cancel
Showing results for 
Search instead for 
Did you mean: 
Post a Question
Baasanjargal_Ts
Baasanjargal_Ts inside General Management Topics 6 hours ago
views 28 2

How to recovery lost admin password

Is it possible to recovery lost admin password? If yes, how to do this. Checkpoint management server on R80.10.

SQL Select Statement to find objects by their color

Hi there, I am curious on whether it is possible to query objects by their attributes which are not part of their column? For instance, if I wanted to have a list of host objects that are all green, how could I accomplish this task?The following syntax does not work:select name from dleobjectderef_data where objectoverview like ‘GREEN‘; Thanks a lot in advance. Kind regards,Yasushi
Blason_R
Blason_R inside General Management Topics Thursday
views 95 6

Can we upgrade R80.20 M2 to r80.30?

Hi Folks,Wondering if an upgrade from R80.20M2 to R80.30 is possible? I tried upgrading mine and it failed twice. Second time CPD service was not coming up hence wondering if this path is first available?
checklock
checklock inside General Management Topics Thursday
views 135 8 1

Blocking list of domain names (FQDN) with R80.10

I want to block a list of domain names (example.com, google.com, customurl1.com, customurl2.com, customurl3.com, and so forth) using Checkpoint Firewall R80.10. This has proven challenging, though. I want to block the domain names from being resolved at the DNS level, even if it has no IP address assigned to it yet.The two options appear to be to use:Application Control & URL FilteringBlock domains using Domain ObjectsIs there a clear-cut solution to perform what I am trying to achieve? Documentation has left me feeling unclear. I want to know what the proper approach for doing this is.
Vladimir
Vladimir inside General Management Topics Thursday
views 6745 17 1

Policy Installation Stages

Can someone describe what exactly status "Finalizing Installation" referring to?
lucafabbri365
lucafabbri365 inside General Management Topics Thursday
views 45 3 1

ws_mux errors in /var/log/messages

Hello,we have R80.20 version in production: two physical Security Gateways nodes in cluster (Open Server) and on virtual Management.I noticed /var/log/messages contains these entries:May 21 09:10:29 2019 kernel: [fw4_4];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:10:29 2019 kernel: [fw4_4];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:10:30 2019 kernel: [fw4_3];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:10:30 2019 kernel: [fw4_3];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:10:30 2019 kernel: [fw4_3];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:11:00 2019 kernel: [fw4_2];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:11:00 2019 kernel: [fw4_2];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:11:00 2019 kernel: [fw4_2];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:11:21 2019 kernel: [fw4_1];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:11:21 2019 kernel: [fw4_1];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:11:21 2019 kernel: [fw4_1];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:11:39 2019 kernel: [fw4_3];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:11:39 2019 kernel: [fw4_3];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:11:39 2019 kernel: [fw4_3];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:11:48 2019 kernel: [fw4_3];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:11:48 2019 kernel: [fw4_3];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:11:48 2019 kernel: [fw4_3];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:12:11 2019 kernel: [fw4_2];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:12:11 2019 kernel: [fw4_2];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:12:11 2019 kernel: [fw4_2];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:13:28 2019 kernel: [fw4_0];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:13:28 2019 kernel: [fw4_0];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:13:28 2019 kernel: [fw4_0];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:13:33 2019 kernel: [fw4_1];CLUS-120200-1: Starting CUL mode because CPU usage (82%) on the local member increased above the configured threshold (80%).May 21 09:13:37 2019 kernel: [fw4_2];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:13:37 2019 kernel: [fw4_2];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:13:37 2019 kernel: [fw4_2];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:14:06 2019 kernel: [fw4_5];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:14:06 2019 kernel: [fw4_5];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:14:06 2019 kernel: [fw4_5];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.May 21 09:14:13 2019 kernel: [fw4_1];CLUS-120202-1: Stopping CUL mode after 10 sec (short CUL timeout), because no member reported CPU usage above the configured threshold (80%) during the last 10 sec.May 21 09:15:03 2019 kernel: [fw4_1];ws_mux_body_fastpath_av: ERROR: Failed to run AV filter. Destroying filter.May 21 09:15:03 2019 kernel: [fw4_1];ws_mux_perform_fastpath: ERROR: Fastpath handler failed.May 21 09:15:03 2019 kernel: [fw4_1];ws_mux_body_fastpath: ERROR: Failed to perform fastpath.Any suggestion ?Bye,Luca

Is there a service interruption when replacing an expired license with a new license?

HiI have two questions 1. Is there a service interruption when replacing an expired license with a new one? I would like to know what service are affected. 2. Is it possible to extend the term of the license to expire ? If possible, tell me how ... Thank you..

Checkpoint Hardening Benchmark

Hello, Is there any standard Benchmark followed for hardening of Checkpoint Devices ? Like its there for Cisco - CIS 4.1.0Thanks
Wolfgang
Wolfgang inside General Management Topics Wednesday
views 22 1

problem with CRL distribution point address

Dear Checkmates,we had a problem with the CRL distribution path after migration of a SMS.We moved SMS from old one to a new machine and changed the hostname and IP-address.This process was successful, but now we got some problems with VPN between gateways.The root cause of the VPN problems is a false path in the CRL distribution list point address.Looking in the details of the certificates, there is defined the old path "URL=http://old-SMS.domainname.com:18264/ICA_CRL0.crl"Every certificate for gateways will be issued with this path, pointing to the name of the old SMS.Is there a way to change this path without recreating the internal_CA?As a workaround we added the DNS name for the old SMS to the gateways hosts file and everything is fine, but we want to solve it basically.ThanksWolfgang
edd080
edd080 inside General Management Topics Wednesday
views 1490 9 4

Checkpoint endpoint VPN with Microsoft 2-Factor Authentication.

Good Day to all, we currently have our checkpoint endpoint vpn authentication which uses username, password and dynamicid which sends an sms to the user in order to complete the logon.We would like to change the dynamicid portion to Microsoft's two factor authentication. I am aware that a radius server is needed for this, however is there an sk or guide which can help us out on how checkpoint can be configured for this?Thanks in advance.
BorisS
BorisS inside General Management Topics Wednesday
views 43 2

Gateway version change in SmartConsole R80

Hi! I am doing an upgrade of R77.30 to R80.20, management server and 2 boxes in ClusterXL (OpenServer all of them). The upgrade itself went OK, but I am now facing a problem with changing the gateway version inside the SmartConsole: When I click the "Get" button the menu changes to the correct version (R80.20), but I am then unable to save the changes. I am presented with 2 error windows: Because of this it is impossible to apply the policy... I have researched the problem, but have not been able to find a solution or more information about the error. Any help would be appreciated!
Daniel_Westlund
Daniel_Westlund inside General Management Topics Wednesday
views 4755 5

Can R80.10 manage R80.20 gateways

Here is what the R80.20 Release Notes say:Maintaining Security Management Server VersionYou can maintain a R80.10 Security Management Server or Multi-Domain Security Management without upgrading and manage R80.20 Security Gateways:Support for such a setup will be provided at a later stage via the R80.10 Jumbo Hotfix Accumulator (sk116380)In this mode R80.20 new features are not available.The way I read this, first it says it is supported, but then it says it is not supported until a new jumbo comes out. I checked the jumbo SK for R80.10 and it has nothing about R80.20. My questions are: am I reading this right that this support is not available yet? And if so, does anyone know when that jumbo will be available so that we can manage R80.20 with R80.10?

SonicWall Migration

Has anyone had any experience in migrating SonicWall policies into Check Point? How do this as easily as possible, and lessons learned. I understand that SmartMove will not work. Thank you.
Biju_Nair
Biju_Nair inside General Management Topics Tuesday
views 1969 6

Restricting the Acces on Policy package

Hi,Is it possible to restrict the access on the policy package for respective administrators.version is R80.10For eg: I have a four different branches and all managed by single management and there are four separate policy packages for these branches.I do not wish that the branch1 admin to access or view the policy details of branch2.Even each admin should view their own policy, nat, IPSEC VPN, objects etc.... they should not view any details related to other branches.is this possible ?
Dmitriy_Chazov
Dmitriy_Chazov inside General Management Topics Tuesday
views 1911 5 3

(R80.10) No server has yet to be synchronized

Good day all.Faced the problem of incorrectly displaying the time. Time displayed in WebGUI and correspondingly in SmartConsole regularly runs ahead for a very long time.And if you go to the "Time" section and select "Set Time and Date" and then just click "OK" without changing anything in the settings, then the time is set again correctly. It turns out that the time is synchronized with the time source at the time of clicking the "OK" button but still shows the status of "No server has yet to be synchronized".The output of the ntpq command is as follows: