I was checking a customer's management configuration today and noticed that the "vpn-settings" key was missing in the output. I compared to another customer's management server, which worked correctly. Both are R80.40 JHF 139 and standalone SMS.
Here's the JSON keys output, and the value of the "vpn" key (both are true):
[Expert@moon:0]# cpinfo -y FW1 |grep Take
This is Check Point CPinfo Build 914000219 for GAIA
HOTFIX_R80_40_JUMBO_HF_MAIN Take: 139
[Expert@moon:0]# mgmt_cli -r true -f json show simple-gateway name earth details-level full |jq -r 'keys,.vpn'
[
"anti-bot",
"anti-virus",
"application-control",
"color",
"comments",
"content-awareness",
"domain",
"dynamic-ip",
"firewall",
"firewall-settings",
"hardware",
"icon",
"interfaces",
"ips",
"ipv4-address",
"ipv6-address",
"logs-settings",
"meta-info",
"name",
"os-name",
"save-logs-locally",
"send-alerts-to-server",
"send-logs-to-backup-server",
"send-logs-to-server",
"sic-name",
"sic-state",
"tags",
"threat-emulation",
"threat-extraction",
"type",
"uid",
"url-filtering",
"version",
"vpn"
]
true
[Expert@mercury:0]# cpinfo -y FW1 |grep Take
This is Check Point CPinfo Build 914000219 for GAIA
HOTFIX_R80_40_JUMBO_HF_MAIN Take: 139
[Expert@mercury:0]# mgmt_cli -f json -r true show simple-gateway name officefw details-level full |jq -r 'keys,.vpn'
[
"anti-bot",
"anti-virus",
"application-control",
"color",
"comments",
"content-awareness",
"domain",
"dynamic-ip",
"firewall",
"firewall-settings",
"groups",
"hardware",
"icon",
"interfaces",
"ips",
"ipv4-address",
"logs-settings",
"meta-info",
"name",
"os-name",
"platform-portal-settings",
"read-only",
"save-logs-locally",
"send-alerts-to-server",
"send-logs-to-backup-server",
"send-logs-to-server",
"sic-name",
"sic-state",
"tags",
"threat-emulation",
"threat-extraction",
"type",
"uid",
"url-filtering",
"usercheck-portal-settings",
"version",
"vpn",
"vpn-settings"
]
true
Both of these gateways have site-to-site as well as Remote Access VPN communities configured and functional. Any ideas? 🙂
Thanks!