This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Duane_Toler
MVP Silver
MVP Silver
a week ago

CPINFO error uploading files?

Trying to upload files to a SR with 'cpinfo' but got HTTPS error (401 unauthorized) and SFTP error (connection failed).  I tried on 2 different hosts but got the same error, one host is a perimeter firewall with direct Internet connection.

 

# cpinfo -x -n -s 6-0000000000 -f cplic.192.0.2.1.txt

This is Check Point CPinfo Build 914000250 for GAIA

		Uploading...

Initiating connection to User Center: Done.
Generating list of files to be uploaded: Done.
Sending list of files to server: Done.
Uploading cplic.192.0.2.1.txt
<html><head><title>Unauthorized</title></head><body><H1>HTTP/1.1 401 Unauthorized</H1></body></html>
Uploading file cplic.192.0.2.1.txt failed
Couldn't upload using HTTPS, trying SFTP
Uploading cplic.192.0.2.1.txt: Error: SFTP connection to mercury.ts.checkpoint.com failed (Please check if port 22 is open)
Error: Failed to upload file cplic.192.0.2.1.txt
Upload failed

 

SSH to `mercury` is open, too:

# telnet mercury.ts.checkpoint.com 22
Trying 216.228.148.22...
Connected to mercury.ts.checkpoint.com.
Escape character is '^]'.
SSH-2.0-8.1.0.0_openssh GlobalSCAPE
^]quit

telnet> quit
Connection closed.

 

Anyone else seeing something similar, or is this another "it's just me" gremlin?

 

--
Ansible for Check Point APIs series: https://www.youtube.com/@EdgeCaseScenario and Substack
0 Kudos
3 Replies
Lesley
MVP Gold
MVP Gold
Wednesday

I cannot find the post. But what I recall is that this does not work because due security / (audit?) purposes they don't allow direct cpinfo uploads. Instead the IBM tool or upload in the SR itself. 

-------
Please press "Accept as Solution" if my post solved it 🙂
0 Kudos
Martijn
Advisor
Advisor
Thursday

Hi,

I always ask the TAC engineer to create an SFTP upload account to send information.
On this SFTP server you can see what was uploaded already. This can be usefull when cases take a bit longer to solve.

Martijn

0 Kudos
Duane_Toler
MVP Silver
MVP Silver
Thursday
In response to Martijn

Indeed, that's often my approach as well.  I've lately been trying to be a "team player" and use that to send over files because I'm always remote from my customers; I'm not going to copy all these items to my local machine just to re-upload it through the irritating IBM widget app.  However, there's also a very large delay when using the 'cpinfo' method as it first has to go through some other server to process the items then copy them to another internal server for the TAC person to pick up.

Eventually, it seems to get there, ... when it works.  I opened a separate TAC case one time and the generous person there gave me some nice internal info for how it works.

Just by coincidence, yesterday I was able to upload files with 'cpinfo' again from a third host (also at the same customer site), so maybe there was indeed an Internet Gremlin eating my packets earlier.

 

--
Ansible for Check Point APIs series: https://www.youtube.com/@EdgeCaseScenario and Substack
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events