This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Di_Junior
Advisor
Advisor
‎2021-04-27 01:21 AM

Install Threat Prevention Policy with Cron Job

Dear Mates

 

I wish to have a cron job that will be installing the threat prevention policy every 20 minutes. Could you help me how to achieve this.

 

Thanks in advance

0 Kudos
5 Replies
G_W_Albrecht
MVP Silver
MVP Silver
‎2021-04-27 01:52 AM

I do not understand the reason for your wish, as a TP policy will not change automatically and surely not every every 20 mins. Issue the following command on the GW to achieve it:

  1.  # fw fetch <MGMT IP address>
CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2021-04-29 02:19 AM
In response to G_W_Albrecht

There is a relevant discussion here: Re: Is it possible to install a Policy without sending it to the Gateways???

Summary: No fetch will ever occur, because the policy did not change, and local policy will be installed that does not differ from the currently installed. After a Policy install, the same occurs with the new policy.

 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin
‎2021-04-28 12:45 PM

What precisely are you hoping to achieve by doing this?

0 Kudos
_Val_
Admin
Admin
‎2021-04-29 01:07 AM

the main question is, why?

0 Kudos
Timothy_Hall
MVP Gold
MVP Gold
‎2021-04-29 04:53 AM

As others have observed not sure exactly why you would want to do this, but to reinstall the Threat Prevention policy only and not the Access Control policy with it, the command would be fw amw fetch <MGMT IP Address>

The gateway dynamically receives pattern/signature updates for the various TP blades automatically, so there is no need to reinstall/fetch the AMW/TP policy to make those updates take effect.

Gaia 4.18 (R82) Immersion Tips, Tricks, & Best Practices Video Course
Now Available at https://shadowpeak.com/gaia4-18-immersion-course

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events