Did you know your Check Point Software Technologies Ltd Quantum gateway/cluster and Maestro clusters support a feature called Management Data Plane Separation (MDPS)?

MDPS provides you with both a physical resource separation (NIC) and a logical routing separation (routing table) that can provide you with the ability to completely segregate off your management access to the firewalls including ssh, https, SNMP, backups, CPUSE updates etc etc

More information can be found on Check Point’s website here.

👉 NOTE – This solution is not for everyone as it can bring more complexities to the environment that need to be considered… However, when used correctly it provides the ultimate secure network access to manage your Check Point firewalls and is a great optional tool you can use to complement your existing security posture

✅ If MDPS isn’t for you then no need to worry, as Check Point already secures access to the firewalls via the standard Access Control policies you have deployed today

✅ Always read the Known Limitations section of an SK just in case there is something you should be aware of specific to your environment.

Speak to the SEP2 team to learn more or for any assistance.