Multi-Domain Security Management Model:

Using the Multi-Domain Security Management model, administrators centrally manage multiple independent networks, typically belonging to different Domains, divisions or branches. The Multi-Domain Server is the central management node that controls the network and security policy databases for each of these networks.
Each Domain network is managed by a Domain Management Server, which provides the full functionality of a Security Management Server and can host multiple Virtual Systems, virtual and physical devices. The server that manages the VSX Gateway is the Main Domain Management Server. A VSX Gateway can host Virtual Systems that are managed by different Domain Management Servers.

1. Smart-Domain Manager

2. Multi-Domain Server

3. Smart-Dashboard

4. Domain Management Server

5 Main Domain Management Server

6. VSX Gateway

7. Virtual Systems in Domain Management Servers

Checkpoint Firewall VSX Overview:

VSX (Virtual System Extension) is a security and VPN solution for large-scale environments based on the proven security of Check Point Security Gateway. VSX provides comprehensive protection for multiple networks or VLANs within complex infrastructures. It securely connects them to shared resources such as the Internet and/or a DMZ, and allows them to safely interact with each other. VSX is supported by IPS™ Services, which provide up-to-date preemptive security.

A VSX Gateway contains a complete set of virtual devices that function as physical network components, such as Security Gateway, routers, switches, interfaces, and even network cables. Centrally managed, and incorporating key network resources internally, VSX lets businesses deploy comprehensive firewall and VPN functionality, while reducing hardware investment and improving efficiency.

VSX:
Virtual System Extension - Check Point virtual networking solution, hosted on a single computer or cluster containing virtual abstractions of Check Point Security Gateways and other network devices. These virtual devices provide the same functionality as their physical counterparts.

VSX Gateway:
Physical server that hosts VSX virtual networks, including all virtual devices that provide the functionality of physical network devices.

Management Server:
The Security Management Server or a Multi-Domain Security Management used by administrators to manage the VSX virtual network and its security policies.

Virtual Switch:
A virtual device that provides the functionality of a physical switch in a VSX deployment.

Virtual Router:
A virtual device that provides the functionality of a physical router in a VSX deployment.

Warp Link (wrp):
A virtual interface that is created automatically in a VSX topology.