https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/196143#M36592 <P>What is the use here ? To look inside, you need a SSH connection to the TE GW. Otherwise, these commands are useless, especially the first one which does enable VNC access 8)</img></P> Wed, 25 Oct 2023 13:30:05 GMT G_W_Albrecht 2023-10-25T13:30:05Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/40079#M13815 <HTML><HEAD></HEAD><BODY><P>When i attended the CP Advanced Troubleshooting for Threat Prevention training i did learn a couple of details that at the time were not yet documented. The situation has changed, but still there is material missing from documentation.</P><P></P><P>As sometimes only one special VM seems not able to finish emulation, it may be valuable to have a look at the emulation process in the VM itself. This can easily be accomplished, as f<SPAN style="font-size: 11.0pt;">or debugging issues with Virtual Machines it is possible to connect via VNC to the machines while running. First we have to enable VNC access with:</SPAN></P><PRE># tecli d e e</PRE><P><SPAN style="font-size: 11.0pt;">You then can see the VNC port of the relevant machine in the synopsis view</SPAN>:</P><PRE># tecli s e v s</PRE><P><IMG __jive_id="66133" alt="" class="image-1 jive-image j-img-original" src="https://community.checkpoint.com/legacyfs/online/checkpoint/66133_TE_VNC.png" /></P><P></P><P>And now you can connect to all (running) VMs&nbsp;<IMG src="https://community.checkpoint.com/legacyfs/online/checkpoint/emoticons/wink.png" /> ! This is not something you would do on a regular basis, as mostly TE does not take long, but as a troubleshooting procedure it does coma very handy...</P></BODY></HTML> Mon, 28 May 2018 10:08:59 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/40079#M13815 G_W_Albrecht 2018-05-28T10:08:59Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/40080#M13816 <HTML><HEAD></HEAD><BODY><P>Be sure that the port number you connect to is <STRONG>590x</STRONG>.</P><P>Where x is the number shown in&nbsp;tecli s e v s.</P><P>Also keep in mind to open relevant firewall ports in between.</P><P></P><P>So from the example above you would connect to the second running VM with TightVNC to:</P><P>192.168.200.10:5901</P><P></P><P>Be sure to use TightVNC.</P><P>Also remember that clicking/typing or doing any other action inside the VM will count as "behaviour". So you might alter the result by accidently clicking things <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P></P><P>Regards Thomas</P></BODY></HTML> Mon, 18 Jun 2018 12:10:57 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/40080#M13816 Thomas_Werner 2018-06-18T12:10:57Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/196132#M36591 <P>Hi all,</P><P>&nbsp;</P><P>is there a possibility to "connect" the "tecli d e e" or "tecli s s e" commands with grafana so we can show it virtualy?<BR /><BR />Any lead would be great!<BR /><BR />KR<BR />Rok</P> Wed, 25 Oct 2023 12:52:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/196132#M36591 Mlinko 2023-10-25T12:52:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/196143#M36592 <P>What is the use here ? To look inside, you need a SSH connection to the TE GW. Otherwise, these commands are useless, especially the first one which does enable VNC access 8)</img></P> Wed, 25 Oct 2023 13:30:05 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-Emulation-VM-Access/m-p/196143#M36592 G_W_Albrecht 2023-10-25T13:30:05Z