This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
gemechis
Contributor
4 weeks ago
Jump to solution

Issue adding security gateway to security group

Hello All,

I am facing an issue in one of my environments. I have a Maestro environment with one Security Group containing two devices. I encountered an issue with one SGM and detached it from the Security Group.

After that, I performed a complete reset of the problematic gateway and installed Check_Point_R81.20_T634_ScalablePlatform_Upgrade.

The gateway is now shown as an unassigned device. I then attempted to add it back to the existing Security Group by enabling SMO image auto-cloning on the Security Group. However, it has been stuck in the JOINING state for almost five hours when checked from the Maestro.

At the same time, the SGM appears as DETACHED in the asg monitor output on the Security Gateway.

I am not sure what I might be missing. Could you please assist?

Preview file
25 KB
0 Kudos
1 Solution

Accepted Solutions
gemechis
Contributor
4 weeks ago
Jump to solution

The Jumbo Hotfix was successfully transferred and prepared through the USB flash drive, not via the management interface (SCP/WinSCP). That was the right approach since the Mgmt interface was down and had no reliable IP at the start.

View solution in original post

0 Kudos
5 Replies
Vanness_Chen
Explorer
4 weeks ago
Jump to solution

Please use the show version all command to verify the OS version of the SMO.
The versions must match in order for synchronization to function properly.

0 Kudos
gemechis
Contributor
4 weeks ago
In response to Vanness_Chen
Jump to solution

Do I need to install hotfix take 127 on it?

The exusting SGM has take 127 installed, But how could I install it since it doesn't have management IP? 

0 Kudos
emmap
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
4 weeks ago
Jump to solution

On top of the versions, please also confirm the downlinks are cabled correctly - did you take the screenshot there from MHO 2? 

0 Kudos
gemechis
Contributor
4 weeks ago
In response to emmap
Jump to solution

@emmap 

 

The downlinks are correctly configured. 

0 Kudos
gemechis
Contributor
4 weeks ago
Jump to solution

The Jumbo Hotfix was successfully transferred and prepared through the USB flash drive, not via the management interface (SCP/WinSCP). That was the right approach since the Mgmt interface was down and had no reliable IP at the start.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
 
Upcoming Maestro Events

    CheckMates Events