying to connect an externally installed SMS as a domain server? If so, this is not how the admin guide describes it.

You set up a primary domain server on your MDSM itself, and connect an external SMS as part of the domain MGMT HA:

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2023-02-14 02:11 AM

Hi 

You create the Domains (CMAs) in the SmartConsole connected directly to the MDS.

In each Domain you have the option to define the Security Gateway - as you would normally have if working in a Security Management Server.

0 Kudos
ramakrishnan
Contributor
‎2023-02-17 09:28 AM
In response to Tal_Paz-Fridman

Actually I am try to achieve this scenario as showed in the figure [1]. So I wants to simulate the use case moving firewall policy from one CMA to another. Two standalone CP firewall I spin up (Security Management and Security Gateway), then I add them into MDM server (NA and Eurp) domain namingly...Though I deploy as GW and Management why I am unable to update service blades (firewall) but in the dashboard showing security gateway. [2] and [3]  Where I did mistake.

Preview file
43 KB
Preview file
98 KB
Preview file
64 KB
0 Kudos
PhoneBoy
Admin
Admin
‎2023-02-17 01:45 PM
In response to ramakrishnan

A standalone device (with firewall and management installed on same device) cannot be added into a Multi-Domain Environment.
More specifically, it's because the device is being managed by a different device (itself).
You will need to reinstall this gateway without management.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events