Browsing All Posts filed under »Checkpoint«

Migrate one CMA from a Provider-1 R70.40 to another Provider-1

November 8, 2011


I wanted to do some tests with only one CMA of our live Provider1 in Lab, that is why I tried to migrate just one piece. I could do a complete mds backup and restore in Lab, but if the provider has a lot of CMAs then it requires in Lab the same Hardware or […]

What is this, a cheese? the checkpoint ports

November 7, 2011


I have not seen such a Server with soo much opened ports like a Provider1. The communications on those ports are encrypted, but they are opened to everybody on the Lan of that server, so it should be strongly adviced to plan for a Checkpoint Firewall Management a separated Management LAN. The processes are documentet […]

fw monitor – the missing table

August 22, 2011


For the fw monitor Checkpoint has wrote a dokumentation with the name fw_monitor_rev1_01.pdf. This document is old and – I guess – was never updated with the missing features that can be used to filter with fw monitor. There is a table that I got actually from the site: I just copy it here […]

Checkpoint firewall debugging basics

August 9, 2011


To debug a checkpoint firewall is not a big deal, but to understand the output is in many cases imposible for those NOT working at Checkpoint. I write here not about the exact analysation with debugging, just a ‘how to collect the required informations’ that may speed up the troubleshooting. 1. Reset the debugs to […]

Useful Checkpoint commands

November 25, 2010


Checkpoint is not a cli based firewall, the cli is generally (in the daily life) not used. What the admin wants, can do through the GUI. For troubleshooting purposes or just query something there are some useful commands. In this list I tried to collect what I already had to use (or wanted to try […]

IPSO upgrade on IP Appliances

November 25, 2010


On Nokia Firewall you have to install to things: – IPSO image – Checkpoint Firewall package The first one is the operating system, the second one is the firewall software. If you want to upgrade your operating system then you do not have to reinstall the Firewall software as well. Image upgrade is possible through […]

Checkpoint IP Appliance install only with CLI

November 13, 2010


I always look for the fastest way – CLI – if I have to configure something. That’s why I decided to try an Nokia Firewall install without any Browser and Java, those things makes the day really slooow. On IPSO it is possible to configure fast everything on CLI, on SecurePlatform it was earlier not […]

Checkpoint IPSO Password reset

November 12, 2010


We got a new Nokia Firewall I tried to login and the default username ‘admin’ with the default password ‘Password’ did not work. What comes in this case: Password Recovery. Checkpoint has already imported the Solution from Nokia Support, this is: sk41239 – How do I change the admin password when it is lost or […]