This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
TSOL
Advisor
‎2025-02-24 06:00 PM
Jump to solution

Optimal Management Method for a Two-Node Redundant Quantum Spark

Hello Team

 

For managing a two-node redundant Spark setup, there are three available approaches:

  1. HA Configuration
  2. Spark Management via the Infinity Portal
  3. Deploying Smart-1 On-premises on a VM

While using Spark Management via the Infinity Portal is generally recommended, the HA configuration appears to be the most cost-effective option.

My Question:
Which of these methods is considered the optimal management approach overall? Additionally, if we opt for the HA configuration due to its cost benefits, are there any notable disadvantages we should be aware of?

 

Thank you in advance.

 

 

0 Kudos
1 Solution

Accepted Solutions
G_W_Albrecht
Legend Legend
Legend
‎2025-02-25 01:45 AM
Jump to solution

Your first point HA config means locally managed cluster, the other two centrally managed cluster. As every SMB has an included SMP (Spark Management Portal) license, i would opt for 2. as there is no price difference. This is preferable as:

- SMP Logging is superior (logs will vanish after a reboot in local management)

- firmware upgrades, backups and performing scripts on CLI is possible from the portal

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

View solution in original post

7 Replies
AkosBakos
Mentor Mentor
Mentor
‎2025-02-25 01:21 AM
Jump to solution

Hi @TSOL 

My opinon is to create a distributed setup with SMS (maybe on-prem). There are a lot of benefits, but I know this is more  expensive but it worth the money.

Akos

----------------
\m/_(>_<)_\m/
TSOL
Advisor
‎2025-02-25 06:17 PM
In response to AkosBakos
Jump to solution

Thank you for the advice.

I understand that if the budget allows, it's better to have a separate Smart management server.

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2025-02-26 01:43 AM
In response to TSOL
Jump to solution

I would not support this advice - SMP is a very good solution, and i see no real benefit in On-Prem Management as long as you do not need to use SmartProvisioning for a very large number of SMBs. I have been using and supporting SMBs for 16 years now, so this is out of my own experiences with SMS managing SMBs...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2025-02-25 01:45 AM
Jump to solution

Your first point HA config means locally managed cluster, the other two centrally managed cluster. As every SMB has an included SMP (Spark Management Portal) license, i would opt for 2. as there is no price difference. This is preferable as:

- SMP Logging is superior (logs will vanish after a reboot in local management)

- firmware upgrades, backups and performing scripts on CLI is possible from the portal

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
TSOL
Advisor
‎2025-02-25 08:34 PM
In response to G_W_Albrecht
Jump to solution

Thank you for your advice.

As you mentioned, I confirmed in the datasheet that SPARK includes a one-year SMP license.
Do you know where I can find detailed documentation about this SMP license?

For example, I would like to know the limitations, such as the maximum log storage capacity.

 

0 Kudos
AviG
Employee
Employee
‎2025-02-26 01:12 AM
In response to TSOL
Jump to solution

Hi @TSOL ,

Spark Managment (SMP) license is included with all service subscriptions, so as long as the gateway has a valid service (e.g. NGFW), it can be managed via SMP at no additional cost.

Regarding storage of logs, each gateway is entitled to 110Mb ingestion per day and 3 months of retention. This should be enough, but if you need more than this or longer retention, you can purchase an add-on from the catalog. Check out https://support.checkpoint.com/results/sk/sk182394 for more info

0 Kudos
Amir_Erman
Employee
Employee
‎2025-02-26 03:15 AM
Jump to solution

Locally managed gateways /clusters are possible in Spark only; It provides a simple and ... cheaper way to manage and monitor the gateways. Plus, there are SMB / SME unique features available when managed locally;

Locally managed gateways can be connected to Spark Management; It makes sense when multiple gateways are deployed

Centrally managed gateways, are more advanced by means of mainly security and networking features; This solution is considered enterprise-grade; Both SPARK and Quantum can be used for that matter

Please contact me directly if more clarification/assistance is needed  

Amir

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top