cancel
Showing results for 
Search instead for 
Did you mean: 
Post a Question
xgordon
Ivory

Find FW rules for certain interfaces

Hello,

i'd like to ask you for expert advice. I have checkpoint fw R77.30, Gaia OS.  I am auditing rulebase. I'd like to narrow scope and filter all rules which hit subnets/hosts behind two specific interfaces.

In other words: I have just two interfaces I am interested in. I need to filter all fw rules where traffic is ingoing and outgoing for two selected interfaces.

Is there any way how to do it automated way?

 

Really appreciate your insight on this.

 

Thanks in advance!

0 Kudos
1 Reply
Admin
Admin

Re: Find FW rules for certain interfaces

Assuming you have anti-spoofing enabled and created a group to represent the networks on those interfaces, you can simply search on that group.
SmartDashboard will show you the rules that include any object in that group, as shown below:

Screen Shot 2019-05-03 at 1.51.29 PM.png

0 Kudos