CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Search:

Type: Posts; User: vbavbalist

Page 1 of 3 1 2 3

Search: Search took 0.01 seconds.

  1. Replies
    4
    Views
    7,583

    Re: SIC configuration problem

    Yes installed the linux-iso part then open the web managements of both gateways and done the wizard
  2. Replies
    4
    Views
    7,583

    Re: SIC configuration problem

    Here is some outputs from cpd.elg file , not the whole file but may give a clue

    [CPD 5201 2000725696]@gw-300c31[7 Sep 13:47:23] SIC initialization started
    [CPD 5201 2000725696]@gw-300c31[7 Sep...
  3. Replies
    4
    Views
    7,583

    SIC configuration problem

    Hi,

    I have just installed 2 R77.30 GAIA gateways on vmware for test purposes and tried to create a cluster from smartdashboard but i couldnt provide SIC connection. Done fw unloads , checked the...
  4. Replies
    4
    Views
    2,226

    Cannot open smartdashboard

    Hi
    I now cant open smartdashboard from my pc to R70 SPLAT. I could open smarviewtracker smartmonitor but smartdashboard says loading and its window goes like it. Yesterday i
    Logged smartdashboard...
  5. Re: Site to Site VPN errors : Very very urgent

    I tried to make vpn debug on and opened the ike.elg file with ike view and saw some P2-Quickmode failed messages
  6. Re: Site to Site VPN errors : Very very urgent

    Hi i can see the peers IP and keys at vpn tu command

    Till now i didnt do a debug so dont think i have a ike.elg file now
  7. Site to Site VPN errors : Very very urgent

    Hi,

    Im setting up a new SitetoSiteVPN with an Fortigate device (at remote) . We did the configuraion at both sites. Smartmonitor shows that the tunnel is up. but when i try to ping the remote...
  8. Replies
    1
    Views
    1,140

    sending logs to a linux box

    Hi,

    I would like to send a utme-edges logs to an existing syslog , want it to log to a file. How can i configure the linux box/syslog to get and record the edges logs?

    Regards
  9. Re: Network adapter installation and sk content need

    Many thanks,

    That was so usefull. But i need the driver for R70 also.

    Regards
  10. Network adapter installation and sk content need

    Hi,
    Im trying to add a network card to SPLAT , i made rpm package from the tar.gz of the driver i have from cd , then though lspci i saw the new dual adapter entry ifconfig or other things dont show...
  11. Replies
    0
    Views
    753

    Slow policy installation R70

    Hi,

    On my standalone R70 SPLAT working on open server , the policy installation is very slow for sometime which wasnt that way. Till be able to upgrade the software and hardware , i also cleanup...
  12. Replies
    2
    Views
    1,288

    Re: Consolidation creation error

    I installed database both for gateway and smart1 at the smartddashboard but didnt worked. For years i dont the meaning of CMA CML etc.

    Regards
  13. Re: GAIA R76 cluster policy installation problem

    Thanks what about the management virtual appliance interface settings? Im trying to setup 1 management and 2 gateway members at vmware.

    Regards
  14. Replies
    2
    Views
    1,288

    Consolidation creation error

    Hi,

    On a Smart-1 5 R70.30 appliance i get the below error when trying to create a new consolidtaion error on eventia reporter. How can i fix this?

    Regards


    "Failed to get default...
  15. Re: GAIA R76 cluster policy installation problem

    hi ,

    thanks i have added the 3rd adapter. but didnt worked either .I didnt made a plan for IP adressing and interface order which i guess doesnt matter. and at the gateway properties and topology...
  16. GAIA R76 cluster policy installation problem

    Hi,

    I have downloaded and setup an R76 cluster with 1 management and 2
    gateways on vmware. all machines have 2 virtual adapters which are on
    2 virtual host only networks. I have created the...
  17. Replies
    1
    Views
    702

    Calculating RAM need

    Hi,

    How much ram is used for a connection and all state table on a SPLAT firewall? How can i calculate the whole RAM need?


    Regards
  18. Replies
    0
    Views
    2,464

    Blocking Teamviewer

    Hi,

    I have a R70 SPLAT with IPS blade and like to block teamviewer with it. I only found a signature which says it will block teamviewer version 3, which i downloaded form its site is version...
  19. Replies
    3
    Views
    1,121

    Unexpected log switch

    Hi,

    On my R70 SPLAT which normally log switches at 23.59 , has switched the log very early at a day which planned dos/ddos attack was hapening. Why and how this log switch has occured?

    ...
  20. Replies
    3
    Views
    4,594

    Re: Policy installation too slow

    yep its a stand alone one

    free -m is for now

    [Expert@omega]# free -m
    total used free shared buffers cached
    Mem: 3041 951 2089 ...
  21. Replies
    3
    Views
    4,594

    Policy installation too slow

    Hi,

    On SPLAT R70 generally it takes too much time to policy install. What
    can be the reasons , how to find out the reasone and fix it? how to
    improve it? Also sometimes get load on memory fail...
  22. Re: Policy installation error /Load on memory fail

    Hi,

    thank you but what does this vmalloc mean , what is it used for and what effects it have and how does rising will affect the policy installation;?


    Regards
  23. Policy installation error /Load on memory fail

    Hi,

    From yesterday i started to get error load on memory error and cant install policy on R70 SPLAT. My search brings me the idea to check for the non-English characters in comments etc but i...
  24. Replies
    0
    Views
    1,092

    Policy installation error

    Hi,

    From yesterday i started to get error load on memory error and cant install policy on R70 SPLAT. My search brings me the idea to check for the non-English characters in comments etc but i...
  25. Replies
    4
    Views
    1,278

    Re: Site to Site VPN problems

    Hi Daniel ,

    Sorry i couldnt understand what you mean thanks.
  26. Replies
    4
    Views
    1,278

    Site to Site VPN problems

    Hi,


    I have some Site to Site VPNs running on an R70 SPLAT running without a problem. Installed a second fw R75.20 SPLAT from scratch trying to make the whole same configuration (general and...
  27. Replies
    0
    Views
    846

    About the boot options

    Hi,

    What are the boot options (Online debug mode, offline debug mode, maintance mode) mean and provide? How to use them?
  28. Replies
    0
    Views
    890

    How much connection it can handle?

    Hi,

    How much concurrent connections can an utm edge appliance can handle?

    Regards
  29. Replies
    2
    Views
    1,302

    Policy installation takes long on R70

    Hi,

    On a standalone R70 SPLAT , mostly policy installation takes too long (minutes). After rebooting the firewall mostly it takes shorter for a time. What can be the problem and how to fix it?
  30. Replies
    0
    Views
    707

    VPN connection steps

    Hi,

    Can someone clearly write and explain the steps the site-to site vpn
    connection establishment between Checkpoint firewalls?


    Regards
  31. Replies
    0
    Views
    1,145

    Site to Site VPN errors

    Hi,

    On an R75.20 Site to Site VPN gateway there are some site to site vpn configurations with remote checkpoint firewalls. After switching the firewall on production i got some errors on VPN ....
  32. Replies
    1
    Views
    982

    NTFS support on SPLAT

    Hi,

    For the sake of moving big files form my R75.20 SPLAT (like snapshots
    etc) im trying to find out a way. I tried to ftp them to a windows 7
    PC but after i transfer them and make md5sums of...
  33. Replies
    0
    Views
    1,678

    Web visualisation tool eror

    Hi,

    I have a script which can be ran manually uses web visualization tool
    to export the policy to the html format. (on an R70 . I have
    downloaded Web Visualization Tool for SecurePlatform /...
  34. Replies
    1
    Views
    2,628

    Changing mac address at SPLAT

    Hi,

    For the sake of firewall switching operations i would like change the
    make the set the all mac addresses of the different SPLATS same
    interfaces (eth0 will be xxxxxxx
    eth1 will be yyyyyy...
  35. smart-1 eventia reporter consolidation session error

    Hi,

    On a smart-1 box which is on LAN , i login it with the eventia reporter gui then go the management and try to create a new consolidation i get error

    Failed to get default parameters from...
  36. Replies
    6
    Views
    1,836

    Re: Collecting utm-edges logs to the Smart-1

    Thanks , i also guess if i give the smart-1s LAN IP as the syslog server at the web ui of edg, it will send the logs to the smart-1. But i dont only want to send the logs to the smart-1, i want also...
  37. Software for monitoring Checkpoint firewalls

    Im looking for software/tools to monitor Checkpoint firewalls (health performance, network/service connectivity etc). Any recommandation ? I see that Oracle Enterprise Manager has a plugin for...
  38. Replies
    6
    Views
    1,836

    Re: Collecting utm-edges logs to the Smart-1

    Hi,

    Some are managed by fw-1 and sending logs to it, some are standalone managed by nothing

    Regards
  39. Replies
    6
    Views
    1,836

    Collecting utm-edges logs to the Smart-1

    Hi,

    I have both FW-1 SPLATs and also utm edge boxes some sends its logs to a syslog server some send to the fw-1. And now i would like to
    send the edges boxes also to the smart-1 5 box (R70.30...
  40. Replies
    13
    Views
    6,182

    Re: Want to see shared secret as clear text

    Hi,

    I see there but as dots , i cant see the exact and clear text key.
  41. Replies
    13
    Views
    6,182

    Want to see shared secret as clear text

    Hi,

    I have some VPN communities working on a production firewall , and i want to set the same communities at a new firewall. But i cant see the

    communities shared secret . I click on the...
  42. Re: New installation problem R75.20 connectivity problem

    Yep , smartviewtracker showed antispoofing logs. So for to connect i either disabled antispoofing on the interfaces or either set at dedect either to prevent. What must me the correct configuration...
  43. New installation problem R75.20 connectivity problem

    Hi,

    I have made a clean install of R75.20 SPLAT , now only LAN cable is connected and a temporary IP is given there . I want to connect it from my PC only for now to build up the rules etc...
  44. Upgrade_export problem for upgrading from R70 to R75

    Hi,,
    I would like to upgrade my R70 SPLAT standalone boxes to R75.20 standalone boxes (with clean install). First i guess i have to upgrade to
    R75 then use the R75.20 upgrade package to upgrade...
  45. Replies
    0
    Views
    1,454

    Failed to launch the application

    Hi,

    I have a smart-1 box which running r70.30 and i used to login it with a eventia analyzer client but i get error that says failed to launch the application and cant login now (also i rebooted...
  46. Replies
    0
    Views
    1,906

    Enabling qos on utm-edge gateway

    On a standalone utm-edge gateway how can i enable and apply qos? When i get the qos profiles i get "Traffic Shaper is not enabled therefore these settings will have no effect" . I found a releated...
  47. Replies
    1
    Views
    1,272

    Old license after license upgrade

    Hi,

    I have some gateways with old licenses working on R70 SPLAT gateways. After i upgrade the license to software blade license , what will my R70 with old licenses will be? Will they able to...
  48. Smartreporter consolidation creation error on Smart-1

    Hi,

    On a new installed Smart-1 device which came with R70.30 , when logged
    to it with the R70 Eventia Reporter gui and click to consolidation tab
    there is no any consolidation seen there. When i...
  49. Replies
    2
    Views
    4,811

    Policy installation too slow

    Hi,
    On a R70 SPLAT standalone open server firewall it sometimes takes too long to install a a policy with the smartdashboard. Sometimes more than 5 minutes, even with a few changes on the config....
  50. Replies
    6
    Views
    2,083

    Re: SIC activation key

    Hi,
    When i look that part Communication part is grey unclickable next part DN is also grey but with information. so cant getany activation key
  51. Replies
    6
    Views
    2,083

    SIC activation key

    Hi,

    I would like to connect a SMART-1 appliance to an R70 SPLAT firewall but about the SIC thing when try to click the current firewalls object at the smartdashboard the SIC part is seems disabled...
  52. Replies
    0
    Views
    1,279

    Smart-1 usage

    Hi,

    What are the features , usages of Smart-1 appliances and


    Having 2 standalone SPLAT R70x boxes (which will be planned to
    upgrade to R75x) and some other edges which some of them are...
  53. Replies
    5
    Views
    1,909

    Re: Finding Rule creation time and creator

    Hi
    thanks but either way how to find the rule creation logs
    regards
  54. Replies
    5
    Views
    1,909

    Re: Finding Rule creation time and creator

    Hi,
    Yes there are some of the rules i have to find out which are created at R65 , the current
    firewall is the same installations upgrade from R65 windows to SPLAT R70.

    In any way what is the...
  55. Replies
    5
    Views
    1,909

    Finding Rule creation time and creator

    Hi,
    There are some rules with numbers which i like to find out at which date its created and created by who? gateway is R70 upgraded from R65. Audit logs filters doesnt seem so clear.


    Regards
  56. Re: script for web visiualization tool doesnt work as cron job

    Hi ,
    Many thanks what does this exactly do if i add it to shell script?

    Regards
  57. script for web visiualization tool doesnt work as cron job

    Hi,
    a script written for getting the policy out everyday which will make the cpdb2html.csh work and the
    script begins with !/bin/bash works fine when run manually ( makes the policy html output...
  58. Replies
    1
    Views
    3,353

    some messages on dmesg on R70 SPLAT

    Hi,
    I looked at the dmesg entries and found below messages (dont know yet if these entries continous or
    not) . Anybody any idea? is it IPS releated? what may be the reason and effects?

    Regards
    ...
  59. Replies
    3
    Views
    3,477

    Re: Firewall Policy not showing up

    My problem still continues

    Any idea?
  60. Replies
    3
    Views
    3,477

    Re: Firewall Policy not showing up

    I have the similiar issue with my R70 SPLAT . ı have little policies with few number of rules showing in the
    smarportal but the main /default /applied policy which is more than 100 rules with lots...
  61. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    thank you i usually dont apply hfas But can you remember which one? Ill now look at the available hfas for R70 SPLAT. And also cause the firewall is a production one , what are the risks and affects...
  62. Replies
    25
    Views
    8,020

    Re: Sharing cpinfo

    They provided me an sftp account for file upload but im still not sure to upload the cpinfo or upgrade_export since the manager doesnt want me to do so !
  63. Replies
    25
    Views
    8,020

    Sharing cpinfo

    Hi,


    When having a trouble on fw do you easily share your cpinfo result or upgrade_export with Checkpoint, what is your opinion about sharing them? I sometimes have problems and checkpoint...
  64. Replies
    5
    Views
    2,069

    Re: Cron job some script work some dont

    Hi yes adding that worked but i had . $cpdir/tmp/.CPprofile.sh at the both script done adding the
    path you have given seem to work fine.


    Thank
  65. Replies
    5
    Views
    2,069

    Re: Cron job some script work some dont

    Hi,

    The script uses /opt/CPsuite-R70/fw1/bin/upgrade_tools/upgrade_export $FILENAME as full path
  66. Replies
    5
    Views
    2,069

    Cron job some script work some dont

    Hi,
    I have 2 scripts one is archving and ftping the daily log other is running the upgrade_export and ftping the result. Both scripts work when started manually. I have schedulee both of them the...
  67. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    Hi , i was able to cpstart and cpstop and yes it helped im able to login now. But now i cant get a view of the main policy it makes me wait but unable to open which is nearly 100-110 rules but when...
  68. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    also im adding the netstat output here you to see


    tcp 0 0 0.0.0.0:4433 0.0.0.0:* LISTEN



    Regards
  69. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    Hi i already found the smartportalstart and smartportalstop by lookking at the directories but they still didnt help me to login to the smartportal i only can reach the main page. I also found an...
  70. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    What advantages do you get from having seperate smartcenter and gateways? On your machines how much time do your machines take to cpstop cpstart?

    Regards .
  71. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    Hi,

    I have ran cplic check swp (which i saw on a books Smartportal part) I get the below answer:

    cplic check 'swp': license valid

    So i guess the license seems to be ok?

    Regards
  72. Replies
    13
    Views
    4,959

    Re: Enabling smartportal on R70 SPLAT

    Hi,
    I still didnt rebooted but added port 4433 access from my PC to
    firewall and was able to open the https://myfirewall:4433. But when i
    used my credentials i got below error:

    Cannot login....
  73. Replies
    13
    Views
    4,959

    Enabling smartportal on R70 SPLAT

    Hi ,

    I have a
    standalone production R70 SPLAT. I just started the sysconfig /Product
    Installation and installed the Management Portal. I didnt rebooted or
    cpstoped the gateway since its...
  74. Replies
    1
    Views
    1,151

    Security rules through site to site VPN

    Hi, Im trying to set a site to site vpn between my r70 SPLAT and a R65 SPLAT. We have entered configuration about the vpn community (meshed) at the firewalls. But how must the security rules set...
  75. Re: Real Emergency: Utmedge connected to R70 SPLAT logging problem

    Hi, 1. I tried to reconnect the edge to the smartcenter and i couldnt connect. I gave the command smstart at the R70 shell and then i was able to connect the edge to the smartcenter. Still when i...
  76. Re: Very urgent need of a daily log transfer backup

    Hi again,

    Im trying to look at the script and customize (folders, hostname etc) . I get this when i try to run my version of script below:

    Password: (username)

    How to fix it and what was...
  77. Re: Very urgent need of a daily log transfer backup

    Hi, First of thanks. more questions coming: 1. How can i add this script (im looking it to understand) as a cron k-job to R70 smoothly (since this is a Redhatbased linux but a specialized one dont...
  78. Very urgent need of a daily log transfer backup

    Hi i need very urgently a backup script which will daily transfer the log files of a R70 SPLAT box to an
    ftp server automaticly. I want to mention that from its webui scheduling of backups doenst...
  79. Re: Real Emergency: Utmedge connected to R70 SPLAT logging problem

    I also connected to the edges shell by ssh and tried updatenow command
    i looked at the logs

    form shell again and see below

    15023 Warning: Connection to the Service Center has failed.

    also...
  80. Real Emergency: Utmedge connected to R70 SPLAT logging problem

    Ill try to explain my ergent problem with below recent posts to the mail groups: Please help


    I have an R70 SPLAT box and and utm-1edge box (7.5.5 firmware). I
    want to connect and manage the...
  81. Replies
    11
    Views
    2,948

    Upgrading the license: from R65 to R70

    Hi, I have an old R65 license . I have upgraded the gateway to the R70 SPLAT wll with its QOS and IPS . But its told that i have also have to upgrade the license to teh blades license for both future...
  82. UTM edge is not sending logs to the smartcenter R70

    Hi ,
    On an R70 Splat gateway there is an utmedge object (which has an
    different internet gateway ) and at its properties at the logging part
    forward logs to Security Management Server is selected....
  83. UTM edge is not sending logs to the smartcenter R70

    Hi ,
    On an R70 Splat gateway there is an utmedge object (which has an
    different internet gateway ) and at its properties at the logging part
    forward logs to Security Management Server is selected....
  84. Make sure the Smartview Monitor is up and running

    On a R70 SPLAT gateway which is setuped using a configuration backup from Windows 2003 R65 gateway , i cant see the traficc statistics from smartview monitor and get the errors
    Could not connect...
  85. Replies
    1
    Views
    930

    Strange temporary Site to Site problem

    Hi ,
    On a gateway having 2 site-to-site VPN areworking normally without changing any vpn setting . Yesterday on a server which is using the connection to a destination through 1 of the site-to...
  86. Replies
    7
    Views
    20,461

    Re: Clear ARP Cache - SPLAT

    Hi,
    what about setting the same mac address for the external interfaces of two SPLAT boxes? You know manually switching between them requires arp cache clear at the router side?


    regards
  87. Database Revision control after upgrade from R65 to R70

    Hi,

    after using a R65 configuration file to get up and R70 i was successful. But when i try to open the Database Revision Control versions i get errors.

    first a notification the selected...
  88. IPSec connection problem after policy installation

    Hi,
    There is a database server (unix) on LAN and a web application server (windows) on DMZ which uses the database. The communication between these 2 machines are wanted to be with ipsec. The...
  89. Replies
    1
    Views
    1,505

    Smartdefense Update history

    Hi, Is there a way or file to tarck the R65 smartdefense update history? At what date what version was installed etc? Regards
  90. Replies
    8
    Views
    1,926

    Re: Policy installation/any side effects

    Hi shadowpeek,

    thanks you showed us a setting , are there any other releated settings especially which can be done through Smartdashboard? Of course we use the
    default settings of Checkpoint...
  91. Replies
    8
    Views
    1,926

    Re: Policy installation/any side effects

    my cpu usage seems very low at general and historical data at the smartview monitor. Also when i login to the smartview monitor at the first screen i see
    0 MB used real memory????. an important...
  92. Replies
    8
    Views
    1,926

    Re: Policy installation/any side effects

    im using r65 and after i install a polic sometimes most of the things seems broken
    but also i get suspicious if some people who is the system administrators broke something or the systems itself...
  93. Replies
    8
    Views
    1,926

    Policy installation/any side effects

    Hi,

    Are there any side effects of policy installation? Anything goes wrong after a regular policy installation? Any connection, state information lost?

    Regards
  94. DOS(dDOS) , Connection limiting observing Smartdefense rules

    Hi,

    What are the Smartdefense rules which gives protection for DOS, and the ones who is limiting the connections (many connections from the same ip , and to a same destination).

    Regards
  95. Re: Importing R65 windows config to SP R70 (interface question)

    Hi,

    I have tried the fw unload localhost on the R70 shell and for this time i was able to loging to the dashboard with my laptop :-) I saw our policy but while trying to installed the policy...
  96. Replies
    4
    Views
    2,463

    GUI client error reasons /check list

    Hi,

    Can we write down the all of the possible reasons for the GUI client error and make a checklist here?

    Regards
  97. Re: Importing R65 windows config to SP R70 (interface question)

    Hi,
    im still getting the same gui client error , adding any to the gui clients didnt help

    installed a previous configuration file but it also didnt hlep so,

    how can be the problem? how can i...
  98. Differences between R70, R70.1,R70.20,R70.3 etc

    Hi,

    What are the differences between R70, R70.1,2.30 etc?. As a user who is using R65 and upgraded one of the installations to the R70 i wonder about the other R70x releases, what are they what...
  99. re: Importing R65 windows config to SP R70 (interface question)

    Hi ,
    I have added the any but will try tomorrow , hope that it will work but afterwards i have to restrict again.
  100. re: Importing R65 windows config to SP R70 (interface question)

    Hi i looked the fwm process cpu usage on the SP while it was standalone (didnt connected my laptop) . The cpu usage of fwm process showed %1 or %2
Results 1 to 100 of 204
Page 1 of 3 1 2 3