- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi,
Deployed R80.40 on 2 clusters and these are the issues I'm facing:
Hope this helps with the first R80.40 hotfix
Which Check Point Appliances are you using?
@Danny 15400, with management on vmware
@PhoneBoy not yet. Will open one next week.. Just posted this issues here to see if there was anyone with the same issues...
What does everyone think about this idea?
Run one clusterXL gateway node with R80.40 (3.10) XFS (re-formatted, re-built), but the other R80.40 (3.10) node will still be running with ext3 exclusively. Would that be supported?
hi @Rui_Gomes_PT ,
It might be crazy or funny but i encounter such case where i had duplicate IP and on the Duplicated IP i had initial policy.
so each reboot i saw initial_policy instead of real policy.
Any chance that you have Duplicate IP?
If not do you see any failure messages in dmesg post boot?
It would be nice if when you did a fresh install of R80.40 for example in CPUSE it would ask for your formatting size, and IP addresses so you could do a fresh install from CPUSE, rather than mounting an ISO.
Hi!
Has anyone run into issues with trouble getting to hosted http2 websites behind R80.40. I have a TAC issue for this as well. Traffic comes into DMZ#1 to hit an Apache reverse proxy then is terminated and sent to DMZ#2 webservers. HTTPS inspection is turned off on this gateway.
This shows in not working with http2
curl --http2 -k https://new-sterling.mydomain.com <html><body><h1>400 Bad request</h1>
Your browser sent an invalid request.
This shows it working with http 1.1
curl --http1.1 -k https://new-sterling-mydomain.com
<html>
<body bgcolor=white>
<center>Hello World!</center>
UPDATE: This working now, it was NOT an issue with HTTP/2 or R80.40.
My understanding is that HTTPS Inspection is required for HTTP/2 support.
Subject: R80.40 or R81
Does anyone know if Check Point is working on or has the capability to upgrade to a new major version of Check Point with out getting a new AMI from AWS. For example if I have a firewall with a R80.30 AMI up and running can I update to R80.40 with out needing to get a new AMI? Or is that capability not until R81? Could I upgrade from R80.30 to R81 with the current AMI or do I still need a new AMI?
As far as I know, this isn't possible currently.
Will it be in the future? Don't know.
I do know prior to R80.40, the AMI versions weren't exactly maintrain as they were on the 3.10 kernel, which was not maintrain on gateways.
There are a few other differences as well.
That suggests it may be possible in the future, but there may be some technical reason why we can't do it.
I can send Gaia OS syslogs (/var/log/messages) to smartlog, but I can't search and sort on the message itself. IOW, the messages aren't indexed. Blade:Syslog shows the logs in R80.30. I can then see the messages if I open up each log. However, I can't search or sort the messages. It would be nice to combine all the like messages or even create a report on them. Is there any additional capability for syslog in R80.40 or in the plans for R81?
The specific field used for syslog messages is not indexed.
That means you can't search or run reports on it.
That hasn't changed in R80.40 and don't believe that's changed in R81 either.
Understanding your precise use cases may be useful here, as we'd also probably have to parse the syslog messages more than we do currently (something that's not currently done, either).
Searching by kernel Alert.
Searching by warning
search by informational
grouping all like messages together.
searching messages on keyword
It would save admins time from logging on to each server /var/log/messages each day.
Running a daily report thru smartevent or sending alerts out in real time RE: system health
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY