{"id":93,"date":"2008-09-08T11:35:00","date_gmt":"2008-09-08T11:35:00","guid":{"rendered":"https:\/\/fir3netwp.gmsrrpobkbd.com\/2008\/09\/08\/checkpoint-ive-pushed-the-wrong-policy\/"},"modified":"2023-01-15T22:31:10","modified_gmt":"2023-01-15T22:31:10","slug":"checkpoint-ive-pushed-the-wrong-policy","status":"publish","type":"post","link":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html","title":{"rendered":"Check Point – Ive pushed the Wrong Policy"},"content":{"rendered":"

Issue<\/strong><\/h3>\n

There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is allowed through the firewall.<\/p>\n

Resolution<\/strong><\/h3>\n

These steps will show you how to remove and reinstall the correct policy via the CLI on the manager (SCS),<\/p>\n

1. First of all we look at the policy history, so we can find out the name of the policy we need to reinstall.<\/p>\n

fw stat -l [firewall ip]<\/p>\n

\u00a0 2. Next we remove the security policy from the firewall.<\/p>\n

fwm unload [fwname]<\/p>\n

\u00a0 3. Finally we install the correct policy back onto the Firewall. Note<\/em> :<\/strong> Note how we add the .W to the policy name as it has yet to be be compiled into a .cf file (which is what is installed onto the Firewall\/Gateway)<\/p>\n

fwm load [PolicyName].W [fwname]<\/p>\n

Additional Resources<\/strong><\/h3>\n

Additonal Check Point commands can be found here <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is allowed through the firewall. Resolution These steps will show you how to remove and reinstall the correct policy via the CLI on the manager (SCS), 1. First of … Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[17],"tags":[],"yoast_head":"\nCheck Point - Ive pushed the Wrong Policy - Fir3net<\/title>\n<meta name=\"description\" content=\"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Check Point - Ive pushed the Wrong Policy - Fir3net\" \/>\n<meta property=\"og:description\" content=\"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\" \/>\n<meta property=\"og:site_name\" content=\"Fir3net\" \/>\n<meta property=\"article:published_time\" content=\"2008-09-08T11:35:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-01-15T22:31:10+00:00\" \/>\n<meta name=\"author\" content=\"Rick Donato\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rick Donato\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\"},\"author\":{\"name\":\"Rick Donato\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\"},\"headline\":\"Check Point – Ive pushed the Wrong Policy\",\"datePublished\":\"2008-09-08T11:35:00+00:00\",\"dateModified\":\"2023-01-15T22:31:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\"},\"wordCount\":157,\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"articleSection\":[\"Check Point Firewalls\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\",\"url\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\",\"name\":\"Check Point - Ive pushed the Wrong Policy - Fir3net\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/#website\"},\"datePublished\":\"2008-09-08T11:35:00+00:00\",\"dateModified\":\"2023-01-15T22:31:10+00:00\",\"description\":\"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is\",\"breadcrumb\":{\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.fir3net.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security\",\"item\":\"https:\/\/www.fir3net.com\/security\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Firewalls\",\"item\":\"https:\/\/www.fir3net.com\/security\/firewalls\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Check Point Firewalls\",\"item\":\"https:\/\/www.fir3net.com\/security\/firewalls\/check-point\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"Check Point – Ive pushed the Wrong Policy\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.fir3net.com\/#website\",\"url\":\"https:\/\/www.fir3net.com\/\",\"name\":\"Fir3net\",\"description\":\"Keeping you in the know\",\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.fir3net.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.fir3net.com\/#organization\",\"name\":\"Fir3net\",\"url\":\"https:\/\/www.fir3net.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"contentUrl\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"width\":390,\"height\":88,\"caption\":\"Fir3net\"},\"image\":{\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\",\"name\":\"Rick Donato\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"caption\":\"Rick Donato\"},\"description\":\"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders.\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Check Point - Ive pushed the Wrong Policy - Fir3net","description":"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html","og_locale":"en_US","og_type":"article","og_title":"Check Point - Ive pushed the Wrong Policy - Fir3net","og_description":"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is","og_url":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html","og_site_name":"Fir3net","article_published_time":"2008-09-08T11:35:00+00:00","article_modified_time":"2023-01-15T22:31:10+00:00","author":"Rick Donato","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Rick Donato","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#article","isPartOf":{"@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html"},"author":{"name":"Rick Donato","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037"},"headline":"Check Point – Ive pushed the Wrong Policy","datePublished":"2008-09-08T11:35:00+00:00","dateModified":"2023-01-15T22:31:10+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html"},"wordCount":157,"publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"articleSection":["Check Point Firewalls"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html","url":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html","name":"Check Point - Ive pushed the Wrong Policy - Fir3net","isPartOf":{"@id":"https:\/\/www.fir3net.com\/#website"},"datePublished":"2008-09-08T11:35:00+00:00","dateModified":"2023-01-15T22:31:10+00:00","description":"Issue There may be a time where you install the wrong policy onto a Check Point Firewall. This can block your connections, and screw which traffic is","breadcrumb":{"@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fir3net.com\/Firewalls\/Check-Point\/checkpoint-ive-pushed-the-wrong-policy.html#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fir3net.com\/"},{"@type":"ListItem","position":2,"name":"Security","item":"https:\/\/www.fir3net.com\/security"},{"@type":"ListItem","position":3,"name":"Firewalls","item":"https:\/\/www.fir3net.com\/security\/firewalls"},{"@type":"ListItem","position":4,"name":"Check Point Firewalls","item":"https:\/\/www.fir3net.com\/security\/firewalls\/check-point"},{"@type":"ListItem","position":5,"name":"Check Point – Ive pushed the Wrong Policy"}]},{"@type":"WebSite","@id":"https:\/\/www.fir3net.com\/#website","url":"https:\/\/www.fir3net.com\/","name":"Fir3net","description":"Keeping you in the know","publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fir3net.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.fir3net.com\/#organization","name":"Fir3net","url":"https:\/\/www.fir3net.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","contentUrl":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","width":390,"height":88,"caption":"Fir3net"},"image":{"@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037","name":"Rick Donato","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","caption":"Rick Donato"},"description":"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders."}]}},"_links":{"self":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/93"}],"collection":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/comments?post=93"}],"version-history":[{"count":1,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/93\/revisions"}],"predecessor-version":[{"id":3531,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/93\/revisions\/3531"}],"wp:attachment":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/media?parent=93"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/categories?post=93"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/tags?post=93"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}