This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Christopher_Ta1
Contributor
‎2018-04-16 01:05 AM
Jump to solution

CLI command to show FW/IPS Policy

What cli command to show all installed policy and also ips policy. 

(1)
2 Solutions

Accepted Solutions
XavierBens
MVP Silver CHKP MVP Silver CHKP
MVP Silver CHKP
‎2018-04-16 06:51 AM
Jump to solution

Hi, you can use

cpstat fw

in order to find what policy package is installed on a Security Gateway.

For IPS, you'll have to use

ips stat

in order to check the ips status (active profile, update version, ...)

You can find such commands and lot more in the specific Admin Guide or on the CLI Reference Guide

Cybersecurity Evangelist, CISSP, CCSP, CCSM Elite

View solution in original post

(1)
PhoneBoy
Admin
Admin
‎2018-04-17 03:50 AM
In response to Danny
Jump to solution

I don't remember saying that, but then again, I've probably forgotten more than I remember about Check Point Smiley Happy

You can look in $FWDIR/state/local/FW1 on the gateway...where you'll find all kinds of stuff.

View solution in original post

(1)
8 Replies
XavierBens
MVP Silver CHKP MVP Silver CHKP
MVP Silver CHKP
‎2018-04-16 06:51 AM
Jump to solution

Hi, you can use

cpstat fw

in order to find what policy package is installed on a Security Gateway.

For IPS, you'll have to use

ips stat

in order to check the ips status (active profile, update version, ...)

You can find such commands and lot more in the specific Admin Guide or on the CLI Reference Guide

Cybersecurity Evangelist, CISSP, CCSP, CCSM Elite
(1)
Christopher_Ta1
Contributor
‎2018-04-16 05:39 PM
In response to XavierBens
Jump to solution

I mean, show/list all the firewall policy not the install policy package

Danny
MVP Platinum
MVP Platinum
‎2018-04-16 09:33 PM
In response to Christopher_Ta1
Jump to solution

You want to see all the rules that are installed on the local gateway, right? This is possible starting from R80.10. https://community.checkpoint.com/people/dwelccfe6e688-522c-305c-adaa-194bd7a7becc mentioned the file that contains all the rules a while ago. Let me check and get back to your shortly.

0 Kudos
PhoneBoy
Admin
Admin
‎2018-04-17 03:50 AM
In response to Danny
Jump to solution

I don't remember saying that, but then again, I've probably forgotten more than I remember about Check Point Smiley Happy

You can look in $FWDIR/state/local/FW1 on the gateway...where you'll find all kinds of stuff.

(1)
kamran_shabir
Explorer
‎2019-07-29 08:21 AM
In response to XavierBens
Jump to solution

On R80.10, you can not see Active IPS profile by using command " ips stat  " , use following command

# cat $FWDIR/state/local/AMW/local.set | grep -A15 malware_profiles | grep ":name" | awk '{print $2}' | tr -d "()"

 

Danny
MVP Platinum
MVP Platinum
‎2018-04-16 09:18 AM
Jump to solution

Instead of looking for specific commands, you could also install our
Common Check Point Commands (ccc)
script and have them always interactively available.

JozkoMrkvicka
Authority
Authority
‎2018-04-17 12:13 PM
Jump to solution

fw stat

for policy status.

Kind regards,
Jozko Mrkvicka
David_Azoulay
Employee Alumnus
Employee Alumnus
‎2018-12-03 02:40 AM
Jump to solution

the following command will give you TP policy status:

fw stat -b AMW 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events