- Products
- Learn
- Local User Groups
- Partners
-
More
Celebrate the New Year
With CheckMates!
Value of Security
Vendor Self-Awareness
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
Mobile Security
Buyer's Guide Out Now
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi, you can use
cpstat fw
in order to find what policy package is installed on a Security Gateway.
For IPS, you'll have to use
ips stat
in order to check the ips status (active profile, update version, ...)
You can find such commands and lot more in the specific Admin Guide or on the CLI Reference Guide
I mean, show/list all the firewall policy not the install policy package
You want to see all the rules that are installed on the local gateway, right? This is possible starting from R80.10. https://community.checkpoint.com/people/dwelccfe6e688-522c-305c-adaa-194bd7a7becc mentioned the file that contains all the rules a while ago. Let me check and get back to your shortly.
I don't remember saying that, but then again, I've probably forgotten more than I remember about Check Point
You can look in $FWDIR/state/local/FW1 on the gateway...where you'll find all kinds of stuff.
On R80.10, you can not see Active IPS profile by using command " ips stat " , use following command
# cat $FWDIR/state/local/AMW/local.set | grep -A15 malware_profiles | grep ":name" | awk '{print $2}' | tr -d "()"
Instead of looking for specific commands, you could also install our
script and have them always available by entering: ccc
fw stat
for policy status.
the following command will give you TP policy status:
fw stat -b AMW
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY