This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
leo815
Explorer
‎2020-11-18 04:48 PM

Difference between Security Management server and Security Gateway

Hi all,

 

I am confused here.

 

What's the difference between them ? Can they be on the same host ? 

2 Replies
PhoneBoy
Admin
Admin
‎2020-11-18 05:59 PM

In very simple terms:

  • Security Gateway is responsible for performing Access Control and Threat Prevention
  • Security Management is responsible for defining the policy enforced by one or more Security Gateways as well as logs/reports. Note that log servers and reporting (SmartEvent) functions can be installed on separate servers.

Both of these things can be on the same host (a so called "standalone" gateway).
In fact, most of the Enterprise Appliances come with a local management license to enable this.

Of course, just because you CAN do this doesn't mean you SHOULD.
Outside of lab and fairly small production deployments, it's recommended to deploy these on separate systems.
Smart-1 Cloud is something to consider for smaller deployments as you can purchase management for 1-2 gateways versus on-premise management where the minimum is 5.

Tal_Paz-Fridman
Employee
Employee
‎2020-11-18 10:53 PM

Hi,

I would also like to point you Check Point for Beginners 2.0 (under Learn section)

The first chapter - Network Security - also includes an explanation on Check Point configurations:

https://community.checkpoint.com/t5/Check-Point-for-Beginners-2-0/Part-1-The-Architecture/ba-p/88043...

Thanks

Tal