3 hours 53 minutes
Welcome back to check point. Jump start,
I have a couple of
odds and ends
the Radha and updates
if you want to see what
jumble hot fix accumulator is installed,
you can do that with the A s G underscore provisioned command
some some limitations, uh,
You can have different models of security gateway modules connected to your orchestrator. However,
at least in our 80.20 s p,
all security gateway
modules in the same security group must be the same model.
Currently, you cannot Nat or VPN
to the single management object traffic.
That's because the correction layer has a limitation
that it cannot correct traffic being sent to a management port.
The default distribution mode has changed between our 80.20
spn already 0.30
in our 80 dot
20 SP and earlier. The default distribution mode
in our 80.30 SP.
The default distribution mode is user or network, depending on the interface,
there's a limitation regarding smart view Monitor,
smart view, monitor of a by strode deployment.
We'll get statistics
one of the security gateway modules
and will not reflect
all of the traffic that
passing through the system.
There are a couple of network ranges that are reserved for internal use by the orchestrator
and the security. Gateway modules 192.0 dot to slash 24
is reserved for synchronization. Traffic
in 198.51 dot 101 slash 24 is reserved for chassis internal
Connections that pass between up link ports and management ports are not supported.
SP has added some features
multi cues which
provides more efficient utilization of core excel
enabled by default
bsx Virtual switches
but this requires ah, hot fix. Currently,
threat extraction is supported in our 80.30 SP.
requires ah, hot fix
I P v six is supported,
as are having multiple down lee connections to a security gateway module
load share traffic instead of
I also want to point you at some
documentation and help. Resource is
so that will be next.
No pre sources for your maestro deployment.
Ah, obvious starting point is
So support center dot checkpoint dot com
in this case, checkpoint
you can make the search a little bit more specific
by including the release number are 80.20 s p, for example,
and several great results
this product page
leaks to download
the are 80.20 s p i S o image
The port mapping
which I've used in this training
So administrating Guyana, administrating
guy in a maestro environment. Administrating maestro,
maestro performance tuning bsx
Also very handy is a maestro frequently asked questions document
Checkpoint Maestro known limitations document.
Another great source of help
with maestro is the Czech mates
So you can go toe
community dot checkpoint dot com
and under products
the products drop down menu Select Maestro
There is a lot of good information that is provided by checkpoint employees
as well as checkpoint partners
You are sharing their knowledge and experience
in some cases, their scripts.
So that concludes my
errata and additions.
Thank you for attending this jump start training
Check Point Jump Start
In this course brought to you by industry leader Check Point, they will cover cybersecurity ...
4 CEU/CPE Hours Available
Certificate of Completion Offered
Cisco Certified Network Associate (CCNA) Certification
Our online, self-paced Cisco Certified Network Associate CCNA training teaches students to install, configure, troubleshoot ...
31 CEU/CPE Hours Available
Certificate of Completion Offered