This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
George_Sas
Contributor
‎2023-06-12 04:32 AM
Jump to solution

Checkpoint 1570 Appliance upgrade to 81.10 fail with No profile defined on GW

Upgraded our management server to 81.10 , pushed policy to test if all ok and all was ok.

Then took a small office and upgraded the 1570 appliance to 81.10 and tried to push policy.

Standard policy was ok but Threat Prevention fails miserably .

Gateway: DCUK-xxxx
Policy: Standard
Status: Failed
- No profile defined on GW DCUK-xxxx
- gen_amw_rulebase_tables: gen_gw_profiles_set failed
- Operation was unsuccessful.
--------------------------------------------------------------------------------

 

I tested the solution suggested here on sk165935 but it does not work or I do not understand the article correctly ..

I am a bit uncertain of this statement "Assign the IPS profile on the relevant Security Gateway" ... I can only assign a profile on the GW general properties and in this case I can only assign "Custom" ... as Autonomous is not supported by 1500 series.

Am I missing something ?

 

 

Preview file
22 KB
0 Kudos
1 Solution

Accepted Solutions
George_Sas
Contributor
‎2023-06-13 01:06 AM
Jump to solution

Well , mistery SOLVED.

After upgrading to 81.10 , the respective gateway was automatically REMOVED from my IPS / Threat prevention policy ????

I just upgraded another one and I noticed that the gateway was removed from the IPS policy after upgrade ?

Pushed policy ... fail.
Checked the IPS / Threat prevention policies and the gateway was NOT on any policy.

Added the gateway to the policy again , pushed policy and all went fine.

I have a policy for the small appliances and the next upgraded gateway vanished from the targets for that policy ... so no wonder the management server came and told me "No profile defined on GW" .. as there was no policy defined for that gateway so there was nothing to push..

I guess this can be defined as a Bug ? Why should a gateway remove itself from the policy after upgrade without any warnings ?

View solution in original post

0 Kudos
9 Replies
PhoneBoy
Admin
Admin
‎2023-06-12 03:08 PM
Jump to solution

Yes, Autonomous Threat Prevention is not supported on SMB appliances.
"IPS Profile" only applies to pre-R80 gateways, for everything else not using ATP, it will depend on the Threat Prevention > Custom Settings rules.
What precise rules are there?
Screenshots (with sensitive details redacted) will help.

0 Kudos
George_Sas
Contributor
‎2023-06-12 11:33 PM
In response to PhoneBoy
Jump to solution

Well, sk165935 does not say to much regarding the IPS profile and gateway type so I was kind confused.

I have also tried to remove the affected GW from the IPS / Threat Prevention rules and follow the SK165935 but this did not help either.

 
 

 

Preview file
233 KB
0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2023-06-12 09:00 PM
Jump to solution

Is this Gateway running R81.10.07 (996001397) or other version/build?

CCSM R77/R80/ELITE
0 Kudos
George_Sas
Contributor
‎2023-06-12 11:34 PM
In response to Chris_Atkinson
Jump to solution

Gateway runing Version: R81.10 (996000575)

0 Kudos
George_Sas
Contributor
‎2023-06-13 01:06 AM
Jump to solution

Well , mistery SOLVED.

After upgrading to 81.10 , the respective gateway was automatically REMOVED from my IPS / Threat prevention policy ????

I just upgraded another one and I noticed that the gateway was removed from the IPS policy after upgrade ?

Pushed policy ... fail.
Checked the IPS / Threat prevention policies and the gateway was NOT on any policy.

Added the gateway to the policy again , pushed policy and all went fine.

I have a policy for the small appliances and the next upgraded gateway vanished from the targets for that policy ... so no wonder the management server came and told me "No profile defined on GW" .. as there was no policy defined for that gateway so there was nothing to push..

I guess this can be defined as a Bug ? Why should a gateway remove itself from the policy after upgrade without any warnings ?

0 Kudos
_Val_
Admin
Admin
‎2023-06-13 01:11 AM
In response to George_Sas
Jump to solution

yes sounds like a bug. Do you have a TAC case as a reference?

 

0 Kudos
George_Sas
Contributor
‎2023-06-13 01:13 AM
In response to _Val_
Jump to solution

No , no TAC case for this, we work with a checkpoint partner which did not open a TAC case I believe.

0 Kudos
_Val_
Admin
Admin
‎2023-06-13 01:14 AM
In response to George_Sas
Jump to solution

Please ask them to report this to TAC, this is the only way to get it fixed.

0 Kudos
George_Sas
Contributor
‎2023-06-13 01:18 AM
In response to _Val_
Jump to solution

Will do , thanks.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events