The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
AWS CloudFormation Templates
CloudGuard for AWS
R77.30, R80.10, R80.20, R80.30, R80.40
Platform / Model
CloudFormationis an Amazon Web Services (AWS) service that enables modeling and setting up resources inside AWS in an automated fashion.
The table below lists CloudFormation templates provided and maintained by Check Point that simplify the deployment of Check Point security solutions in AWS.
You can use these templates as-is or as building blocks for customizing your own templates.
You must accept the Software Terms of the relevant Check Point Product AMI in the AWS Marketplace at least once prior to launching the CloudFormation templates. It is not required to actually launch the instance from the Marketplace, but the agreement must be accepted from this location.
The templates below are numbered for convenience and support purposes.
Some stacks may "roll back" automatically after 1 hour, with an error "WaitCondition timed out" If this happens, please check Internet access is working, either through AWS (Internet Gateway (IGW) assigned to the VPC, routetables with a default route and assigned to the relevant subnet(s), and Elastic IP (EIP) assigned, etc), or through another method like external proxy, or route to on-prem, for example.
CloudGuard CloudFormation Deployment Options
Enter the string to filter this table:
Deploys and configures a Security Gateway.
To deploy the Security Gateway so that it will be automatically provisioned, refer to sk131434.
Creates a new VPC and deploys a Security Gateway into it.
Deploys a Security Gateway into an existing VPC.
Deploys and configures two Security Gateways as a Cluster.
Creates a new VPC and deploys an R77.30 instance. This template does not run the First Time Configuration Wizard.
R77.30 Security Gateway
Deploys an externally managed R77.30 Security Gateway into an existing VPC. This template will run the First Time Configuration Wizard automatically and configure the machine as a Security Gateway.
R77.30 Security Management Server
Deploys an R77.30 Security Management Server / Multi-Domain Security Management Server. This template will run the First Time Configuration Wizard automatically and configure the machine as a Security Management server.
User should connect to the machine and configure the Administrator and password for SmartDashboard GUI applications using the "cpconfig" command. The "Password hash" input parameter that the user can provide in the template is only used for the Gaia Portal login.
R77.30 Security Gateways
Creates a new VPC and deploys two R77.30 Security Gateways in it. Each Security Gateway is deployed in a different Availability Zone. This template will run the First Time Configuration Wizard automatically and configure the machines as Security Gateways.
Deploys an R80 Security Management Server / Multi-Domain Security Management Server. This template will run the First Time Configuration Wizard automatically and configure the machine as a Security Management Server.
The AWS marketplace listing for R80 is available only for customers that are already subscribed. New customers should use R80.10 listing.
CloudFormation Templates are often called CFT by customers and partners.
Check Point Default version widely recommended for all deployment is R80.40 Take 294 with Jumbo Hotfix Accumulator Take 48. R80.40 is initially recommended for customers who are interested in implementing the new features described at the formal announcement.
Give us Feedback
Thanks for your feedback!
Are you sure you want to rate this stars?