This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
TSOL
Advisor
Monday

Optimal Management Method for a Two-Node Redundant Quantum Spark

Hello Team

 

For managing a two-node redundant Spark setup, there are three available approaches:

  1. HA Configuration
  2. Spark Management via the Infinity Portal
  3. Deploying Smart-1 On-premises on a VM

While using Spark Management via the Infinity Portal is generally recommended, the HA configuration appears to be the most cost-effective option.

My Question:
Which of these methods is considered the optimal management approach overall? Additionally, if we opt for the HA configuration due to its cost benefits, are there any notable disadvantages we should be aware of?

 

Thank you in advance.

 

 

0 Kudos
6 Replies
AkosBakos
Leader Leader
Leader
yesterday

Hi @TSOL 

My opinon is to create a distributed setup with SMS (maybe on-prem). There are a lot of benefits, but I know this is more  expensive but it worth the money.

Akos

----------------
\m/_(>_<)_\m/
TSOL
Advisor
yesterday
In response to AkosBakos

Thank you for the advice.

I understand that if the budget allows, it's better to have a separate Smart management server.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
4m ago
In response to TSOL

I would not support this advice - SMP is a very good solution, and i see no real benefit in On-Prem Management as long as you do not need to use SmartProvisioning for a very large number of SMBs. I have been using and supporting SMBs for 16 years now, so this is out of my own experiences with SMS managing SMBs...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
Legend Legend
Legend
yesterday

Your first point HA config means locally managed cluster, the other two centrally managed cluster. As every SMB has an included SMP (Spark Management Portal) license, i would opt for 2. as there is no price difference. This is preferable as:

- SMP Logging is superior (logs will vanish after a reboot in local management)

- firmware upgrades, backups and performing scripts on CLI is possible from the portal

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
TSOL
Advisor
yesterday
In response to G_W_Albrecht

Thank you for your advice.

As you mentioned, I confirmed in the datasheet that SPARK includes a one-year SMP license.
Do you know where I can find detailed documentation about this SMP license?

For example, I would like to know the limitations, such as the maximum log storage capacity.

 

0 Kudos
AviG
Employee
Employee
35m ago
In response to TSOL

Hi @TSOL ,

Spark Managment (SMP) license is included with all service subscriptions, so as long as the gateway has a valid service (e.g. NGFW), it can be managed via SMP at no additional cost.

Regarding storage of logs, each gateway is entitled to 110Mb ingestion per day and 3 months of retention. This should be enough, but if you need more than this or longer retention, you can purchase an add-on from the catalog. Check out https://support.checkpoint.com/results/sk/sk182394 for more info

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events