Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 

Show Package - Tool to visualize a R80 policy package over HTML pages

Jump to solution

Overview

Check Point ShowPolicyPackage tool visualizes the contents of a R80 security policy package (layers, rulebases, objects) over HTML pages.

Description

The tool allows the security policy as well as objects in the R80 objects database to be exported into a readable format. This exported information represents a snapshot of the database.

The tool generates a compressed file (.tar.gz) containing the following files:

• HTML files - The objects and rules presented as html files. The "index.html" acts as a starting point and
lists all the available items to display.

• JSON files - The objects and rules exported as multiple JSON files.

• Log file (e.g. show_package-yyyy-mm-dd_HH-MM-ss.elg) - A log file containing debug information.

In version 2.0.6, we've added 3 new flags, which indicates whether to calculate and show the Threat/Access/NAT policy as part of the package (note all three default to true):

  •          --show-access-policy (true|false)
  •          --show-threat-policy (true|false)
  •          --show-nat-policy (true|false)

Instructions

This tool is hosted on GitHub repository for public use, containing a stand-alone executable Java JAR file (plug & play) and accompanied source code:

https://github.com/CheckPointSW/ShowPolicyPackage

Please follow the usage instructions and examples on this site. It contains valuable information.

P.S. This tool is also delivered along with R80 management server releases. However, the GitHub repository contains the most updated code!

Source Code Availability

The source code is now public on GitHub repository as mentioned above.

Questions?

We welcome your feedback! Please create a new thread.

NOTICE: By using this sample code you agree to terms and conditions in this Terms and Conditions

64 Replies
Admin
Admin

It's a management side tool. All the answers are NO

0 Kudos
Reply
Admin
Admin

This pulls data from the management in a read-only fashion.
It does not talk to the firewalls at all nor will it impact them in any way.

0 Kudos
Reply
Explorer

Thanks Phone Boy.  What other tools would you suggest?

0 Kudos
Reply
Admin
Admin

Updated to version 2.0.6.
Also, thread is now locked, please create a new thread if you have questions related to this tool.

View solution in original post

0 Kudos
Reply