SmartDefense Profiles Available for Users of VPN-1 NGX R62: Assigning a Profile per Gateway
| Check Point Reference: | SBP-2006-11 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | SmartDefense Research Center | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? | ||
| Vulnerability Description The most significant enhancement in the NGX R62 release is the enablement of SmartDefense Profiles. SmartDefense Profiles expand the flexibility and granularity of security defenses, while allowing central control and management of the security infrastructure. By defining multiple SmartDefense Profiles and associating them with Check Point gateways, each gateway can have different defense settings and SmartDefense attributes. SmartDefense Profiles allow the administrator to customize the SmartDefense configuration according to the needs of each gateway in the community. A SmartDefense Profile may be installed on more than one gateway. If a profile is not specified, the gateway is assigned the default profile. All gateways earlier than NGX R60 use the default profile. |
||
|
Vulnerability Details To take advantage of existing profiles, it is possible to clone a profile. Creating a duplicate copy of an existing profile is called Profile Cloning. For example, if a profile named Northeast is chosen to be cloned, the name of the clone will be copy_of_Northeast. Once a clone is created, changes can be made to customize the new version. This is helpful when only a few changes are required from the current configuration and is easier than creating a brand new profile. To clone a profile, proceed as follows: 1. Click SmartDefense tab > Profile Management. 2. Select an existing profile. 3. Click New > Clone selected profile. A clone of the selected profile appears in the profile list. For example, if a profile named Default_Protection is selected and cloned, the profile named Copy_of_Default_Protection appears in the Profile Name field. 4. Click OK. 5. Configure the profile settings by using the SmartDefense navigation tree. View Protected Gateways by a Profile To view a list of gateways that are protected by a specific profile, proceed as follows: 1. Click SmartDefense tab > Profile Management. |
Protection Overview
SmartDefense Profiles expand the flexibility and granularity of security defenses, while allowing central control and management of the security infrastructure. By defining multiple SmartDefense Profiles and associating them with Check Point gateways, each gateway can have different defense settings and SmartDefense attributes. Check below for how to create a profile and how to assign a profile to a gateway.
To configure the defense, select your product from the list below and follow the related protection steps.
VPN-1 NGX R62
How Can I Protect My Network?
Creating a new profile:
1. Click SmartDefense tab > Profile Management.
2. Click New > Create new profile.
3. Assign a profile name. Click OK.
4. Configure the profile settings by using the SmartDefense navigation tree. Once a profile is selected, it remains selected when scrolling through the various SmartDefense protections.
Assigning a profile to a gateway:
Assigning a profile to the gateway can be done in two ways:
from the gateway itself
from the SmartDefense tab
To assign a profile from the gateway itself:
1. Click Manage > Network Objects.
2. Select a gateway and click Edit.
3. Navigate to the SmartDefense page.
4. To disable SmartDefense on this gateway, select Do not apply SmartDefense on
this gateway.
5. To assign a profile, select a profile from the list in the drop-down menu next to
Assign profile.
5 . Click OK.
To assign a profile from the SmartDefense tab:
1. Click SmartDefense tab > Profile Assignment.
2. Select a gateway and click Edit.
3. Navigate to the SmartDefense page.
4. To disable SmartDefense on this gateway, select Do not apply SmartDefense on
this gateway.
To assign a profile, select a profile from the list in the drop down menu next to
Assign profile.
5 . Click OK.
How Do I Know if My Network is Under Attack?
Activity is logged in Check Point's SmartView Tracker. The SmartDefense Profile field contains the profile that is assigned to the gateway or user of that particular entry. This field is included in the SmartDefense query by default.