This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
JaySon_2021
Participant
‎2021-08-25 06:59 AM

Install multiple policies R80.40

If I have say 4 firewalls managed by an R80.40 manager and I have 5 policies. 1 each for the individual firewalls where a single firewall is the policy target (ie: policyA target is fw1, policyB target is fw2, etc). Then I have another policy that installs to ALL gateways. Will pushing policyA to fw1, and then I push the policy that installs to ALL gateways, will it overwrite the policyA on fw1?

0 Kudos
3 Replies
G_W_Albrecht
Legend Legend
Legend
‎2021-08-25 08:12 AM

If you change the policy package that gets installed the new policy will replace the old policy, of course !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
JaySon_2021
Participant
‎2021-08-25 08:17 AM
In response to G_W_Albrecht

Thanks. What if I had just Acesss control in policyA and then only Threat in the policy that gets installed to ALL firewalls. Would those layers merge on FW1?

0 Kudos
PhoneBoy
Admin
Admin
‎2021-08-25 08:53 AM
In response to JaySon_2021

It's certainly possible to have a shared Threat Prevention layer that is included in each policy package.
The restriction about what gateway gets what policy is done at the policy package level.
That impacts both the Access Control and Threat Prevention policy install process.

Which effectively means: you will have to perform an explicit policy install for each gateway to update the Threat Prevention policy across all your gateways, even if the policy layer is identical across all your policy packages.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events