Re: Where is /tmp/SNXAC/STAProxy?

cyttorak · ‎2024-10-25

Hi,

I am using Linux Mint 21.3 and I have installed

https://portal.vpnssl.*****.**/SNX/INSTALL/snx_install.sh

https://portal.vpnssl.*****.**/SNX/INSTALL/cshell_install.sh

But when I visit in https://portal.vpnssl.*****.**/Portal/Main and click in "Connect" it is fail.

this is my log /var/log/cshell/cshell.elg:

INFORMACIÓN [Log log] [CShell] CShell trying to get host. 
INFORMACIÓN [Log log] [CShell] CShell trying to load saved sites. 
INFORMACIÓN [Log log] [Launcher] Launching /bin/sh -c who | head -n 1 | awk '{print $1}' 
INFORMACIÓN [Log log] [Launcher] Launching /bin/sh -c echo $( getent passwd "*****" | cut -d: -f6 ) 
INFORMACIÓN [Log log] [CShell] Trusted sites ini placed at '/home/*****/CheckPoint/CShell/trusted_sites.ini' 
INFORMACIÓN [Log log] [CShell] siteProperty for 'portal.vpnssl.*****.**' is true 
CONFIGURAR [AuthTokens addToken] Session id for token *********** is not defined 
CONFIGURAR [AuthTokens addToken] token with id ********* is Primary 
CONFIGURAR [AuthTokens addToken] cleaning token storage 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: start 
INFORMACIÓN [TunnelChecker stop] stop(false) 
ADVERTENCIA [TunnelChecker disconnectTunnel] Can't disconnect tunnel, client director is not defined. 
ADVERTENCIA [TunnelChecker stop] Can't stop disconnect checker, processed handle is not defined. 
INFORMACIÓN [Log log] [CShell] Trying to verify CShell component with loaded site. 
INFORMACIÓN [Log log] [CShell] CShell loaded by 'https://portal.vpnssl.*****.**/' and loaded from 'https://portal.vpnssl.*****.**/SNX/CSHELL/' 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: checkUpdate 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_selected_client 
INFORMACIÓN [Log log] [CShell] CShell trying to get host. 
INFORMACIÓN [Log log] [CShell] CShell trying to load saved sites. 
INFORMACIÓN [Log log] [Launcher] Launching /bin/sh -c who | head -n 1 | awk '{print $1}' 
INFORMACIÓN [Log log] [Launcher] Launching /bin/sh -c echo $( getent passwd "*****" | cut -d: -f6 ) 
INFORMACIÓN [Log log] [CShell] Trusted sites ini placed at '/home/*****/CheckPoint/CShell/trusted_sites.ini' 
INFORMACIÓN [Log log] [CShell] siteProperty for 'portal.vpnssl.*****.**' is true 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_snx_version_to_install 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_snxac_version_to_install 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_upgrade_type 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_frame_color 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_host_name 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_port 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_server_cn 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_user_name 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_password 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_server_fingerprint 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: put_uninstall_on_disconnect 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: initiate_applications_db 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [CShell] Initiated applications data base successfully 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: Initialize 
INFORMACIÓN [Log log] [CShell] Initializing... (for SNX=true) 
INFORMACIÓN [Log log] [Director] Selected Client is SNX Application Mode 
INFORMACIÓN [Log log] [Director] SNX Application Mode will be used 
INFORMACIÓN [Log log] [Component] Checking local version. 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [Component] Version file or exe file not found 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [SNXAppMode] Package download url https://portal.vpnssl.*****.**/SNX/CSHELL/SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [General] Downloading file SNXAC4LINUX30.jar.tmp from https://portal.vpnssl.*****.**/SNX/CSHELL/SNXAC4LINUX30.jar to path /tmp/SNXAC 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Component] Verified /tmp/SNXAC/SNXAC4LINUX30.jar using CPSigner 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [Launcher] DB:/tmp/SNXAC/*****.db 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: entering  
INFORMACIÓN [Log log] [SNXAppMode] GetPackageShortFilename: PackageShortFilename is SNXAC4LINUX30.jar 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [Launcher] Launching chmod +x /tmp/SNXAC/STAProxy 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [Launcher] Launching env 
INFORMACIÓN [Log log] [SNXNetMode] Failed to find /tmp/SNXAC/STAProxy 
ADVERTENCIA [CpComponent connect] Error, Can't communicate with component. 
INFORMACIÓN [Log log] [Director] Failed to connect to the component 
INFORMACIÓN [Log log] [CShell] Failed to initialize 
INFORMACIÓN [TunnelChecker stop] stop(true) 
ADVERTENCIA [TunnelChecker disconnectTunnel] Can't disconnect tunnel, client director is not defined. 
ADVERTENCIA [TunnelChecker stop] Can't stop disconnect checker, processed handle is not defined. 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: get_is_connected 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: get_finished 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: Uninitialize 
INFORMACIÓN [TunnelChecker stop] stop(true) 
ADVERTENCIA [TunnelChecker disconnectTunnel] Can't disconnect tunnel, client director is not defined. 
ADVERTENCIA [TunnelChecker stop] Can't stop disconnect checker, processed handle is not defined. 
INFORMACIÓN [CShellHTTPHandler proceedHandleRequest] Method name: stop 
INFORMACIÓN [TunnelChecker stop] stop(true) 
ADVERTENCIA [TunnelChecker disconnectTunnel] Can't disconnect tunnel, client director is not defined. 
ADVERTENCIA [TunnelChecker stop] Can't stop disconnect checker, processed handle is not defined.

It is falling because of /tmp/SNXAC/STAProxy doesn't exist, but /tmp/SNXAC/ is created by Check Point.

Why Check Point try to use a file that dosen't exists?.

Why Check Point create /tmp/SNXAC/ but not create /tmp/SNXAC/STAProxy?

PhoneBoy · ‎2024-10-25

STAProxy is related to Application Mode for Mobile Access Blade.
What version/JHF is the gateway?
What version is the snx client?

cyttorak · ‎2024-10-26

$ /usr/bin/snx --help
Check Point's Linux SNX
build 800008407
usage: snx -s <server> {-u <user>|-c <certfile>} [-l <ca dir>] [-p <port>] [-r] [-g]
                                run SNX using given arguments
       snx -f <cf>              run the snx using configuration file
       snx                      run the snx using the ~/.snxrc

       snx -d                   disconnect a running SNX daemon

        -s <server>           connect to server <server>
        -u <user>             use the username <user>
        -c <certfile>         use the certificate file <certfile>
        -l <ca dir>           get trusted ca's from <ca dir>
        -p <port>             connect using port <port>
        -g                    enable debugging

$ cat /tmp/SNXAC/ver.ini 
800005026

$ curl -k -s https://localhost:14186/id | jq -r
{
  "id": "e015e2b4-ffe2-4d57-82ff-3c7b619d0833",
  "version": 800007049
}

$ curl https://portal.vpnssl.*******.**/SNX/CSHELL/snx_ver.txt
800008407 

$ curl https://portal.vpnssl.*******.**/SNX/CSHELL/cshell_ver.txt
80,0,0070,49

I don't know how to see the version of /usr/bin/cshell/launcher

PhoneBoy · ‎2024-10-28

Lots of information about the clients, but nothing about the gateway you're connecting to.
However, based on the version of SNX, I can infer it's probably R81 or R80.40, both of which are End of Support.

In any case, it appears your gateway is set to use SNX in Application Mode, which is only supported on Windows.
See: https://support.checkpoint.com/results/sk/sk104008

cyttorak · ‎2024-10-29

How get the information about the gateway I am connecting to?

PhoneBoy · ‎2024-10-29

The SK I pointed to provided a possible way to change the SNX mode in the Mobile Access Portal.
I'll provide the screenshot here:

In any case, this forum is primarily geared at administrators of Check Point products.
For further assistance, you'll need to work with your organization's IT support/helpdesk team.

Are you a member of CheckMates?

Where is /tmp/SNXAC/STAProxy?