Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Hi,
I have been looking at rolling out Updatable Objects on our firewall policies, specifically for Zscaler at the moment. Is there a way to:
- Check in SmartConsole Logs when the Objects are changed/updated?
- Interrogate the contents of the Updatable Object on the Gateways themselves?
For context, I have looked at sk131852 (Updatable Objects (checkpoint.com)), sk173416 (How to manage access to external services using Updatable objects - FAQ (checkpoint.com)) and sk161632 (Domains Tool (domains_tool) (checkpoint.com)). The Domains_Tool is useful but only shows that domains are used, not IP addresses.
The admin guides shows the following, but it does not seem to work for me, or I cannot filter enough to see it!:
The InfoSec team within my Company would like to be able to audit the Updatable Objects periodically to ensure the dynamic access granted is correct and appropriate. Any help on this would be gratefully received,
Thanks
Andy
Thanks
Andy
1 Solution
Accepted Solutions
Thanks for the response. I can see within the "ONLINE_SERVICES" folders all the services listed:
If you "cat" one these services files you get the complete listing of domains and IPs associated with the services.
That should answer everything my infosec colleagues would required, so thanks for the point in the right direction. I appreciate it.
