- Products
- Learn
- Local User Groups
- Partners
- More
Quantum Spark Management Unleashed!
Introducing Check Point Quantum Spark 2500:
Smarter Security, Faster Connectivity, and Simpler MSP Management!
Check Point Named Leader
2025 Gartner® Magic Quadrant™ for Hybrid Mesh Firewall
HTTPS Inspection
Help us to understand your needs better
CheckMates Go:
SharePoint CVEs and More!
Hi all,
Last week I was installing a brand new 9300 appliance and tried to follow the First Time Wizard.
The NIC of my laptop was 192.168.1.2 and I could not connect to 192.168.1.1.
Checked to see if something was wrong with the laptop or cable, but all was OK.
Connected via console and could connect with the default username and password. Found out the IP-address of the Mgmt port was 10.x.x.x and not 192.168.1.1. Customer told me they did not do anything with the appliance. Only take it out of the box for configuration.
I performed a Factory Reset, but the 10.x.x.x IP-address remained as the Mgmt IP. Via console I changed the IP to 192.168.1.1 and could finish the First Time Wizard, but is strange a brand new appliance does not have the default 192.168.1.1 IP.
I opened a ticket with Check Point support. Maybe they can explain this.
Has anyone seen this before?
Regards,
Martijn
9300 appliance supports only dedicated ISO for R81.20 and general R82 as factory image.
Based on Quantum Force 9000 Appliances Quick Start Guide, the MGMT interface of all 9000 appliances should have IP of 192.168.1.1 by default.
ISOmorphic tool supports modifying default IPv4 address based on appliance's MAC address of MGMT interface. When restoring the appliance to factory defaults that you installed using the ISOmorphic tool, the Gaia OS uses the default values based on the advanced parameters you configured in ISOmorphic tool in the Appliance Configuration window - Product, SIC key, Hostname, IPv4 address, IPv4 Subnet mask, IPv4 Default gateway, OS password.
If correct ISO for supported version and no advanced configuration within ISOmorphic was used during re-imaging on 9300 appliance, then something stinks here why IP is not default one...
Hi all,
Got an answer from a Team Manager at TAC. See below:
-----
We can confirm that the reason for the wrong IP is due to an issue on our side during the FCD image original installation.
We recently encountered an issue during the ISO installation that caused the FCD image to not rewrite the IPs.
This issue was already fixed on our side, so it should not re-occur in the future.
In addition, each machine is going through several tests in the factory, and the IP 10.x.x.x might be a part of those tests since, when looking at the sales record, this looks to be a brand new machine and not part of an RMA from the past.
-----
The advice was to re-image the appliance with a USB to bypass the FCD image installed on the appliance.
A mystery solved!!
Regards,
Martijn
Maybe @PhoneBoy can confirm this, but I am fairly positive that 192.168.1.1 was always the default IP for any CP appliance out of the box. Personally, I had never seen what you experienced.
Andy
That may no longer be the case in current versions (192.168.1.1 being the "default" IP for an appliance OOTB).
I still find that odd, because I was helping 2 customers recently with 9300 models and 192.168.1.1 was definitely default IP out of the box.
Andy
I know we should not trust AI for these things, but even AI copilot indicated when I asked about this that default IP is indeed 192.168.1.1. @Martijn super curious what TAC tells you.
Andy
9300 appliance supports only dedicated ISO for R81.20 and general R82 as factory image.
Based on Quantum Force 9000 Appliances Quick Start Guide, the MGMT interface of all 9000 appliances should have IP of 192.168.1.1 by default.
ISOmorphic tool supports modifying default IPv4 address based on appliance's MAC address of MGMT interface. When restoring the appliance to factory defaults that you installed using the ISOmorphic tool, the Gaia OS uses the default values based on the advanced parameters you configured in ISOmorphic tool in the Appliance Configuration window - Product, SIC key, Hostname, IPv4 address, IPv4 Subnet mask, IPv4 Default gateway, OS password.
If correct ISO for supported version and no advanced configuration within ISOmorphic was used during re-imaging on 9300 appliance, then something stinks here why IP is not default one...
It will still be interesting to see what answer TAC gives...that is indeed a strange one.
Andy
Quick start guide for the 9000 serie appliances indeed state IP 192.168.1.1
Maybe the factory image was put via ISOmorphic and they still had an IP configured in Options menu ->
Not sure how they put factory image on a box at check point of course, just check if the other units also have this issue. I suspect someone install image with build in config via this tool. There you can set some basic config. Maybe something like this got messed up.
The image you put with ISOmorphic will become the factory image as far as i know
Hi all,
Got an answer from a Team Manager at TAC. See below:
-----
We can confirm that the reason for the wrong IP is due to an issue on our side during the FCD image original installation.
We recently encountered an issue during the ISO installation that caused the FCD image to not rewrite the IPs.
This issue was already fixed on our side, so it should not re-occur in the future.
In addition, each machine is going through several tests in the factory, and the IP 10.x.x.x might be a part of those tests since, when looking at the sales record, this looks to be a brand new machine and not part of an RMA from the past.
-----
The advice was to re-image the appliance with a USB to bypass the FCD image installed on the appliance.
A mystery solved!!
Regards,
Martijn
Thanks for letting us know @Martijn
well, does it mean there is no validity check during FCD on new appliances if there was no custom configuration (or even scripts) baked as part of FCD ?
There should be some way to do "default" FCD even if machine was reimaged using custom option within ISOmorphic tool. Or at least notify user if modified FCD is about to be restored.
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
User | Count |
---|---|
17 | |
12 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 | |
3 | |
3 |
Wed 10 Sep 2025 @ 11:00 AM (CEST)
Effortless Web Application & API Security with AI-Powered WAF, an intro to CloudGuard WAFWed 10 Sep 2025 @ 11:00 AM (EDT)
Quantum Spark Management Unleashed: Hands-On TechTalk for MSPs Managing SMB NetworksFri 12 Sep 2025 @ 10:00 AM (CEST)
CheckMates Live Netherlands - Sessie 38: Harmony Email & CollaborationWed 10 Sep 2025 @ 11:00 AM (EDT)
Quantum Spark Management Unleashed: Hands-On TechTalk for MSPs Managing SMB NetworksFri 12 Sep 2025 @ 10:00 AM (CEST)
CheckMates Live Netherlands - Sessie 38: Harmony Email & CollaborationAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY