CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 3 of 3

Thread: 41k admin

  1. #1
    Join Date
    2014-10-27
    Posts
    150
    Rep Power
    5

    Default 41k admin

    Hello Experts,

    I have been tasked with helping a client in migrating traffic to 2 41000s...as most, this is the first time I will touch them, so started by reading the ATRG. Following which, I had some questions
    1. What is glish? Or global mode ?
    2. Is there a close in 41000, or is glish the replacement of close ?
    3.is there an expert mode like standard appliances ?
    4. Do you have any sample tcpdump syntaxes ?
    5. Is there an easy guide for 41k management ?
    6. Where do configurations like OSPF, routing, interface IP addresses etc ? What mode do you add these ? glish, glish ,or expert ?

    Many thanks in advance

    Cheers
    Bhav
    Bhav

  2. #2
    Join Date
    2006-04-27
    Location
    Twillight zone
    Posts
    1,009
    Rep Power
    15

    Default Re: 41k admin

    Quote Originally Posted by bhavinjbhatt View Post
    Hello Experts,

    I have been tasked with helping a client in migrating traffic to 2 41000s...as most, this is the first time I will touch them, so started by reading the ATRG. Following which, I had some questions
    1. What is glish? Or global mode ?
    2. Is there a close in 41000, or is glish the replacement of close ?
    3.is there an expert mode like standard appliances ?
    4. Do you have any sample tcpdump syntaxes ?
    5. Is there an easy guide for 41k management ?
    6. Where do configurations like OSPF, routing, interface IP addresses etc ? What mode do you add these ? glish, glish ,or expert ?

    Many thanks in advance

    Cheers
    Bhav
    1. Just a "shell" where "all" commands entered through it will be distributed on your chassis (plural). By this I mean all the SGM's
    2. Not sure what you mean by "close"?
    3. Yes there is expert mode. However, when you enter expert mode it is on the blade (SGM) you are connected to.
    Any changes local to that blade, are just local, meaning they will not be distributed to other SGM's. There are some exclusions which files are automatically synced across the blades.
    There are also several commands you can invoke from "expert" on specific SGM that you can run across all other blades (g_ commands among other things)
    4. tcpdump syntax wise is pretty much same as regular Gaia. You can invoke tcpdump in global mode (g_tcpdump) which will run it across all blades or just tcpdump which will be on the current blade/SGM you are on
    5. Download the R76SP.XX Admin guide (well all PDF's associated with it) they give you pretty decent idea
    6. Depends...for VSX mode interface (logical), routing etc is done in smartdashboard just like on any other VSX. For non-vsx mode you do it in gclish (as there is no webinterface)

  3. #3
    Join Date
    2014-10-27
    Posts
    150
    Rep Power
    5

    Default Re: 41k admin

    Many thanks for clarifying all that Abusharif.

    In the second question, i meant clish, but have figured out that Clish is also for the local SGM and GCLISH for all SGMs.

    you can enter clish, and the command prompt says local, and when you enter gclish, the command prompt says global...

    Thanks again.

    cheers
    Bhav
    Bhav

Similar Threads

  1. Run-as Admin
    By msjouw in forum Identity Awareness Blade
    Replies: 3
    Last Post: 2015-04-28, 07:28
  2. Admin can't log in Voyager
    By panterarossa in forum Check Point IP Appliances and IPSO (Formerly Sold By Nokia)
    Replies: 2
    Last Post: 2010-03-05, 10:15
  3. admin password different to smartdashboard admin logon password
    By trackhappy in forum Check Point UTM-1 Appliances
    Replies: 4
    Last Post: 2009-02-19, 20:19
  4. cannot connect web admin ip:4433
    By kevindri in forum Mobile Access Blade (Formerly Connectra)
    Replies: 1
    Last Post: 2008-04-25, 17:11
  5. Admin access via VPN
    By BirdDog in forum SecureClient/SecuRemote
    Replies: 1
    Last Post: 2007-10-19, 19:40

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •