FWM Firewall Management e.g. the SmartCenter ICA Internal CA, normally SmartCenter SIC Secure Internal Communication SCS Smart Centre Server VTI Virtual Tunnel Interface (VPNs) MDG Multi Domain GUI (Provider-1) MDS Multi Domain Server, Manager or Container (Provider-1) CMA Customer Management Add-on (Provider-1) – “Smart Center Server” MLM Multi Customer Log Module (Provider-1) CLM Customer Log … Read more
Solaris Prevent DoS /usr/sbin/ndd -set /dev/tcp tcp_conn_req_max_q 1024/usr/sbin/ndd -set /dev/tcp tcp_conn_req_max_q0 2048/usr/sbin/ndd -set /dev/tcp tcp_time_wait_interval 60000/usr/sbin/ndd -set /dev/ip ip_respond_to_echo_broadcast 0/usr/sbin/ndd -set /dev/ip ip_forward_directed_broadcasts 0 Disable redirects /usr/sbin/ndd -set /dev/ip ip_ignore_redirect 1/usr/sbin/ndd -set /dev/ip ip_send_redirects 0 Disable Source routing /usr/sbin/ndd -set /dev/ip ip_forward_src_routed 0 Linux Kernal 2.2 Prevent DoS /sbin/sysctl -w net.ipv4.tcp_max_syn_backlog=1280/sbin/sysctl -w net.ipv4.vs.timeout_timewait=60/sbin/sysctl -w net.ipv4.icmp_echo_ignore_broadcasts=1 … Read more
DiffServ (Differentiated Services)A layer 3 protocol, defined by the IEFT. Used for adding QoS to IP networks. WFRED(Weighted Flow Random Early Drop)A process for managing packet buffers, by dropping packets during periods of network congestion.This is transparent to the user and requires no configuration. IQ (Intelligent Queuing Engine)Using information from the Check Point INSPECT engine … Read more
Check Point commands generally come under cp (general), fw (firewall), and fwm (management). Check Point Gaia commands can be found here. CP, FW & FWM cphaprob stat List cluster status cphaprob -a if List status of interfaces cphaprob syncstat shows the sync status cphaprob list Shows a status in list form cphastart/stop Stops clustering … Read more
General tcp/257 FireWall-1 log transfertcp/18208 CPRID (SmartUpdate)tcp/18190 SmartDashboard to SCStcp/18191 SCS to FW-1 gateway for policy installtcp/18192 SCS monitoring of firewalls (SmartView Status) SIC Ports tcp/18209 NGX Gateways <> ICAs (status, issue, or revoke).tcp/18210 Pulls Certificates from an ICA.tcp/18211 Used by the cpd daemon (on the gateway) to receive Certificates. Authentication tcp/259 Client Authentication (Telnet)tcp/900 … Read more
IP forwarding is the process of forwarding packets from one network to another. Below shows the necessary steps to enable/disable IP forwarding. Solaris Enable IP Forwarding ndd -set /dev/ip ip_forwarding 1 Disable IP forwarding ndd -set /dev/ip ip_forwarding 0 Check the status ndd -get /dev/ip ip_forwarding Linux Kernel If the output is 1 IP forwarding … Read more
O – On processor — the process is executing on the CPU in either user or system mode. R – Runnable — the process is on a run queue and is running or runnable. S – Sleeping — the process is waiting for a I/O event to complete. Z – zombie — process, terminated but … Read more
The Ultimate Linux Command Reference Guide Note: This was produced with Ubuntu. Tip: Theres quite a few in this list so I suggest that if your looking for something spefic use the search function (ctrl+F)…. a2p – Awk to Perl translatoraconnect – ALSA sequencer connection manageracpi – Shows battery status informationacpi_listen – ACPI event listeneraddr2line … Read more
In this example we will configure interface qfe1 with the an IP of 192.168.1.1 255.255.255.0 and set the speed to 100 full duplex. Bring up the Interface To bring up and plumb the interface, we first need to type the following, (change the IP to yours) ifconfig qfe1 plumbifconfig qfe1 192.168.1.1 netmask 255.255.255.0 up Update … Read more
Heres a few PIX commands that may come in useful. Performance / Usage sh mem Shows memory used and amount free sh cpu Shows % of CPU used sh perfmon Show the performance of various connections sh traffic Show the traffic stats sh resource usage system Shows the system utilization sh service-policy Shows the amount … Read more