CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Search:

Type: Posts; User: iamramu92

Search: Search took 0.00 seconds.

  1. Replies
    0
    Views
    2,051

    SmartReporter limitation

    Hi Team,

    I'm running my Environment with R77.30 Gaia. My management server do not have a Monitoring blade enabled in any of the Gateways.
    I'm trying to generate a similar report as attached one...
  2. Replies
    3
    Views
    1,076

    Re: R80.10 Upgrade error

    Upgrading from Gaia R77.30 to R80.10
    Management server
  3. Replies
    3
    Views
    1,076

    R80.10 Upgrade error

    R80.10 upgradation failed with following errors.

    Upgrade package is not ready
    /bin/upgrade_start: line 16: ./upgrade: No such file or directory
    UPGRADE: Upgrade failed - exit status=127
    ...
  4. Firewall Accept and Drop count for one month

    Hi Team,

    We were using Appliance called Solutionary to monitor the firewall logs previously. It used to give me a report similar to the following. Now we have removed the appliance from Network....
  5. Replies
    7
    Views
    4,159

    Re: Policy installation takes long time

    [Expert@******SMTSRV:0]# free -k
    total used free shared buffers cached
    Mem: 7942620 7890624 51996 0 153076 4050300
    -/+...
  6. Replies
    1
    Views
    591

    Finding Unused objects

    Hi Team,

    I'm trying to find out the Unused objects on my Management server. I have found some objects through Query > Unused objects .
    Is there any way to find the objects which is used in some...
  7. Replies
    7
    Views
    4,159

    Re: Policy installation takes long time

    gaia R 77.30
    Distributed
  8. Replies
    7
    Views
    4,159

    Policy installation takes long time

    Hi Team,

    I'm running my environment with Distributed architecture and managing 2 cluster objects contains 2 firewalls on each cluster.
    The rulebase has nearly 350 rules for each cluster and no of...
  9. Re: Need help to implement the Carbon black through Checkpoint

    Hi Team,

    I have tried checking through proxy. What is happening there is no option to point out the Carbon black sensor (Client side agent) towards the proxy server.
    Is there anymore option i can...
  10. Re: Need help to implement the Carbon black through Checkpoint

    Unfortunately we do not have a proxy in our environment, if it is there i need not to have an application control and URL filtering enabled on the firewall
  11. Need help to implement the Carbon black through Checkpoint

    Hi Team,

    We are in a process of implementing the Carbon black Next-Gen Antivirus in our environment. Unlike any anti-virus vendor carbon black doesn't have any centralized management to control...
  12. Re: FTP traffic categorized as unknown in URL filtering

    Yes, I'm blocking the Unknown category in my configuration.
    I'm curious to know how to re-categorize the HP sites to some known application category.
  13. FTP traffic categorized as unknown in URL filtering

    Hi Team,

    I have allowed HP FTP site in the Application control policy. When i try to access the site from the server it's getting blocked and category is showing as unknown traffic.
    Can someone...
  14. Checkpoint issue with Carbon-black installation

    Hi Team,

    I need a help to implement the following scenario:

    We are running Gaia R77.30 with Firewall and Application URL filtering blade. In our current setup we have allowed Internet_IP's to...
  15. HTTPS inspection bypass not working as expected

    Hi Team,

    We are running our firewall in Gaia R77.30 with Application & URL filtering and HTTPS inspection enabled with it. We have a requirement of installing Carbon black antivirus in our...
  16. Re: Two factor authentication for Gaia portal and GUI client login

    Hi mcnallym,

    Thanks for the reply. I will try it.
  17. Two factor authentication for Gaia portal and GUI client login

    Hi Team,

    Is it possible to have a 2FA (like RSA) to login to GAIA portal and Smart dashboard.
  18. Replies
    3
    Views
    1,987

    Re: Enabiling Https inspection

    Hi Mcnallym,

    Thanks for the response!
    If you don't mind can you please elaborately explain what is happening once you install the certificate on client's trusted store.
  19. Replies
    3
    Views
    1,987

    Enabiling Https inspection

    Hi Team,

    We have enabled Application control & URL filtering blade without Https inspection in our environment over 3 months back. Now we are going to enable the Https inspection feature in it....
  20. Replies
    3
    Views
    829

    Re: Deploying IPS blade in Prevent mode

    Hi Mcnallym,

    Thanks for the reply. I will go through the guide mentioned by you and will post in case i struck somewhere.

    Once again thanks a ton!

    Ram T S
  21. Replies
    3
    Views
    829

    Deploying IPS blade in Prevent mode

    Hi Team,

    I'm running a cluster setup with R77.30 GAIA and recently bought IPS license. Can somebody advise me the phases to deploy the IPS which will prevent any kind of unknown outages.
    I'm...
  22. Replies
    8
    Views
    2,744

    Re: Upgrade or clean install

    Hi,

    Management server:

    Please go ahead and do a upgrade for management using R77.30 upgrade package.

    Security Gateway:

    Please take a screenshot of Interfaces, routes and any other...
  23. Replies
    8
    Views
    2,744

    Re: Upgrade or clean install

    Hi,

    Management server:

    Please go ahead and do a upgrade for management using R77.30 upgrade package.

    Security Gateway:

    Please take a screenshot of Interfaces, routes and any other...
  24. VPN between Checkpoint and Dynamic address ASA firewall

    H ITeam,

    I have a requirement. I'm using Checkpoint 4400 firewall running in R77.30. I need to form a IPSec tunnel with ASA firewall which uses dynamic public IP. Is there any document to achieve...
  25. Replies
    1
    Views
    1,486

    management passwords are unknown

    Hi Team,

    I have Management server running in R76 Gaia version. Unfortunately i lost all my passwords and old known backup. I found there is a procedure mentioned in "sk92663". But my only worry is...
  26. Replies
    3
    Views
    1,919

    Re: Login issue on firewall

    Thanks for the solution!

    I have booted the box in maintenance mode and edited the /etc/passwd file. Now it's working fine.
  27. Replies
    3
    Views
    1,919

    Login issue on firewall

    Hi Team,

    Today morning i have ran the following command in the firewall to change the shell.

    chsh -s /etc/cli.sh admin

    After this the firewall is logging out as soon as enter username and...
  28. Site-to-site tunnel with Dynamic ip ASA device

    Hi Team,

    I have checkpoint 4400 appliance(standalone) running with Gaia R76. I need to setup a site-to-site tunnel with ASA device which has a dynamic IP enabled on the external interface. Is it...
  29. Replies
    5
    Views
    3,609

    Re: Route based vs policy based vpn

    Thanks a lot for the information team. Let me configure and get back in case of any discrepancies.


    Regards,
    Ram T S
  30. Replies
    5
    Views
    3,609

    Route based vs policy based vpn

    Hi Team,
    Can we run route based vpn and policy based vpn on the same firewall???

    Regards,
    Ram T S
  31. Replies
    4
    Views
    1,722

    Re: Recover policy from Gateway

    The below article i found in the CPUG forum. Will it work?

    Using cpinfo to Re-create a SmartCenter
    You can do this partially. The cpinfo should have a copy of most of the files in the conf...
  32. Replies
    4
    Views
    1,722

    Recover policy from Gateway

    Hi Team,

    We are running our distributed setup in R76 version. Recently our Management server got crashed and unfortunately i don't have upgrade_export backup to rebuild the management. Is there...
  33. Replies
    2
    Views
    2,218

    Virtual switch SIC issue

    Hi Team,

    Hope all are doing good.

    I'm facing a issue in our VSX environment. We are having 2 9070 VSX gateways running with 7 virtual systems and 1 virtual switch. Both the firewall is in Load...
  34. Replies
    7
    Views
    2,007

    Re: IPSO 390 flash based Gateways

    Thanks for the reply jdmoore0883. I will go with R75.47 as of now.
  35. Replies
    7
    Views
    2,007

    Re: IPSO 390 flash based Gateways

    Hi,

    Thanks for the reply. Is there any release notes which stat 1GB RAM is sufficient for R75.47.
  36. Replies
    7
    Views
    2,007

    IPSO 390 flash based Gateways

    Hi All,

    What is the last available checkpoint package for IP 390 flash based appliance which is running with 1 GB of Ram and IPSO 6.2 and R75.40 currently.

    Thanks in advance!
  37. Thread: DHCP Relay

    by iamramu92
    Replies
    4
    Views
    2,102

    Re: DHCP Relay

    Hi,

    I had a similar issue. When i tried checking the Smart Tracker some requests was dropped by Stealth rule of the firewall. I tried disabling stealth rule and created the rule for DHCP 67 and...
  38. Re: ports required from Management server to Gateway

    Hi Bhav,

    Open any services between Management server and the Gateway. Since the communication between the Management and Gateway is Secure need not worry to open a any port. Once the SIC(Secure...
  39. Replies
    6
    Views
    3,535

    Re: Antibot not updating on secondary firewall

    Hi Team,

    I have followed the sk43807 and checked the https and http advanced properties. There the option "Synchronize connections on Cluster" is already enabled.
    And checking about step 3 we are...
  40. Replies
    6
    Views
    3,535

    Re: Antibot not updating on secondary firewall

    Thanks Brain and Cory.

    I will perform the same and update you the status.
  41. Replies
    6
    Views
    3,535

    Antibot not updating on secondary firewall

    Hi Folks,

    In our setup we are using one central management server and 2 firewalls in a Active/Standby cluster. We have enable Antibot/Antispam blade and configured auto update of database for...
  42. Replies
    3
    Views
    2,707

    Re: VSX 9070 lost password

    Thanks for the reply.

    That SK mentioned by you has mentioned the product as "UTM-1 and Security Gateway".
    We are running on the VSX environment. Does it applies for us also. Kindly reply.
  43. Replies
    3
    Views
    2,707

    VSX 9070 lost password

    Hi Team,

    We are running VSX 9070 in a cluster mode with 8 firewall instances. We lost password for the one of the firewall. We are running with R67.10.
    Kindly help or suggest to reset the...
Results 1 to 43 of 43