This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Inbar_Moskovich
Employee
Employee
‎2016-11-28 08:38 AM

Show Package - Tool to visualize a R80 policy package over HTML pages

Jump to solution

Overview

Check Point ShowPolicyPackage tool visualizes the contents of a R80 security policy package (layers, rulebases, objects) over HTML pages.

Description

The tool allows the security policy as well as objects in the R80 objects database to be exported into a readable format. This exported information represents a snapshot of the database.

The tool generates a compressed file (.tar.gz) containing the following files:

• HTML files - The objects and rules presented as html files. The "index.html" acts as a starting point and
lists all the available items to display.

• JSON files - The objects and rules exported as multiple JSON files.

• Log file (e.g. show_package-yyyy-mm-dd_HH-MM-ss.elg) - A log file containing debug information.

In version 2.0.6, we've added 3 new flags, which indicates whether to calculate and show the Threat/Access/NAT policy as part of the package (note all three default to true):

  •          --show-access-policy (true|false)
  •          --show-threat-policy (true|false)
  •          --show-nat-policy (true|false)

Instructions

This tool is hosted on GitHub repository for public use, containing a stand-alone executable Java JAR file (plug & play) and accompanied source code:

https://github.com/CheckPointSW/ShowPolicyPackage

Please follow the usage instructions and examples on this site. It contains valuable information.

P.S. This tool is also delivered along with R80 management server releases. However, the GitHub repository contains the most updated code!

Source Code Availability

The source code is now public on GitHub repository as mentioned above.

Questions?

We welcome your feedback! Please create a new thread.

NOTICE: By using this sample code you agree to terms and conditions in this Terms and Conditions

Reply
64 Replies
_Val_
Admin
Admin
‎2020-05-27 12:36 AM
In response to MelD

Jump to solution

It's a management side tool. All the answers are NO

0 Kudos
Reply
PhoneBoy
Admin
Admin
‎2020-07-19 01:25 PM
In response to MelD

Jump to solution

This pulls data from the management in a read-only fashion.
It does not talk to the firewalls at all nor will it impact them in any way.

0 Kudos
Reply
PaulNacamuli
Explorer
‎2019-10-23 08:45 AM
In response to PhoneBoy

Jump to solution

Thanks Phone Boy.  What other tools would you suggest?

0 Kudos
Reply
PhoneBoy
Admin
Admin
‎2020-07-13 05:16 PM

Jump to solution

Updated to version 2.0.6.
Also, thread is now locked, please create a new thread if you have questions related to this tool.

View solution in original post

0 Kudos
Reply