Skip navigation
All Places > About CheckMates > Blog

Here's this weeks installment of "This Week in CheckMates."

Past and future posts will be available here: About CheckMates 

Also, if you're not sure what CheckMates is, check out this short video!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

 

SNORT Rules and CheckPoint R77.30 IPS

The question was about having a particular signature trigger a block of the specific IP address for all traffic. This can be done, but it does require building a script that parses the log entry and executes fw samp to block the connection.

 

Installing take 10 of R80.10 blew away the gateway part of a single gateway setup. Is that a known problem?

It appears to be a known issue that can happen under a rare combination of circumstances. Read the thread for a workaround to the issue. A fix for the issue will be coming in a future R80.10 jumbo hotfix.

 

Issue when migrating R77.30 to R80.10 Management Server

Look for words like "error","fail", and "unable" in the following file: $FWDIR/log/cpm_for_cpdb-YYYY-MM-DD-HH-MM-SS.ELG. You may need to engage with the TAC depending on what this turns up for you.

 

My Top 3 Check Point CLI commands

Chances are, if you've been using Check Point products for a while, you've had to do something on a command line. We've shared some of our favorite (and even obscure) commands with you here. This has quickly become one of our most active threads, chime in with your favorites!

 

CLI API Example for exporting, importing, and deleting different objects using CSV files (v 00.23.00 and later)

This is a great set of scripts for migrating objects in and out of a Check Point R80+ management station using CSV files created by one of our SEs, Eric Beasley. Have you used them yet?

 

Did You Know...

 

You can control how often you receive email from the community?

We created a short video to explain how, which can also be viewed side-by-side with the captions here: Set Email Notification Prefs in CheckMates | fleeq.io 

 

 

 

Feedback

You are of course welcome to respond to this post if you have questions! If you want to send something privately, you can send an email to checkmates@checkpoint.com and we'll respond promptly.

This is the first of a regular series of posts highlighting activity in the CheckMates community during the past week.

I will also provide a tip that will help you make the best use of CheckMates!

Future posts (planned to be posted on Fridays) will be available here: https://community.checkpoint.com/blog/about-checkmates 

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

NotPetya: Under the Microscope Presentation and Recording 

This week, we did our first in a series of "CheckMates Live" webcast. Shortly after the webcast, we made the recording and slides available. However, unlike most content on CheckMates, this content requires you to be signed in to view it.

 

What Version of Check Point Management are You Using? 

This is a new poll I created to see what versions of Check Point Management people are using and why. Everyone has their reasons for upgrading (or not). Vote and contribute to the discussion!

 

CPLogToSyslog Utility Now GA 

This tool, which had been available privately for a number of months, was recently released publicly. There was a question about whether or not BSD logging format was supported. Not by CPLogToSyslog, but via a process described by the following SecureKnowledge article: How to Configure R77.30 Security Gateway on Gaia OS to send Firewall logs to an external Syslog server

 

Documents for Centrally Managed Remote Access VPN with Embedded Gaia

There is no specific documentation on this topic because Embedded Gaia platforms are no different than regular Security Gateways when it comes to setting up remote access VPN.

 

Multiple ISP Redundancy: Will it be Supported in R80?  

This was an older thread that was brought to the surface recently when a customer wondered how to use the ISP Redundancy feature with more than 2 ISPs. The answer in this particular case will likely involve dynamic routing.

 

Did You Know...

You can use the Jive Daily app to access CheckMates from your mobile device?

While the CheckMates Community site is fairly mobile-friendly, some prefer a native mobile app.

You can download the Jive Daily app for iOS or Android as follows:

When prompted, enter community.checkpoint.com as the community and sign in with your User Center credentials.

 

Feedback

You are of course welcome to respond to this post if you have questions! If you want to send something privately, you can send an email to checkmates@checkpoint.com and we'll respond promptly.

Filter Blog

By date: