Installation
Check Point 1400 Appliances Centrally Managed Administration Guide R77.20.85 | 18
Associate a security zone object with an interface on the gateway object.
Use the security zone object in a rule.
Install policy.
To associate a security zone object with an interface on the gateway object:
1.
In SmartDashboard, from the Network Objects tree, double-click a Check Point Appliance
gateway object.
From Topology, select the applicable interface and click Edit.
The Interface Properties window opens.
Select one of the predefined Security Zone options.
If you want to create a new zone, click New, fill in the details and click OK.
Click OK.
The Check Point Appliance Gateway General Properties is shown.
Click OK.
To create a rule with a security zone:
After you associated a security zone object to the applicable interface on the gateway, you can use
it in a rule. To create a rule with a security zone, just add the security zone object to the Source or
Destination cell.
For example, to create a rule that allows internal users access to any external network, create a
rule with these fields:
Source InternalZone
Destination ExternalZone
Action accept
Install On gateway object or SmartLSM profile
Open the Firewall > Policy page.
Use the Add Rule buttons to position the rule in the Rule Base.
Enter a Name for the rule.
In the Source field, right-click the + icon, click Network Objects, select InternalZone from the
list, and click OK.
In the Destination field, right-click the + icon, click Network Objects, select ExternalZone
from the list, and click OK.
In the Action field, select accept.
Right-click the Install On field, select Add > Targets, and select the gateway object or
SmartLSM profile.
To Next Page
Loading...
