This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Stan_Mazur
Participant
‎2019-05-17 08:20 AM

STIG Validations IPS

DISA certify  4000,5000,15000 and 23000 series appliance. Since we migrated to 4000 running R77.30 and enable

IPS blade, and move it new location. Here's my question according to

Navy requires the firewall and IDS/IPS to be separate components.

 

Does IPS Blade works  like separate device on Firewall appliance. Has anyone come across STIG validations where

they had IPS blade enable instead of a separate device and did it pass the audit. If you did,how did you respond to

there requirements.

 

Thanks

 

 

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2019-05-19 06:48 PM

It depends on what is meant by the phrase "separate components."
In general, all of our software blades are designed to be used together.

If by separate component, they can be be on the same appliance but different people have to manage the different functions, this can be done in R80.x and policies can be pushed independently of each other.
Note that IPS in R77.30 in earlier is tied to the Firewall, so these functions cannot be fully separated.

If by separate components, they mean "physically different appliances," you've got a different problem.
Firewall in particular cannot be completely disabled, even if your goal is to use the system purely as an IPS.
You can, of course, configure the Access Policy as "Any Any Accept" on such an appliance and deploy a different Access Policy on a completely separate appliance.
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    li.common.scroll-to.top