There is already a Virtual System (VS) in place, on a VSX in VSLS, running R80.10. This VS is providing Internet access to internal users and is running the following blades:
- Firewall
- Application Control
- URL Filtering
- Identity Awareness
- Monitoring
- IPS
- Anti-Bot
- Anti-Virus
We now have to provide remote access to approximately 150 concurrent remote users and site-to-site VPN to approximately 5 to 10 remote sites.
Remote users need to access internal services and to browse the Internet while being filtering just like the internal users.
There are approximately 6000 internal users.
I'm looking for the best setup. Should I put everything on one VS? Or should I create another one? If I create another one, what services and blades do I put on it?
I didn't find any written references, guidelines, recommandations in the Check Point world, so any help is welcome!