CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Search:

Type: Posts; User: PeterSmith78

Search: Search took 0.00 seconds.

  1. Replies
    3
    Views
    326

    GAIA PORTAL WHITE PAGE

    I am trying to upgrade a firewall cluster from R80.10 (GAIA) to R80.20
    I can't connect to any of the firewalls via the GAIA Portal to carry out a CPUSE upgrade
    I've tried the solution SK121373...
  2. Replies
    4
    Views
    1,552

    Re: authentication failure

    ok many thanks I will change shell to bash and see if that works
  3. Replies
    4
    Views
    1,552

    authentication failure

    I know this isn't strictly a Checkpoint question but I'm trying Manage a policy on a Checkpoint Management server running R80.20 on a GAIA platform and I'm trying to deploy an Alogsec 2063 running...
  4. Firewall Rule Analysis including Source IPs

    I am running R80.20 on my management server. I have been asked to produce a report showing all the firewall rules allowing access to a specific host. This is easy enough but I have also been asked to...
  5. Client Authentication - Bad SSL Certificate error

    Hi, me again

    I am trying to set up client authentication using https. Instead of clients connecting via telnet port 259 I want them to connect using HTTPS on port 901.
    I have edited the...
  6. Replies
    0
    Views
    2,724

    certificate SHA1

    Hi
    I am running GAIA 80.20. I would like to know how to issue a new SSL certificate to a firewall. The SSL certificate on the management server is SHA256 but the one on the firewall is SHA1. ...
  7. Replies
    2
    Views
    1,044

    Re: clusterXL issues GAIA 80.10

    many thanks Yonathan, I will try that
  8. Replies
    2
    Views
    1,044

    clusterXL issues GAIA 80.10

    Hi
    I am running GAIA R80.10 on Open Servers
    I have a cluster of 4 firewalls running in high availability mode and have noticed inconsistencies with clusterXL. I was wondering what other...
  9. Replies
    13
    Views
    2,109

    Re: unable to use clish

    Thanks for your reply. yes you are quite right! ( I was expecting a clish prompt )
  10. Replies
    13
    Views
    2,109

    Re: unable to use clish

    Thanks for replies:

    - The MD5 of /bin/bash is as follows:
    [Expert@FWMANAGE01:0]# md5sum /bin/bash
    4d51f636f07ff89cd5a556a821d2fd1e /bin/bash

    - I am using a TACACS server for administrator...
  11. Replies
    13
    Views
    2,109

    Re: unable to use clish

    Many thanks for replies, the output of the commands are shown below (the last command "egrep admin /etc/config/active does not produce any output)

    [Expert@FWMANAGE01:0]# md5sum /etc/cli.sh...
  12. Replies
    13
    Views
    2,109

    unable to use clish

    I have a management server running R80.10. When I try to invoke clish I get the message "CLINFR0479 you can't start an interactive session from another interactive session". The default shell for...
  13. Re: upgrading from R77.20 SPLAT to R80.10 GAIA

    thanks very much both for your replies, I'll do the rebuilds (probably best anyway to have a clean build)
  14. upgrading from R77.20 SPLAT to R80.10 GAIA

    I am running a cluster of four firewalls on open servers SPLAT 77.20 and want to upgrade to GAIA 77.30 or 80.10. There seems to be no upgrade path available according to the upgrade wizard on the...
  15. Replies
    25
    Views
    4,406

    Re: unable to connect to server

    Many thanks Phone boy. I have sent a message (was finally escalated to checkpoint....)
  16. Replies
    25
    Views
    4,406

    Re: unable to connect to server

    Looks like my original post has been hijacked by a bunch of people having similar issue.
    My management server SEEMS to be functioning OK now (I amended one of the "clients" files to "all" rather...
  17. Replies
    2
    Views
    1,096

    Re: smart console window too big

    many thanks, I'll try this
  18. Replies
    2
    Views
    1,096

    smart console window too big

    I don't know if this is the right forum for this question. I find that the R80.10 smart console doesn't always fit into my screen.
    For example when I tried to fail over from one member of a...
  19. Replies
    25
    Views
    4,406

    Re: unable to connect to server

    Thanks for replies

    I've run cpca_client lscert and there are a couple of hundred expired certificates for users (which are all obsolete). I did to a search for SK22612 but can't seem to find...
  20. Replies
    25
    Views
    4,406

    Re: unable to connect to server

    thanks for your reply. Yes I've downloaded them but no luck unfortunately
  21. Replies
    25
    Views
    4,406

    Re: unable to connect to server

    just to add I get the following error when I do "fw debug fwm on"

    [Expert@FWMANAGE01:0]# [Expert@FWMANAGE01:0]# fw debug fwm on
    bash: [Expert@FWMANAGE01:0]#: command not found...
  22. Replies
    25
    Views
    4,406

    unable to connect to server

    I wonder if anyone could help me

    I have recently tried to upgrade a primary management server from R77.20 to GAIA 88.10
    The upgrade went OK and I imported the database using "migrate import" with...
  23. pre upgrade check - INSPECT manual changes

    Has anyone come across the following warning when running the pre upgrade checker (I am trying to upgrade from R77.20 to R80.10 and have downloaded the R80.10 Upgrade tools)

    Warnings: It is...
  24. Re: upgrade to GAIA 80.10 "command not found"

    Thanks very much, that worked :)
  25. upgrade to GAIA 80.10 "command not found"

    I am trying to upgrade a management server which was running Secure Platform R77.20 on a Windows Server 2008R2 platform to GAIA 80.10.
    I have installed GAIA and am trying to do an "upgrade import"...
  26. Re: legacy client auth connectivity HTTPS

    yes I'm using the default certificate "defaultCert". Would I need to generate another certificate
  27. legacy client auth connectivity HTTPS

    I wonder if anyone could advise me. We are running Checkpoint R77.20 on Secure Platform
    We use legacy "client auth" authentication. I am trying to implement HTTPS rather than telnet or HTTP.
    I...
  28. Replies
    4
    Views
    3,776

    Re: adding a static route

    many thanks for your replies. I tried the commands you suggested but couldn't see any issues with the interface configs or static routes. I tried cpstop and cpstart but this did not fix it....
  29. Replies
    4
    Views
    3,776

    adding a static route

    Hi

    I am trying to add a static route to a firewall (checkpoint 4200 appliance with GAIA R75.40)

    I get this error message "check bogus address"

    cgiukgw10> set static-route 10.145.16.0/20...
  30. Re: exporting a selection of firewall logs to SIEM

    Many thanks Irek, that was a good link!
  31. exporting a selection of firewall logs to SIEM

    Hi

    I am running Checkpoint R77.20 (a cluster of 4 firewalls running on Secure Platform and a separate firewall management server running on Windows server 2008R2)
    I have been asked to forward...
  32. Re: upgrade cluster from Secure Platform R76 to GAIA R77.20

    Thanks both. I will probably take Eric's advice as I'm not as proficient as Mike by a long way...
  33. Re: upgrade cluster from Secure Platform R76 to GAIA R77.20

    Thanks for your comments. I was not sure about the rebuilding process so I decided to upgrade to SPLAT r77.20 (instead of going from SPLAT r76 to Gaia r77.20).
    Do you happen to know if there is any...
  34. upgrade cluster from Secure Platform R76 to GAIA R77.20

    Hi
    I am trying to find instructions for upgrading a firewall cluster (currently running Secure Platform R76) to GAIA R77.20.
    I have downloaded the file (...
  35. Replies
    2
    Views
    747

    Re: Link selection for VPNs

    Many thanks Mike. That's exactly what I needed!
  36. Replies
    2
    Views
    747

    Link selection for VPNs

    Hello, I have a question regarding VPN link selection
    We are running Checkpoint NGX R75.40 on Red Hat Enterprise Linux 5.5
    I have a firewall with two internet interfaces (i.e. two different...
Results 1 to 36 of 36