CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 2 of 2

Thread: Firewall Rule Analysis including Source IPs

  1. #1
    Join Date
    2014-11-23
    Posts
    33
    Rep Power
    0

    Default Firewall Rule Analysis including Source IPs

    I am running R80.20 on my management server. I have been asked to produce a report showing all the firewall rules allowing access to a specific host. This is easy enough but I have also been asked to include the IP addresses of the source hosts / source networks. Does anyone know how I could do this without a lot of time consuming manual work? I know I can export the rule base in csv format but this doesnít show me the IP addresses of the hosts, only their names. Likewise their is a built in tool which will give me a web page showing the rules, however you canít see the IP addresses of the hosts without clicking on each one, also their is no way of editing a web page to show only a subset of rules. I could try a product like Algosec but I donít think even this would produce a report which included the IP addresses of each hosts / network. Does anyone have any ideas? Thanks

  2. #2
    Join Date
    2007-03-30
    Location
    DFW, TX
    Posts
    257
    Rep Power
    12

    Default Re: Firewall Rule Analysis including Source IPs

    You should be able to use the API to do this. Use the API to dump the rules, use client-side scripting to filter down to just the rules you care about, use the rules to build a list of the objects involved, then use the API to dump the details of those objects.
    Zimmie

Similar Threads

  1. Firewall management source IP address
    By tatapoum in forum Firewall Blade
    Replies: 1
    Last Post: 2017-01-10, 16:29
  2. Replies: 9
    Last Post: 2015-12-21, 14:16
  3. Replies: 2
    Last Post: 2015-11-25, 14:31
  4. Rule Base analysis - UNUSED rules
    By mhernandez in forum Eventia Analyzer/Reporter/SmartView Reporter
    Replies: 3
    Last Post: 2010-10-25, 16:16
  5. Standard rule base analysis Report
    By jlobl in forum Eventia Analyzer/Reporter/SmartView Reporter
    Replies: 1
    Last Post: 2008-06-11, 10:55

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •