Large-Scale Management Issues
Check Point has historically had issues with managing a large number of firewalls. Although Provider-1 (Check Point's management product geared at large enterprise and service providers) helps somewhat, there are some inherent weaknesses in how FireWall-1 does things and how well it scales. Thus far, no really good solutions to these problems exist; however, knowing about them is half the battle, which is the purpose of this section.
Security Policies
I first need to address security policies. Although a single policy can actually be enforced on numerous firewalls, several limitations affect the ability to manage security policies in general.
Number of Network Objects
The Management GUI and the fwm process on the ...
Get Essential Check Point™ FireWall-1® NG: An Installation, Configuration, and Troubleshooting Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
