This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
burticio
Participant
‎2021-12-02 12:56 PM
Jump to solution

Alert message on Policy install after R81 upgrade

Hi, community!

 

I performed a Cluster Upgrade from R80.30 to R81. All worked fine, but lately every time I install the policy I get several alert messages:

"dlopen: /opt/CPsuite-R81/fw1/tmp/install_policy/1a63208f-5060-414e-834c-78ac7c585a54/FW1/lib/libcpatlas.so: cannot open shared object file no such file or directory"

I notice the file libcpatlas.so is being searched in a tmp directory.

 

¿How could I fix this?

 

The policy is installed correctly and all the rules work fine.

 

Thanks!

Labels
Preview file
155 KB
0 Kudos
2 Solutions

Accepted Solutions
Tal_Paz-Fridman
Employee
Employee
‎2022-01-20 05:30 AM
In response to Nik_Bloemers
Jump to solution

After checking with relevant R&D owners, this is a known issue and was just added to the Known Limitation document.

The message can be safely ignored.

BR

Tal

View solution in original post

(1)
Tal_Paz-Fridman
Employee
Employee
‎2024-10-24 11:23 AM
In response to cdelcarmen
Jump to solution

The issue should be fixed in R82.

View solution in original post

23 Replies
the_rock
Legend
Legend
‎2021-12-02 08:26 PM
Jump to solution

I had seen similar messages for one customer and when we rebooted the firewall, they went away. I have a feeling reboot clears those files in tmp directory...thats my best educated guess.

Amogha_Chandras
Employee
Employee
‎2021-12-07 01:28 AM
Jump to solution

This error occurs when there is a shared library missing from the gaia os 

Shared Libraries are libraries that contain code loaded by programs when they start. Missing shared libraries can cause various issues. However, the issue occurs very rarely. 

Best to open a tac ticket, there would be a requirement to copy the library from another machine onto this.

 

The library in this case is  libcpatlas.so

Since it involves directories , best to perform under the guidance of the TAC experts

But the sk to use is sk162393

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2021-12-07 03:55 AM
Jump to solution

Hi,

I've sent a question to the relevant R&D owner. A similar issue was fixed in R81.10 and I'm checking to see if t might apply here or can be added to JHF as well.

Thanks

0 Kudos
burticio
Participant
‎2021-12-10 03:03 PM
In response to Tal_Paz-Fridman
Jump to solution

UPDATE.

 

I checked the steps in sk162393, and I found the library exists in the gateways within the cluster. The library file is in the right directory $FW_DIR/lib/, and this path is set correctly in the LD_LIBRARY_PATH variable. 

 

So I rebooted each member of the cluster. First the standby one. After it rebooted and checked the cluster worked correctly, I tried to install policy to check any changes, and it still showed the alerts. 

I put the recently rebooted GW as active in the cluster, and rebooted the other one. After it rebooted, I checked the cluster was working correctly and installed policy again. The alerts were gone. I made some minor changes in the policy, as labels and logging options in tules, and installed the policy, again with no alerts.

But when I made a change in the objects (It was incorrectly set as internal one interface), and installed policy, the alerts showed again. 

I made other changes in policy and installed it, but the alerts were gone again. 

 

I will keep monitoring if the alerts shows again and in which cases, and if neccesary I will open Support case in TAC. Definitively the reboot made some changes, and it makes sense, as the enviroment variables were set correctly and a reboot should take them.

 

I will keep updatig the case.

Thanks!

Nik_Bloemers
Advisor
Advisor
‎2022-01-20 04:49 AM
In response to burticio
Jump to solution

Did you have this resolved? I'm running into the same situation on R81 (with jumbo take 51).

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2022-01-20 05:30 AM
In response to Nik_Bloemers
Jump to solution

After checking with relevant R&D owners, this is a known issue and was just added to the Known Limitation document.

The message can be safely ignored.

BR

Tal

(1)
Gary_Scott
Contributor
‎2022-08-04 08:44 AM
In response to Tal_Paz-Fridman
Jump to solution

I am seeing this too in a recent upgrade to 81.10 jumbo 66

0 Kudos
SP
Explorer
‎2022-08-04 12:16 PM
In response to Gary_Scott
Jump to solution

We just upgraded from 80.40 jumbo 91 to 81.10 jumbo 66 yesterday and same things for us!

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2022-08-15 04:23 AM
In response to SP
Jump to solution

Hi 

Just to update that the issue will be solved in a future JHF (still do not have additional details).

Thanks

Tal

SteveMad
Explorer
‎2022-09-05 07:26 AM
In response to Tal_Paz-Fridman
Jump to solution

Hi, we just updated from 81.10 T45 to T66 and we are having this issue. For us this seems to be impacting VPN connections with remote gateways. Policy seems to be inconsistent - if the central cluster is switched, tunnels are down until policy is pushed again

Regards,
Stefan

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2022-09-05 12:29 PM
In response to SteveMad
Jump to solution

As far as we know the message itself is only only a cosmetic issue and should not impact functionality. As I wrote in a previous post it will be solved in a future JHF.

If you are running into other issues please contact our Support for a deeper investigation.

 

0 Kudos
Nik_Bloemers
Advisor
Advisor
‎2023-02-17 12:58 AM
In response to Tal_Paz-Fridman
Jump to solution

Still present in the latest take 87. What future jumbo is this planned for? This issue has been reported for 14 months now judging from this topic.

0 Kudos
Jones
Collaborator
Collaborator
‎2022-09-13 04:35 AM
In response to Tal_Paz-Fridman
Jump to solution

Hi,

I just updated to R81.10 JHF 75, and this non-issue is still there.

Kind Regards,

Jones

0 Kudos
CPRQ
Collaborator
‎2022-08-16 07:06 AM
Jump to solution

Hi Burticio and Community, We are also planning to cluster upgrade from R80.20 to R81.10. Do you recommend clean install OR in place upgrade. If we do clean install, do we have to set OSPF and static route again after upgrade? Also if possible can you please send the upgrade procedure/steps. Thanks

0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2022-09-05 05:02 PM
In response to CPRQ
Jump to solution

Clean install will get you the new XFS file system for the gateway.

For instructions please refer:

https://sc1.checkpoint.com/documents/R81.10/WebAdminGuides/EN/CP_R81.10_Installation_and_Upgrade_Gui...

CCSM R77/R80/ELITE
0 Kudos
cdelcarmen
Contributor
‎2024-10-24 07:19 AM
In response to Chris_Atkinson
Jump to solution

R81.20 take 84, still showing this error everytime i push policy. no bueno

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2024-10-24 11:23 AM
In response to cdelcarmen
Jump to solution

The issue should be fixed in R82.

the_rock
Legend
Legend
‎2024-10-24 11:28 AM
In response to Tal_Paz-Fridman
Jump to solution

Good to know!

0 Kudos
Kryten
Collaborator
Thursday
In response to Tal_Paz-Fridman
Jump to solution

Sorry to report that on R82, HotFix Take 39 the Issue is still there. 

0 Kudos
the_rock
Legend
Legend
Thursday
In response to Kryten
Jump to solution

If you mention affected services, I can easily try replicate this in my lab.

Andy

0 Kudos
Kryten
Collaborator
Thursday
In response to the_rock
Jump to solution

Nothing is really affected by this, its just an irritating Warning that comes up during Policy install on the Gateways. 

0 Kudos
the_rock
Legend
Legend
Thursday
In response to Kryten
Jump to solution

As mentioned before, if you can send a screenshot, happy to try replicate it.

Andy

0 Kudos
Tal_Paz-Fridman
Employee
Employee
Thursday
In response to Kryten
Jump to solution

Can you please attach a screenshot of the output or send it directly to tfridman@checkpoint.com? 

Thanks

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events