https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159013#M27791 <P>Had you deployed JHF 66 on your other installs previously?<BR />In any case, it's possible the OVF we supply includes a JHF in it that has the incompatibilities listed when you apply JHF 66.</P> Fri, 07 Oct 2022 16:24:48 GMT PhoneBoy 2022-10-07T16:24:48Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/158999#M27788 <P>Hi</P><P>So, we have re-installed a lot of VmWare based clusters to get to R81.10.<BR />Everything has been going very&nbsp; as planned, and we have used the VmWare files (OVF) to do the installations:</P><DIV class="">&nbsp;</DIV><P><FONT face="courier new,courier">Mode&nbsp;&nbsp; LastWriteTime&nbsp;&nbsp;&nbsp;&nbsp; Length&nbsp;&nbsp;&nbsp;&nbsp; Name</FONT><BR /><FONT face="courier new,courier">---- -------------&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ------&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ----</FONT><BR /><FONT face="courier new,courier">-a---- 25.07.2021 15:59 3542973440 Check_Point_R81.10_SG_R81.10-disk1.vmdk</FONT><BR /><FONT face="courier new,courier">-a---- 25.07.2021 15:59 2441&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Check_Point_R81.10_SG_R81.10.cert</FONT><BR /><FONT face="courier new,courier">-a---- 25.07.2021 15:59 221&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Check_Point_R81.10_SG_R81.10.mf</FONT><BR /><FONT face="courier new,courier">-a---- 25.07.2021 15:59 17327&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Check_Point_R81.10_SG_R81.10.ovf</FONT></P><P>Yesterday we deployed a new firewall, using the very same files as earlier, but this time when we run CPUSE it shows this:</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="1.png" style="width: 999px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/18060i8E70CBBB4646A58E/image-size/large?v=v2&amp;px=999" role="button" title="1.png" alt="1.png" /></span></P><P>I have never seen this reference to BLINK image before, and certainly not as the only option to patch.</P><P>I got the T66 patch from our partner, uploaded it (using Import package) - but the system would not accept it (Check_Point_R81_10_JUMBO_HF_MAIN_Bundle_T66_FULL.tar).</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="2.png" style="width: 892px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/18061i7438E1A1013E37C3/image-size/large?v=v2&amp;px=999" role="button" title="2.png" alt="2.png" /></span></P><P>&nbsp;</P><P>Then we got the ongoing T75 from our vendor (Check_Point_R81_10_JUMBO_HF_MAIN_Bundle_T75_FULL.tar), and that could be imported to the gateway - and apparently we can install it.</P><P>The firewall cluster is working today, but I'm a little bit reluctant to apply the patch on a Friday afternoon.</P><P>But, can somebody explain what might have happened here?<BR />It seems to me that we have gotten completely different behavior/firewall gateway - using the same set of installation files.</P><P>/Kenneth</P> Fri, 07 Oct 2022 13:22:21 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/158999#M27788 Kenneth_Greger1 2022-10-07T13:22:21Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159009#M27790 <P>There was an issue identified with upgrades&nbsp; between certain jumbo takes which we subsequently blocked from being performed to prevent damage.</P> <P>For more information please see&nbsp;<SPAN>sk179799.</SPAN></P> <P>&nbsp;</P> Fri, 07 Oct 2022 15:09:24 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159009#M27790 Chris_Atkinson 2022-10-07T15:09:24Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159013#M27791 <P>Had you deployed JHF 66 on your other installs previously?<BR />In any case, it's possible the OVF we supply includes a JHF in it that has the incompatibilities listed when you apply JHF 66.</P> Fri, 07 Oct 2022 16:24:48 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159013#M27791 PhoneBoy 2022-10-07T16:24:48Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159028#M27794 <P>Hi</P><P>We have deployed Take 66 on 44 clusters in our network - without any problems.<BR />The Take 66 have always been available via CPUSE when we have deployed the R81.10 from the same OVF files.<BR />I think our last successful deployment were 3-4 weeks ago.</P><P>&nbsp;</P> Fri, 07 Oct 2022 18:12:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159028#M27794 Kenneth_Greger1 2022-10-07T18:12:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159029#M27795 <P>I agree that this is very interesting, but as I said the most confusing part is that we have used the very same OVF files to install Gaia Security Gateway R81.10, but now we seem to be running some kind of Blink image on our Vmware Security Gateways.</P><P>The OVF files are from 25. July 2021</P><P>I'm confused.</P> Fri, 07 Oct 2022 18:17:40 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159029#M27795 Kenneth_Greger1 2022-10-07T18:17:40Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159039#M27801 <P>I assume in the intervening time that we identified this incompatibility and block attempts to upgrade to that version.<BR />Likewise, I assume we are now correctly identifying the OVF file as a Blink image since it clearly includes a JHF.</P> Fri, 07 Oct 2022 19:07:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159039#M27801 PhoneBoy 2022-10-07T19:07:42Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159057#M27804 <P>Thanks - but what I don't understand is why the very same OVF installation (files) is suddenly identified as a Blink installation.</P><P>As I have stated, the files are over 1 year old, and we have used them many times to install Gaia Security Gateways.</P><P>Is there is a change in CPUSE that now identifies the installed gateway as a Blink installed gateway?</P> Sat, 08 Oct 2022 08:22:50 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159057#M27804 Kenneth_Greger1 2022-10-08T08:22:50Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159060#M27807 <P><SPAN>Understand what your saying given the release dates associated with T55 compared with your image.</SPAN></P> <P>T55: "Released on 1 May 2022 and moved to General Availability on 1 June 2022."</P> <P>Please query it with TAC and if I receive any relevant feedback myself I will share it here for you.</P> <P>It may simply have been the case that it was easiest to take the broad approach than have a risk of edge cases leaving customers with badly broken gateways but that is only a guess on my part.</P> Sat, 08 Oct 2022 11:20:23 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159060#M27807 Chris_Atkinson 2022-10-08T11:20:23Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159176#M27833 <P>The OVF hasn't changed, but the Deployment Agent needed to deploy any hotfixes or version upgrades surely has.<BR />I presume it now (correctly) recognizes you've effectively deployed a blink image in OVF form.</P> Mon, 10 Oct 2022 18:15:08 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/VmWare-Blink-image-R81-10-mix-up/m-p/159176#M27833 PhoneBoy 2022-10-10T18:15:08Z