Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Jpstu
Participant

Location of crypt.def file

In an environment with a gateway on R80.20 Take 220 and a VM Management server on 80.40 Take 173, we cannot find the correct crypt.def file.  The 80.40 Management Administration guide shows the location as /opt/CPR8040CMP-R80.40/lib/crypt.def, but this location does not exist on our server:

 

Screenshot 2023-01-16 124636.jpg

 

 

 

Was there a change to this that we are unaware of?  Does anyone know where we would find the correct crypt.def file?

 

Thanks

 

 

 

 

0 Kudos
10 Replies
the_rock
Legend
Legend

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

This is from R81.20 mgmt server, but its exact same thing on yours, just replace R81.20 with R80.40

Andy

[Expert@QUANTUM-MANAGEMENT:0]# cd $FWDIR/lib
[Expert@QUANTUM-MANAGEMENT:0]# pwd
/opt/CPsuite-R81.20/fw1/lib
[Expert@QUANTUM-MANAGEMENT:0]# ls -lh crypt.def
-rw-r----- 1 admin bin 12K Nov 16 06:21 crypt.def
[Expert@QUANTUM-MANAGEMENT:0]#

0 Kudos
Jpstu
Participant

Hi,

We did try that one but changes made to it do not propagate to the gateway.  The R80.40 Security Management Administration guide shows that for an 80.40 Management server and an 80.20 gateway the file should be /opt/CPR8040CMP-R80.40/lib/crypt.def but this location is not present at all.  Even when we set up a Lab to investigate on a fresh install this directory was not created.  

0 Kudos
the_rock
Legend
Legend

I never had that problem in my old R80.40 mgmt server, something makes no sense. What happens if you do this from mgmt server ssh expert mode:

cd $FWDIR/lib

ls -lh crypt*

0 Kudos
Jpstu
Participant

Yes, we find it a bit confusing as well, the output from the above command is :

12 -rw-r----- 1 admin bin 12233 Jan 16 14:17 crypt.def
4 -rw-r----- 1 admin bin 821 Apr 16 2020 crypt_ssl.def

 

but we also found this:

Expert@SMS80.40:0]# find / -name crypt.def
find: /proc/36863/task/92966: No such file or directory
find: /proc/92970: No such file or directory
/opt/CPsuite-R80.40/fw1/lib/crypt.def
/opt/CPR7520CMP-R80.40/lib/crypt.def
/opt/CPR7540CMP-R80.40/lib/crypt.def
/opt/CPR76CMP-R80.40/lib/crypt.def
/opt/CPSFWR77CMP-R80.40/lib/crypt.def
/opt/CPSFWR80CMP-R80.40/lib/crypt.def
/opt/CPR77CMP-R80.40/lib/crypt.def
/opt/CPR75CMP-R80.40/lib/crypt.def
/opt/CPNGXCMP-R80.40/lib/crypt.def
/opt/CPSG80CMP-R80.40/lib/crypt.def
/opt/CPR71CMP-R80.40/lib/crypt.def
/opt/CPSG80R75CMP-R80.40/lib/crypt.def

This aligns with what the admin guide shows but does not include the file for an 80.20 gateway.

 

 

 

 

0 Kudos
the_rock
Legend
Legend

Thats not what I asked though 🙂

Do this:

cd $FWDIR/lib

ls -lh crypt*

0 Kudos
Jpstu
Participant

Sorry, I put it at the top of the last reply but did not include the full command:

[Expert@SMS80.40:0]# cd $FWDIR/lib
[Expert@SMS80.40:0]# pwd
/opt/CPsuite-R80.40/fw1/lib
[Expert@SMS80.40:0]# ls -lh crypt*
-rw-r----- 1 admin bin 12K Jan 16 14:17 crypt.def
-rw-r----- 1 admin bin 821 Apr 16 2020 crypt_ssl.def

 

0 Kudos
_Val_
Admin
Admin

Make changes in $FWDIR/lib/crypt.def and see if it helps. Backup the file first.

0 Kudos
G_W_Albrecht
Legend Legend
Legend

See in https://sc1.checkpoint.com/documents/R80.40/WebAdminGuides/EN/CP_R80.40_SecurityManagement_AdminGuid...

Version of the Target Security Gateway

Location of the File

R80.40

/opt/CPsuite-R80.40/lib/crypt.def

R80.30

/opt/CPR8040CMP-R80.40/lib/crypt.def

R80.20SP on Maestro, or Scalable Chassis

/opt/CPR8040CMP-R80.40/lib/crypt.def

R80.20

/opt/CPR8040CMP-R80.40/lib/crypt.def

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Jpstu
Participant

Thank you for your reply.  The problem we have is that there is no /opt/CPR8040CMP-R80.40/lib/ directory on the SMS even though the documentation show that there should be.  When we set up a lab with an 80.40 Management server and an 80.20 gateway, it didn't have that directory either.

 

 

0 Kudos
the_rock
Legend
Legend

I would check with TAC, because that simply makes no sense. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events