The Auxiliary Products/Services screen appears.
The Legal Statement dialog appears.
To enable integration with this auxiliary product/service, you must accept the Legal Statement.
Ensure that your network configuration allows Deep Discovery Director (Consolidated Mode) to connect to the Check Point appliance.
Deep Discovery Director (Consolidated Mode) may connect to the Check Point appliance through the secured connection port or clear connection port that is configured on the Check Point appliance. Deep Discovery Director (Consolidated Mode) also pulls the certificate from the Check Point appliance through port 18210.
The server address must be the IPv4 address the auxiliary product/service.
This port must be the same port that is configured on the security gateway. For details, see Preconfiguring a Security Gateway.
For more details, see Configuring a Secured Connection.
If the one-time password is reset on the Check Point appliance, the new one-time password must be different than the previous one-time password.
The New Address Range window appears.
An item named DDD should be created and automatically selected as the source.
The Check Point SmartConsole will prompt you to publish your changes before installing the policy.
The Install Policy dialog appears.
The Check Point appliance is enabled to receive suspicious objects and C&C callback addresses from Deep Discovery Director (Consolidated Mode).
C&C Callback Address
High and medium
High, medium, and low
Reject: Packets will be rejected and a notification sent to the communicating peer that the packet has been rejected.
Drop: Packets will be dropped without sending the communicating peer a notification.
Notify: A notification about the defined activity will be sent but the activity will not be blocked.
The Distribute Now option appears.
The SmartView Monitor screen appears.
The Enforced Suspicious Activity Rules dialog appears.
Suspicious objects and C&C callback addresses distributed by Deep Discovery Director (Consolidated Mode) are displayed.