This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Oliver_222
Participant
‎2024-05-28 06:46 AM

Network settings on Security Group members in Maestro

Good afternoon!
Could you please tell me how to configure network settings on Security Group members in Maestro?
It is not planned to create VSX in Security Group.

I am interested in interfaces, ARP proxies, routes, policy based routing and route redistribution in OSPF.


I understand correctly that on Security group you can't configure all this in Gaia Portal and will have to do it in CLI? Or am I wrong?
I would be grateful if there are any links to articles or documentation as I have not been able to find any information on this issue.

Thanks in advance

 

0 Kudos
2 Replies
Lesley
Leader Leader
Leader
‎2024-05-28 11:22 AM

Most changes you do with gclish (global clish).

In this way you change all the relevant gateways.

More info here:

https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_Maestro_AdminGuide/Content/T...

 

Also check: Gaia OS (Global Shell / Commands) in SK: https://support.checkpoint.com/results/sk/sk148074

Here are the 'specials' listed regarding Maestro and the GAIA OS

-------
If you like this post please give a thumbs up(kudo)! 🙂
emmap
Employee
Employee
‎2024-05-28 02:52 PM

You can do it in portal but we generally recommend doing it in gclish as you will get feedback from each SGM that the configuration has been accepted and implemented. If you do it in portal you won't know if it's not been taken by one of the SGMs and you will have uneven configuration.

One way around this is to do all this configuration before adding more SGMs to the security group. Set up the group with one SGM, do all the config and SIC and policy install, then once it's all working on one SGM, add the others in.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
 
Upcoming Maestro Events

    CheckMates Events