cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post
Non-English Discussions

Non-english language discussions.

wnascimento
wnascimento inside Português Monday
views 81

ESXI Checkpoint

Boa tardeGostaria de saber ser existe alguma documentação que contenha o throughput (NGTP / NGTX) em função do números de vCPUsR80.30Grato,William   
Thiago_Mourao
inside Português 2019-10-25
views 241 3
Employee

Muito obrigado pela sua presença!

Nada melhor para inaugurar nosso espaço em Português dentro da comunidade CheckMates do que com uma postagem em agradecimento aos mais de 80 clientes que estiveram presentes nos três eventos que aconteceram semana passada nos dias 15, 16 e 17 em São Paulo, Brasília e Rio de Janeiro respectivamente do CheckMates Live in Brazil.   O vento teve como tema principal os desafios e melhores práticas para inspeção HTTPS e tivemos como palestrante o ilustre @PhoneBoy, que além da apresentação, se disponibilizou para responder as mais variadas perguntas sobre Segurança Cibernética, Check Point além de compartilhar um pouco do Road Map dos produtos e soluções da Check Point referente as próximas versões que estão por vir.    Você pode baixar a apresentação feita pelo PhoneBoy no link abaixo: CheckMates HTTPS Inspection Best Practices Brazil.pptx   Gostaríamos de dizer que ficamos muito satisfeitos com o feedback positivo do evento e que devido ao grande interesse do publico e a enorme procura durante o período de inscrições que a equipe organizadora do Check Mates Live colocou o Brasil em sua rota periódica de eventos e que assim que tivermos o novo calendário de eventos com as datas programadas para o Brasil, iremos publicar aqui na comunidade.                                                                                                                                      Quanto a este novo espaço para falantes da língua portuguesa, convidamos a todos que postem suas dúvidas, comentários, soluções e ideias para que nossa comunidade cresça cada vez mais!   Atenciosamente, Thiago Mourão Security Engineer and Cyber Security Evangelist - Brazil   São Paulo - 15/10/2019   Brasília - 16/10/2019    Rio de Janeiro - 17/10/2019         
bear410hk
bear410hk inside Taiwan論壇 2019-09-18
views 109

Check Point 730 Bridge 問題

HI ~ 大大們這個問題我真的不知是 CP 的問題過是我設定的問題。我使用了 CP730 建立了一個 Bridge ,這個 bridge 是接到我下線的另一台 sonicwall 上。主要是加多一個 firewall 但又不想改變現時 network 上的架構。但是有以下問題。設定 : WAN : 跟 Sonicwall 的 WAN 是同一個 IP ,e.g : 123.123.123.2LAN 3 : 跟 WAN 綁在一起。LAN 3 的 IP 是 192.168.200.11. 建立 Bridge 後可以功能正常,沒有影響到後面的 web server。但是不知為何不能更新 anti-virus , IPS 及 anti-bot。2. firmware 的更新也是不到。不斷說我的 DNS resolve 不到。3. CP 730 有時侯會當掉。Thanks各位大大
Val_Loukine
inside Russian 2019-08-30
views 254 2
Admin

Материалы CheckMates Live от 28 августа 2019

Спасибо всем участникам нашей очередной юзер-группы в Москве 28 августа. Материалы в прикрепленных файлах.
Jason_Tugwell
inside Taiwan論壇 2019-08-27
views 199 1 2
Employee+

Check Point Certification Promotion for Taiwan

Check Point限時特價開始了, 2019年8月15 至2019年9月30日止台灣, 香港與中國地區的所有認證考試全面7折. 敬請把握難得的機會取得認證.   https://home.pearsonvue.com/checkpoint     Education Services       The discount will be automatically applied at checkout https://home.pearsonvue.com/checkpoint  
George_Liu
George_Liu inside Taiwan論壇 2019-08-02
views 6716 21 3

VTI unnumbered with 3rd party

實作 VTI unnumbered with 3rd party (FortiGate 60C, Juniper SSG5),以下是簡略的 memo 留存。(只記錄我方重點步驟,其餘留default,或二端匹配之VPN設定)VTI unnumbered1. GaIA - add vpn tunnel 1 type unnumbered local peer peergwname dev eth02. GaIA - set static-route xx.xx.xx.xx/yy nexthop gateway logical vpnt1 on3. SmartConsole - Create a empty Group object. (I.E. VPN_Empty)4. SmartConsole - Create a Interoperable Devices - IPv4 Address5. SmartConsole - Modify Interoperable Devices - Topology - VPN Domain - Manually defined - VPN_Empty5. SmartConsole - Create a community with two firewall peers.
AdaCoul
AdaCoul inside Français 2019-08-02
views 334

Services Professionels de Check Point

Bonjour à tous !J'aimerais savoir qu'est ce que le service professionnel de Check Point et comment ça marche ?Merci d'avance pour votre aide
RickLin
RickLin inside Taiwan論壇 2019-07-22
views 6561 3 1

CheckPoint R80.20 (Management) already support HP DL360 and DL380 G10

CheckPoint R80.20 GA Management (not Gateway) already supports HP DL360 G10 and DL380 G10.Please reference the Gaia Hardware Compatibility List.https://www.checkpoint.com/support-services/hcl/ But in R80.20 Management Feature Release Known Limitations(sk122486)You also need to aware the limit.Hope Gateway can support soon.
Amir_Aliev
inside Russian 2019-07-12
views 10827 1 4
Employee+

Webinars in Russian

Вебинары Check Point на русском языке В этой теме размещаются ссылки на прошедшие и предстоящие вебинары.   Обзор технологий Check Point 2019 11.07.2019 by @Valeriy_Denisov  ngfw‌ software blades‌ overview   Check Point CloudGuard SaaS 14.05.2019 by @Aleksey_Belogla  saas security   Шлюзы безопасности Check Point - это больше, чем NGFW! 25.04.2019 by @Zabula_Sergey  ngfw   Check Point Maestro 19.03.2019 by Anatoly Masover scalable platforms   R80.20: что нового  12.02.2019 by Amir Aliev‌ ‌ ‌ Кибер-безопасность на 360°: Новые возможности семейства SandBlast   05.12.2018 by Aleksey Beloglazov‌ sandblast sandblast agent‌   Защита частных облаков с CloudGuard IaaS - ACI, NSX, ESXi и др.   27.09.2018 by Valeriy Denisov‌ cloudguard iaas‌ vmware nsx‌ aci‌   Взгляд производителя на новое регулирование в ИБ в России   11.09.2018 by Vasily Shirokov‌ ‌government‌ фстэк‌ сертификация‌   Защита мобильных устройств от кибератак с SandBlast Mobile и Capsule   29.05.2018 by Amir Aliev‌ sandblast mobile‌ capsule workspace‌ capsule docs‌   Обзор решений Check Point и что нового в 2018 году   06.03.2018 by Amir Aliev‌ ngfw‌ software blades‌
Benoit_Verove
Benoit_Verove inside Français 2019-06-19
views 541

Nouvelle mascot Check Mates

Bonjour à la communauté francophone et Check Point France, Vous l'avez peut être vu : la communauté Check Mates cherche une nouvelle mascot. Pour cela, un concours a été organisé.Certains d'entre vous connaisse Freaky Pug (aka Cookie the pug). Il a bien sur candidaté pour être la nouvelle mascot. Alors votez tous pour lui !https://community.checkpoint.com/t5/CheckMates-Mascot-Contest/con-p/mascot/tab/entries Merci pour votre aide ! Benoit 
Jacky_Chen
Jacky_Chen inside Taiwan論壇 2019-05-23
views 1002 7

Block keywords via Snort Rules

Dear 各位先進,    近期某家金融客戶,由 third-party 資安設備偵測到某台 Web server 一直遭到 Hydra Webshell 攻擊, 如下面 report    這問題我們有開 Ticket , IPS database 更新到最新版本, 也 import 最新的 Snort rules, 並把所有有關 Hydra Signature 都設為 Prevent, 但還是偵測不到這個攻擊    最後我們是用 Snort rules 來阻擋含有 "public/hydra.php?xcmd=cmd.exe" 這個關鍵字的流量, 步驟如下:1. 準備 Snort rules Snort rules 檔案請參考附件或是將以下語法存成 file-name.rulesalert tcp any any -> any any (content: "public/hydra.php?xcmd=cmd.exe"; msg: "HYDRA Attack-jacky_test";)至於語法的說明, 在 Google 大神上都可以查的到,這邊就不加說明2. 將 Snort rule 檔案滙入 Check Point詳細的滙入說明可參考松倫大大分享的文章https://community.checkpoint.com/t5/Taiwan%E8%AB%96%E5%A3%87/New-Exploits-for-Unsecure-SAP-Systems-How-to-import-Snort-rule/m-p/53095#M498%2Fjump-to%2Ffirst-unread-message若是 R77.30 的版本, 可參考https://sc1.checkpoint.com/documents/R77/CP_R77_IPS_WebAdminGuide/12857.htm3. 滙入完成後, 將滙入的 Snort rules Action 設為Prevent, 並且勾選Capture Packets4. Install Threat Prevention policy, 然後產生一些 http://IP/public/hydra.php?xcmd=cmd.exe%20/c%20 測試流量例如用 pchome 來做測試, 會看到連線被 reset 掉5. 查看 IPS log 是否有相關 log 點選 Packet Captures 可看到阻擋的封包內容所以透過 Snort Rules, 只要簡單修改一些內容, 就可以達到阻檔 keyword 的目的, 很簡單PS. 若是 HTTPS 的流量, 當然是要開 HTTPS Inspection 才看的到囉 Regards,Jacky
bear410hk
bear410hk inside Taiwan論壇 2019-05-23
views 4907 5

Check Point 730 接橋設定

Hi All,我是checkpoint 的新手也是 network 上的新手,對於 bridge mode 的設定不太懂想請教一下各位。公司想增加現在 web service security. 所以買了 Check Point 730, 打算放到現時的 web server firewall 前。想在不影響原本的網絡架構及設定上做到增加一層 firewall。但在 bridge 的設定我不太明白。ISP IP: 123.123.123.100SonicWall Wan: 123.123.123.100SonicWall 有2台隨時做自動轉換 failover. 現在的網絡架構 (Web Service);Internet modem > Cisco Giga Switch (8 port, 2 條線分別插到 SonicWall Firewall 1號及 SonicWall Firewall 2號) > SonicWall Firewall 1號(ISP internet IP)及 SonicWall Firewall 2號 (有failover) > VM 希望轉為 :Internet modem > Cisco Giga Switch > Check Point ( 2 條線分別插到 SonicWall Firewall 1號及 SonicWall Firewall 2號) > SonicWall Firewall 1號(ISP internet IP)及 SonicWall Firewall 2號 (有failover) > VM 問題:1. 如果這樣 Bridge mode 是最好嗎?2. 如果這樣設定,我 SioneWall 的 WAN IP 需要轉移到 Checkpoint 上? 但我看過網上的文件說可以不用更改也可以不用在 CheckPoint 的 Bridge 設定 IP ,但是在設定時發現 Br0 一定要鍵入一個 IP ,內網又不對,外網我又不知道是不是現在的外網 IP.Thanks for your help.  Bear
dinjer
dinjer inside Français 2019-05-10
views 2251 4

Check Point for Beginners

Bonsoir  cher tous,je m'essai de réaliser le lab de "Check Point for Beginners" dans le blog de CHECKMATES mais je bloc.après avoir installé SMS et SG puis le Pc client, je parviens à pinguer le SG, mais après redémarrage de SG le ping ne marche plus du Pc clien vers le SG comme s'il avait une règle qui bloque les requetes ICMP. Mais le ping de SG vers Pc client passe normalement. Du coup impossible de configurer SIC et la suite. mes adresses sont exactes. Comment faire pour résoudre le problème?
Sung-Lun_Yang1
inside Taiwan論壇 2019-05-09
views 826 3
Employee+

New Exploits for Unsecure SAP Systems, How to import Snort rule

Hello all,   近期US-Cert發佈了SAP系統的一個新漏洞: https://www.us-cert.gov/ncas/alerts/AA19-122A 有客戶詢問到Check Point如何進行防禦(How to Prevent);US-Cert已經先發佈了此攻擊相關的Snort Rule: R80.10版本之後的客戶可以透過SmartConsole直接匯入來阻擋攻擊,步驟如下: Step.1 將上方的Snort rule(可以在上方的US-Cert網頁複製)貼到記事本,並另存成 「XXX.rules」 Snort檔案格式。 Step.2 登入SmartConsole,切換到Security Policies頁籤,點選Threat Prevention policy,下方會有IPS Protectections的連結,點選上方的Action >> Snort Protections >> Import Snort rules >> 選擇剛剛另存的Snort rule:   Step.3 匯入之後左下角Task會顯示匯入的進度:   Step.4 匯入完成之後,在IPS Protections裡面即可以查詢到剛剛匯入的Snort特徵碼:   Step.5 進行Profile的設定之後就可以Install Policy開始進行防禦了。
Danny_Yang
inside Taiwan論壇 2019-05-09
views 4593 23 5
Employee++

Logs Exporter正式推出! 別再煩惱log匯出問題

在R80.10/R77.30版本已經開始支援Logs Exporter功能,可以更加方便安全地將CP log匯出與第三方的SIEM/Log management進行整合。Logs Exporter需基於R80.10 JFA take56/R77.30 JFA take292以上版本才能安裝,並支援幾種目前客戶端常見的SIEM產品包括ArcSight, Splunk, QRadar, RSA等。相關內容請參考sk122323 Logs Exporter - Check Point Logs Export

Category Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.