SmartUse

Optimize Your Check Point Deployment

You have a robust and sophisticated network that continuously evolves.  Your Check Point security solutions are robust and sophisticated, they adapt to your changing environment.  But with constantly changing security policies and configurations, are all of your security components optimized and working in harmony?

Check Point SmartUse is a service that performs a deep analysis of your Check Point deployment.  The result:

• Comprehensive report summarizing our findings
• Extensive actionable recommendations to optimize your Check Point infrastructure
• Telephone review of findings with a Check Point technical expert

Trust the Experts

No one is more qualified to help you optimize your Check Point security arsenal than the experts who created it. We will leverage our extensive knowledge and expertise to provide you with concrete and relevant recommendations for your deployment.

• A thorough analysis of configuration and log data from your Management Server is conducted
• Results of analysis is provided in a detailed report
• Findings summarized to provide concrete and actionable recommendations on hot to optimize and strengthen the security and performance of your Check Point Solutions
• A Check Point technical expert will review all findings and recommendations with you

Contents of the SmartUse Report

The SmartUse Report contains detailed findings and recommendations about many aspects of your Check Point deployment, including:

• Security and stability improvements
  • SmartDefense™ protection findings and recommendations
  • Rule-base and security policy consistency recommendations
  • Database integrity recommendations for improved stability and security
• Rule-base performance improvements
  • Analysis of most- and least-used rules and recommendations for optimizing rule sequence to enhance performance
  • Identification of, and recommendations for, redundant and unused rule-base objects
• Administrator management improvements
  • Analysis of administrator
  • Recommendations dealing with security aspects of user management
• System-related recommendations
  • Analysis and recommendations dealing with global system settings, version management, hot-fix status, etc.
• Many more findings and practical recommendations

How it Works

Order one report or a yearly subscription

• Send us your configuration data and log files for at least one typical 24-hour work day (under a confidentiality agreement)
• Our experts will analyze the data and create a report with detailed findings and recommendations
• Each report is created and thoroughly reviewed by Check Point security experts
• You will receive the report and review it over the phone with the security expert who prepared it

To learn more, or to download and evaluate a sample SmartUse Report, please contact your Check Point reseller or visit our Services page.

SmartUse Instructions

In order to start the report delivery process some files needs to be collected from the management station.

Files required for SmartUse

1. CPinfo output file
2. Check Point database files:
   1. SmartCenter environment: upgrade_export output file
   2. Provider-1 environment:
      1. $FWDIR (conf and database directories)
      2. $CPDIR (conf, database and registry directories)
3. Log files from the SmartCetner/CMA (1 day up to a week)

Collecting the data

Automated Script¹

1. Download our automated tool “SUCollect” from the download center:
   1. SecurePlatform
   2. Solaris
2. Copy the file to your the management server²
3. Unpack it using gtar -zxvf SUCollect.tgz
4. If on SecurePlarform, enter 'Expert' mode
5. Allow execute permissions using chmod +x SUCollect
6. Run the utility using ./SUCollect and follow the instructions on the screen

Manual

For manual instructions please follow the guideline document.

1. Supported on the following platforms:
   1. SecurePlatform / Pro
   2. UTM-1/Power-1
   3. Enterprise Linux 3.0
   4. Solaris sparc 8/9/10
2. Both SmartCenter and Provider-1 are supported