The Components
FireWall-1 can be broken down into three basic components:
A firewall module: A device that enforces a security policy. Also called an enforcement point.
A management module: A device that stores, compiles, and installs the security policy the firewall modules enforce. It also stores logs the firewalls send back and can send alerts.
SmartConsole: Programs that talk to a management module and allow you to view logs and system status, as well as modify the security policy. In NG FP2, this collection of programs are generally referred to as GUI Clients. Each component can exist on completely separate systems, or they all can exist on the same system. Figure 7.1 shows how the components communicate with one another.
Figure 7.1. Connections ...
Get Essential Check Point™ FireWall-1® NG: An Installation, Configuration, and Troubleshooting Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
