Integrations

Log in to the Illumio Console, navigate to Settings > Connectors, and click the Check Point tile.

On the Check Point Connector page, select API Connector.

Within the API Connector pane, select Illumio Firewall Orchestrator (On-Prem).

Enter a unique name for your connector instance in the Name the Connector Instance field.

Under Enter PCE Service Account Credentials, create the API connection to the Illumio PCE:

1. Service Account User

2. Service Account Secret

Under Enter Check Point Smart Console Credentials, enter the following:

1. Check Point Management Server URL

2. Username

3. Password

4. Illumio Data Center Server Name

Under Download Firewall Orchestrator, click Download.

Identify a host on which you will run the Orchestrator.

This server must be able to connect with the Check Point Management Server.

Transfer the .tar file to the server that you will run the Orchestrator on.

Run the following command to deploy the Orchestrator:

tar -xvf <archive-name>.tar.gz

Execute the Orchestrator binary included in the .tar file.

Illumio recommends that you run the binary on a non-terminating session (such as by using tmux).

Navigate to the Check Point tile on the Connectors page to view the status.

Confirm that the orchestrator shows a Health status of Connected.

Next, go to the Firewalls page to see the Illumio policies and the associated firewalls that have been applied to it.

Go to the Firewalls page.

View the list of firewalls.

Click the Subnets Enforced column to open the slide-out and specify the subnets that the firewall is able to enforce on.

Click the Firewall Rules tab to view the Illumio label-based policies that are applied to the firewalls.

Go to Policies > Show Impact to see the firewall that is impacted.

View the number of protected resources that fall within this firewall's IP range in the Impact of Policy page.