EasyManua.ls Logo

Check Point QUANTUM SPARK 1570 - Working with Updatable Objects

Check Point QUANTUM SPARK 1570
311 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Small-Scale Deployment Installation
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Centrally Managed Administration Guide|50
Working with Updatable Objects
An updatable object is a network object which represents an external service, such as Office
365, AWS, Geo locations, and more. You can select from the list of updatable objects. The
categories depend on the online service update.
External services providers publish lists of IP addresses or Domains or both to allow access to
their services. These lists are dynamically updated. Updatable objects derive their contents
from these published lists of the providers, which Check Point uploads to the Check Point
cloud. The updatable objects are updated automatically on the Security Gateway each time
the provider changes a list. There is no need to install policy for the updates to take effect.
For more information, see the Quantum Security Management Administration Guide for your
version > Chapter
Managing Objects
> Section
Network Object Types
> Section
Updatable
Objects
.
Notes:
n
Online services - Office 365, AWS, Azure, Google, and more.
n
GEO locations - The GEO database provides mapping of location data to IP
addresses. For each location, there is a network object you can import to
SmartConsole. You can block or allow access to and from specific locations
based on their IP addresses.
n
For each country/continent, Check Point provides a Network Object that can be
imported to SmartConsole.
n
Each country/continent object matches a list of IP addresses according to the
external service (MaxMind) database.
n
These objects are updated automatically on the gateway every time there is an
update in the MaxMind database (no need to install policy).
n
When the source or destination IP address matches an updatable object, the
action is selected according to the policy.
Known Limitations:
n
Rules with updatable objects as a destination are ignored for HTTP/HTTPS traffic when
an external proxy is used.
n
Updatable objects cannot be used in Threat Prevention policy.
n
Updatable objects cannot be used in HTTPS Inspection policy.

Table of Contents

Other manuals for Check Point QUANTUM SPARK 1570

Preview: Getting Started Guide
Getting Started Guide80 pages

Related product manuals