CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it yet again - That's right, the 3rd edition is here!
You can read his announcement post here.
It's a massive upgrade focusing on current versions, and well worth checking out. -E

 

Search:

Type: Posts; User: JPYDX

Search: Search took 0.00 seconds.

  1. Replies
    0
    Views
    1,450

    Smartview Monitor VPN Tunnels

    Hello all.

    Personally I hate SmartView monitor as it does not ever show me any useful information!

    Anyway, at the moment I need to find out average bandwidth usage from each VPN tunnel. I click...
  2. Replies
    3
    Views
    1,143

    Re: Mobile Access Config Help Please

    H:\>route print
    ===========================================================================
    Interface List
    18...54 8b 62 cf 23 0f ......Check Point Virtual Network Adapter For Endpoint V
    PN...
  3. Replies
    3
    Views
    1,143

    Re: Mobile Access Config Help Please

    Hi,

    Speaking specifically about the routing issue now.

    Hub mode is enabled and in global properties, I have also changed the option that states "all traffic through gateway" or something...
  4. Replies
    3
    Views
    1,143

    Mobile Access Config Help Please

    Hi,

    I need some help with the Check Point Remote Access solution.

    Safe to say, the mobile access blade is clunky and terrible Ė however, we purchased it and I need a hand configuring some...
  5. Bandwidth throttling/limiting per user or per Mobile Access blade.

    Hi,

    Is there a way of throttling the bandwidth per connected user via Remote Access blade?

    Or - give a portion of the bandwidth to use for Remote Access?

    Just wondering, once I deploy the...
  6. Re: How to install policy with comms from mgmt server blocked by antispoofing

    All,

    I did see your presentation! I was there, and I have used the command several times but they are not working in this instance. Traffic still dropped by local interface address spoofing.
    ...
  7. How to install policy with comms from mgmt server blocked by antispoofing

    Hi all,
    As subject says, anyway to get a policy to a gateway that has comms to and from management server blocked by anti spoofing?

    fw fetch no luck either.

    My only other solution is fw...
  8. Replies
    1
    Views
    616

    Management HA/Migrate Export and SIC Mess!

    Hi all,

    I have myself in a mess.

    I had to do a clean install of R80.10 on our PRIMARY management server.

    Failed over to our secondary fine, and I did a migrate export of our secondary...
  9. Replies
    3
    Views
    1,267

    Re: Verification Error - Policy Failure

    Tim -

    R80.10 Management with R80.10 Gateways - fully updated with latest Jumbo Hotfix.

    Threat Prevention succeeds - access control is the one that fails.

    Ill debug cpm/fwm.

    Any...
  10. Replies
    3
    Views
    1,267

    Verification Error - Policy Failure

    Hi,

    I have policy install failures on all my gateways.

    Verification problems from install_policy.elg shows..

    27/02/18 10:27:32,008 INFO...
  11. Replies
    25
    Views
    6,714

    Re: unable to connect to server

    Have you downloaded and installed latest Jumbo HF? along with any other relevant recommended downloads for your server?

    This has prevented me logging in before
  12. Replies
    2
    Views
    967

    Annoying "Query Failed" on Logs tabs

    Hi all,

    Had this annoying issue for ages now.

    Logs and Audit log work fine, but the reports, like threat prevention, and all the others always come up with "query failed" included the general...
  13. Re: Strange connection disruption 30minutes + after policy install

    How about doing it before? Would that cause any problems?

    Only question is, why does another policy push solve the issue?
  14. Re: Strange connection disruption 30minutes + after policy install

    update - The 30 minutes after statement is incorrect. I have feedback from other business areas that manage the services behind the firewall and they saw issue occur directly after the policy...
  15. Re: Strange connection disruption 30minutes + after policy install

    Hi all,

    Thanks all for your replies.

    Firstly, no its not a bridge!

    Tim - I was at your speech at CPX, and I was attempting to use the notes I got down about 'what ate it' - however typically...
  16. Strange connection disruption 30minutes + after policy install

    Hello,

    I have a strange issue on our firewall in our UAT eccomerce environment.

    Since itís UAT, itís not critical, but can cause some grumpy faces on developers of course.

    So, this never...
  17. Can anyone try give some logical understand to this!!

    Hi,

    I really will not bore you all with ins and outs. But this is part of a 2 month high priority ticket, that is still open with Check Point TAC. Their support is disgraceful.

    The below is...
  18. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Iím not ignoring at all - Iíve just found new stuff that either contradicted or made what I said previously irrelevant hence why I havenít honoured everything you have said. Iíve very appreciative of...
  19. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Hi all

    On our slave firewall in the cluster we have this from dmesg

    [fw4_1];Stopping ClusterXL
    [fw4_1];Starting ClusterXL
    [fw4_1];FW-1: fwha_set_new_local_state: Setting state of...
  20. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Hi all,

    Just bumping this thread - any other suggestions?
  21. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Okay - had a breakthrough (I think)

    Here me out.

    So, I feel the issue is linked back to the F_INDOM message - domain objects.

    As previously mentioned, we barely use them at all.

    Last...
  22. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    nothing after apart from dropped traffic after the eth7. Nothing else shows.

    dmesg:


    [fw4_1];fwioctl: Policy has started. Extending dead timeouts
    [fw4_1];FW-1: [cul_policy_freeze][CUL -...
  23. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    We 'broke' the firewall in a controlled way last night, through pushing the policy.

    From the debug reports, and after filtering out all the rule drops, we had these CPU messages amongst the policy...
  24. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Morning all -

    We only see it on one box currently but we haven't tried to flip it over to the other to test. As much that could fix it, it doesnt really fix that we would still have a faulty box...
  25. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    The issue is very much firewall related I believe. After many lines of further investigation on our network, DNS etc, I pretty confident now it is the box.

    Aside from ARP, Any other suggestions? I...
  26. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116956

    Looks like its normal.
  27. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Adding more to this as Iíve forgot some bits of Maybe good information.

    When a policy push is occurring, the slave member in the VRRP set up becomes active for 1 second roughly. No longer. So both...
  28. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Okay - so ARP could be an issue we are saying?

    1) - Why would this only be rectified with a CPSTOP and Start? What happens to the ARP cache then to cause this to start working again?
    2) - What...
  29. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    Also - here we are.

    This issue has only started in the last 4 months or so. The checkpoints have been in for over 2 years.

    Why suddenly would ARP be an issue?

    show configuration arp
    set arp...
  30. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    The ARP bit is confusing me.

    If traffic is getting to the outside interface on the firewall, then ARP surely isn't an issue since it is made it there?

    Also, if you are suggesting ARP is a an...
  31. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    I will check syslog now, and also take all this down for the next occurance.

    Thanks all again, this is massively helpful.

    Question - when you suggest it could be ARP issues, what in particular...
  32. Re: Freezes/Lock-Out on our firewall that have CP puzzled.

    R77.30 with take 216. Take 286 not installed.
  33. Freezes/Lock-Out on our firewall that have CP puzzled.

    Hi,

    We have some Ďfreezesí/lock-outs with our DMZ firewall. This is a 12400 appliance for reference.

    These instances happen at any time. There is no correlation at all with these events. Some...
  34. Replies
    3
    Views
    1,012

    Connections drops same time every day!

    Hi,

    Our external 3rd party agencies that connect via a firewall in a VSX cluster go offline for 1 minute - ish, every day at 15:23.

    Interestingly, this has now moved to 14:23 when the clocks...
  35. HELP - dropped by fw_runfilter_ex Reason: F_INDOM

    Hi all,

    We are currently investigating issues in our network that happen at set times during the day, and month.

    We experience lockouts on our checkpoint, where traffic hits in the inbound...
  36. Replies
    9
    Views
    2,154

    Re: fw ctl zdebug command question

    Fantastic! Thank you.
  37. Replies
    9
    Views
    2,154

    fw ctl zdebug command question

    Hi there,

    I am trying to run the fw ctl zdebug + drop command, however I want to only apply it to one virtual firewall in a VSX cluster.

    As you cant log on to the virtual firewall via ssh, I...
Results 1 to 37 of 37