This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
nflnetwork29
Advisor
‎2023-01-20 09:33 AM
Jump to solution

How do recreate masters file ?

I'm trying to follow sk146112 however my masters file will not update . is there any way i can recreate this file ?

I've tried everything . please advise. 

 

Ruining R81.10 Take 81

0 Kudos
1 Solution

Accepted Solutions
nflnetwork29
Advisor
‎2023-01-20 12:52 PM
In response to PhoneBoy
Jump to solution

HI @PhoneBoy 

 

Because my MDM and MDLM are external to the gateway in this scenario. 

We are using static NAT on the mgmt. and LOG objects. 

The gateway is sending logs tcp/257 to the private ip of the MDM and MDLM. This is not going to ever work . It HAS to be the NAT'd IP address (Public IP) 

 

That being said i got it working . I created a dummy object in smart consoled and used that for the logging destination . its working . 

View solution in original post

0 Kudos
8 Replies
the_rock
MVP Diamond
MVP Diamond
‎2023-01-20 09:53 AM
Jump to solution

You need to follow sk at the bottom.

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

Best,
Andy
0 Kudos
nflnetwork29
Advisor
‎2023-01-20 09:58 AM
In response to the_rock
Jump to solution

Symptoms

  • $FWDIR/conf/masters file on Security Gateway was modified manually. However, this file is overwritten during each policy installation.

just want to say that it does not appear that my masters file is being overwritten ....

ive modified the masters file but when i  run the following for example "tcpdump -nnei any port 257"

it does not reflect these changes

i tried to delete the file but it does not allow me to do that  

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-01-20 10:03 AM
In response to nflnetwork29
Jump to solution

The link I gave gives steps to preserve manual changes. Isnt that what you want to achieve?

Best,
Andy
0 Kudos
nflnetwork29
Advisor
‎2023-01-20 10:04 AM
In response to the_rock
Jump to solution

that is working. i have no problems with the masters file being overwritten 

 

the problem is that its still not working . 

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-01-20 10:08 AM
In response to nflnetwork29
Jump to solution

Sorry, not trying to be difficult, but what is NOT working? Firewalls are not logging to mgmt server or something else? Can you provide content of masters file?

Best,
Andy
0 Kudos
PhoneBoy
Admin
Admin
‎2023-01-20 12:24 PM
Jump to solution

When you say "tried everything" what precise steps did you take?
What result did you expect?
What happened instead?
Pretty sure modifying this file requires a cprestart, or at the very least a policy install action.

A better question is: why are you modifying this file in the first place?
There is generally ways to accomplish what this file does via SmartConsole configuration.

0 Kudos
nflnetwork29
Advisor
‎2023-01-20 12:52 PM
In response to PhoneBoy
Jump to solution

HI @PhoneBoy 

 

Because my MDM and MDLM are external to the gateway in this scenario. 

We are using static NAT on the mgmt. and LOG objects. 

The gateway is sending logs tcp/257 to the private ip of the MDM and MDLM. This is not going to ever work . It HAS to be the NAT'd IP address (Public IP) 

 

That being said i got it working . I created a dummy object in smart consoled and used that for the logging destination . its working . 

0 Kudos
PhoneBoy
Admin
Admin
‎2023-01-20 02:55 PM
In response to nflnetwork29
Jump to solution

The Dummy Object workaround used to be documented here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
It is still listed in the internal comments, but it shouldn't be necessary in current versions...

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events