This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
HeikoAnkenbrand
Champion Champion
Champion
‎2018-11-29 11:29 AM

New daemon or processes under R80.20!

Hi R&D guys,

 

for what are the new daemon or processes under R80.20? I once wrote my guess behind it.

 

scanengine_b      -> ted scan engine
scanengine_k      -> ted scan engine
kissd                     -> kernel infrastructure service daemon
sxl_statd               -> new R80.20 SecureXL user mode status daemon ???
lpd                         -> line printer daemon on a firewall  (It's just a joke)

 

#ps -auxef

cut >>>

admin     5884  0.0  0.1  22648  5964 ?        Ss   Nov07   0:33  \_ lpd PPKDIR=/opt/CPppak-R80.20 INFODIR=/opt/CPinfo-10 DIAGDIR=/opt/CPdiag-R80.20 MAIL_CONFIG=/opt/postfix/etc/postfix CPMDIR=/opt/CPsuite-R80.20/fw1...

<<<

 

Could you please describe the function!

 

They are not to be found in the following SK:

Check Point Processes and Daemons 

Security Servers - daemon names and definitions 

 

Regards

Heiko

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
5 Replies
HeikoAnkenbrand
Champion Champion
Champion
‎2018-11-30 11:59 AM

Hi Dameon,

Hi Valeri,

Do you have info about the new R80.20 daemon and processes?

Regards

Heiko

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
PhoneBoy
Admin
Admin
‎2018-11-30 12:46 PM
In response to HeikoAnkenbrand

No idea, personally.

It looks like lpd is related to cpdiag, though.

Dmitry_Krupnik
Employee Alumnus
Employee Alumnus
‎2018-12-06 02:14 AM

Hello Heiko,


Thanks for pointing this out, currently we are working on the sk97638 and all questions related to the new daemons should be resolved. Regarding to the LPD I know, that this daemon registered by CPDiag for diagnostics platform.

Regards,
Dmitry Krupnik

ED
Advisor
‎2018-12-06 04:05 AM

Hi Heiko,

I asked about lpd process in this thread earlier (R80.10). https://community.checkpoint.com/thread/8054-cpwdadmin-list-overview-sms

Yonatan Philip answered this:

Hi,

The LPD (or Log Parser Daemon) will scan preconfigured files and search for predefined signatures.
CPDiag will use those results later on.

 

TBH I don't know too much about this daemon and how it works, but Günther had the right idea when he pointed you to CPDiag.

 

HTH

 Yonatan 

Dmitry_Krupnik
Employee Alumnus
Employee Alumnus
‎2019-01-24 06:00 AM

Hello Heiko,

I want to inform you, that the sk97638 was updated. 

We appreciate your feedback and assistance.

Regards,
Dmitry Krupnik

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events