Rick Donato 
Below is a bash/sh script to log the resouces of a R55/R65 Check Point firewall. The following resources are recorded, Free Memory CPU Usage Concurrent Connections Peak Connections Time Date The script will build a .csv file which can then be opened using excel, and the required data (columns) can be selected and converted into … Read more
Below are the 2 types of syslog messages. This can be useful to quickly determine on a NSM whether the logs are coming from the NSM or directly from the Firewall via syslog. Syslog from the Firewall Mar 18 17:56:52 [FW IP] [FW NAME]: NetScreen device_id=netscreen2 [Root]system-notification-00257(traffic): start_time=”2009-03-18 16:07:06″ duration=0 policy_id=320001 service=msrpc Endpoint Mapper(tcp) proto=6 … Read more
Below are the steps required to migrate a Provider-1 CMA to a Smart Centre Server. This tutorial was based on exporting and migrating from R55 to R65 and will involve the following steps, 1. Export the CMA on the Provider-1 2. Import the CMA into Smart Centre 3. Export and detach license 4. Update the Smart Centre Object … Read more
Issue When trying to run an upgrade_export from a Provider-1 you get the following error, Failed to export. Please close all Check Point clients. If the failure to export persists, stop all Check Point Services and run the upgrade_export command again. Solution Note: The upgrade_export command is run from the $FWDIR/bin/upgrade_tools directory of the CMA. … Read more
Samba mount -t cifs //[Windows IP]/[Share] /root/folder/ -o user=[username],pass=[password],nocase BSD mount -t cd9660 /dev/`mdconfig -a -t vnode -f discimg.iso` /cdrom Solaris mkdir -p /cdrom/unnamed_cdrom ; mount -F hsfs -o ro `ls -al /dev/sr* | awk ‘{print “/dev/” $1 1}’` /cdrom/unnamed_cdrom
There are 3 areas with NSM. DevSvr, GuiSvr and HaSvr. The following files and paths are based on NSM 2008. Below shows the main path structure (Redhat) and what each Server (Svr) does. /usr/netscreen/DevSvr/ – DevSvr – Logging and the NSM database/usr/netscreen/GuiSvr/ – GuiSvr – NSM GUI /usr/netscreen/HaSvr/ – HaSvr – Backups and High Availability. … Read more
Solaris is a UNIX based (BSD derivative) operating system. Nativity based on Sun (SPARC) hardware, Solaris allows for high performance due to its lightweight and minimal design. Basic Configuration /etc/inittab – sets run-level (default 3, runs scripts under S, 2 and 3) /etc/init.d/ – boot scripts /etc/rc?.d/S* – links to scripts to be run on … Read more
When trying to create a Read only account (Priv Level 5), and logging into the ASDM using your readonly account you receive the following error, you do not have sufficient privileges to execute commands required to load asdm Solution This is due to the privilege levels not being configured correctly. The following will give you … Read more
Issue Check Point have now replaced the “Support Key Exchange for subnets” with “VPN Tunnel Sharing” for Traditional mode VPNs. The problem this causes is when you upgrade to R65 is that the “Support Key Exchange for subnets” setting isn’t transferred. With all Traditional VPN`s being set to “One VPN tunnel per subnet pair” as … Read more