Technical data

Deploying VSX
Check Point VSX Administration Guide NGX R67 | 175
VSX and Multi-Domain Security Management provide a centralized, granular provisioning system for a
number of Domains. Applications and services are separated by discrete Virtual Systems. Access to these
services and applications is based on need.
Figure 11-43 Multi-Domain Security Management Managed Service Provider
Scenario:
Component Description
1
Internet. Routers are between the VSX cluster members and the Internet.
2
VSX cluster. One member handles the Local Exchange and another handles server traffic
of different Domains.
3
Core IP VPN Network.
4
Multi-Domain Security Management at the Network Operation Center monitors POP and
connects to VSX gateway. The Multi-Domain Log Server in the NOC collects data for
each Domain and stores the logs in separate private databases.
5
Multi-Domain Security Management at the NOC and the VSX gateway make the Local
Exchange.
6
Domain A web servers.
7
Domain B DMZ.
8
Domain C mail servers.
9
PE Router.
10, 11, 12
Domain A, B, and C. Each Domain manages its own security and cannot define Virtual
Systems or other network components. Domains have secure VPN connectivity.