Access Control and Threat Prevention Best Practices
5 November @ 5pm CET / 11am ET
Ask Check Point Threat Intelligence Anything!
October 28th, 9am ET / 3pm CET
Check Point Named Leader
2025 Gartner® Magic Quadrant™ for Hybrid Mesh Firewall
HTTPS Inspection
Help us to understand your needs better
CheckMates Go:
Spark Management Portal and More!
This oneliner shows you all SecureXL parameter (int, uint and string) of the firewall gateway with their values.
This can be useful in the debug case to see an overview of all SecureXL parameters.
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'; modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'string param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get string {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'
Here is an example of the output:
This oneliner shows you all SecureXL parameter (int, uint and string) of the firewall gateway with their values.
This can be useful in the debug case to see an overview of all SecureXL parameters.
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'; modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'string param' | awk '
_Val_
Er no, that command will show all INSPECT kernel values not SecureXL in R80.20+. Try this:
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK
-a added to query SecureXL, but it also queries INSPECT simultaneously and generates a lot of error messages hence the 2> /dev/null and grep for PPAK so we only see variable results from SecureXL and not INSPECT
Er no, that command will show all INSPECT kernel values not SecureXL in R80.20+. Try this:
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK
-a added to query SecureXL, but it also queries INSPECT simultaneously and generates a lot of error messages hence the 2> /dev/null and grep for PPAK so we only see variable results from SecureXL and not INSPECT
;
thanks, I forgot the -a parameter.
You can't use your Onliner either, because the strings are not included here. I have now created one that queries "int", "uint" and "string".
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'; modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'string param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get string {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'thanks, I forgot the -a parameter.
You can't use your Onliner either, because the strings are not included here. I have now created one that queries "int", "uint" and "string".
modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'int param' | awk 'BEGIN {FS=":"} ; {print $1}' | xargs -i -n 1 fw ctl get int {} -a 2> /dev/null | grep PPAK | sed -r 's/PPAK 0://'; modinfo -p $PPKDIR/boot/modules/sim_kern*.o | sort -u | grep -E 'string param' | aw
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY