Check Point – Useful Files

Below are some of the various files and commands which you may find useful on a Check Point.

Smart Centre Server

$CPDIR/conf – Contains parts of the CPShared system
    * cp.license  – license of machine
    * sic_cert.p12 – SIC certificate
$FWDIR/lib – .def files which are used when the rulebase is complied into inspection code for Enforcement points.
$FWDIR/conf – the rule base and the rest of the security policy can be found here.
    * rulebases_5_0.fws – Contains rulebases and duplicate in *.w files
    * objects_5.0.C – Contains all the objects. objects.C is created when sent to the Enforcement Points
$FWDIR/conf/fwauth.* – User Database, main file being fwauth.NDB
$FWDIR/conf/masters – Defines the local log definition in Dashboard
$FWDIR/database/fwauth.* – User Datbase, main file being fwauth.NDB
$FWDIR/log – Logs

Enforcement Point

$CPDIR/conf – Contains parts of the CPShared system
    * cp.license  – license of machine
    * sic_cert.p12 – SIC certificate

$FWDIR/conf/discntd.if – Add interfaces you want to show as disconnected for ClusterXL.

Misc

/etc/sysconfig/netconf.C – Used to configure interface as down, this is useful for ClusterXL when interfaces have no link.

Rick Donato

Want to become an IT Security expert?

Here is our hand-picked selection of the best courses you can find online:
Internet Security Deep Dive course
Complete Cyber Security Course – Hackers Exposed
CompTIA Security+ (SY0-601) Certification Complete course
and our recommended certification practice exams:
AlphaPrep Practice Tests - Free Trial