cancel
Showing results for 
Search instead for 
Did you mean: 
Post a Question

Please share syntax/command via CLI in creating access-list

I am new to checkpoint devices. Just wanted to know syntax in creating firewall rules via cli. Basically creating access-list are the repeated tasks done on a daily basis. Please share sample syntax here. Version handled are R77.xx

Appreciate your help. Thanks!

5 Replies
Employee+
Employee+

Re: Please share syntax/command via CLI in creating access-list

Hello & Welcome!

The recommended approach here would be to upgrade to R80.10 (starting with Mgmt) and leverage the APIs amongst a host of new improved features and functions.

Another reason to focus your efforts here is that the End of Support date for R77.30 is approaching.

Regards,

Chris

0 Kudos
Admin
Admin

Re: Please share syntax/command via CLI in creating access-list

The official documentation for how to do this: Command Line Interface R77 Reference Guide 

There may also be some examples here: Developers (Code Hub)‌.

As Chris Atkinson‌ said, you'll probably find your efforts are better spent upgrading your management to R80.x where  this process is significantly simpler/easier than it is in R77.x.

0 Kudos

Re: Please share syntax/command via CLI in creating access-list

I think that question here is how to create ACL on gateway like on Cisco ASA. This is not how CP works, gateways are enforcing security policies pushed from centralized management server.

Employee+
Employee+

Re: Please share syntax/command via CLI in creating access-list

Correct Martin,

However R77.30 did offer dbedit (sk30383) as outlined in the documentation referenced by Daemon above.

Skipping to the end R80.XX and the API is the future!

Thanks,

Chris

0 Kudos

Re: Please share syntax/command via CLI in creating access-list

Thanks all! Appreciate your inputs.

0 Kudos