This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
oa_munich
Contributor
‎2025-04-11 02:56 AM

Wake gateway using Wake on LAN

Hello all,

I tried to search for this, but was unable to find anything suitable.

Is it possible to wake a gateway using Wake on LAN (for disaster recovery automation)? I've tried sending WoL packages to all interfaces without any luck. Any chance I missed something and this could be done?

0 Kudos
11 Replies
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2025-04-11 07:51 AM

Don't believe so. Most likely this would be an RFE.

CCSM R77/R80/ELITE
0 Kudos
the_rock
MVP Platinum
MVP Platinum
‎2025-04-11 07:17 PM

I "ran" your question though few AI engines and they more less gave the same answer. Below is one from CP AI copilot.

Andy

**********************

Yes, it is possible to wake a gateway using Wake on LAN (WOL) for disaster recovery automation. However, there are some important considerations to keep in mind:

  1. Same Subnet Limitation: On SMB appliances, the Wake on LAN application or script can only broadcast "wake on lan" Magic Packets within one local subnet. Broadcast between different subnets is not supported. This means that both the device sending the WOL packet and the gateway must be on the same subnet.

  2. Configuration: You need to configure the gateway to allow Temporary Pre-boot Bypass (Wake on LAN) settings. This involves selecting the type of Temporary Pre-boot Bypass to allow and configuring when the selected type of Temporary Pre-boot Bypass occurs (By Demand, Once, or Weekly).

  3. Security Considerations: Ensure that the WOL feature is used securely and that the network is protected to prevent unauthorized wake-up attempts.

Here is a brief overview of the steps to configure Temporary Pre-boot Bypass (Wake on LAN):

  1. Enable Pre-boot Authentication: Password Synchronization only works if Pre-boot authentication is enabled.

  2. Configure Temporary Pre-boot Bypass:

    • Click Temporary Pre-boot Bypass (Wake on LAN) settings.
    • Select the type of Temporary Pre-boot Bypass to allow (e.g., Allow Temporary Pre-boot Bypass (Wake On LAN)).
    • Configure when the selected type of Temporary Pre-boot Bypass occurs (By Demand, Once, or Weekly).
    • Select the date and time.
    • In Temporary Pre-boot Bypass duration, select when Temporary Pre-boot Bypass functionality becomes disabled (e.g., Disable after X automatic logons or Disable after X days or hours).

  3. Save Configuration: Click OK to save the configuration.

Note: If the mouse is moved or a key is pushed on the keyboard in the Pre-boot environment, the Temporary Pre-boot Bypass functionality is disabled.

For more detailed instructions, you can refer to the relevant Check Point documentation or contact Check Point Support.

Best,
Andy
0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2025-04-14 01:30 AM
In response to the_rock

This is pure hallucinations - second part is taken from sk104419: Temporary Pre-boot Bypass from a script for Endpoint Security Clients running under windows. WOL is not supported by CP at all !

I do not understand why you keep posting such nonsense like above - did you not verify the content ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
_Val_
Admin
Admin
‎2025-04-14 01:35 AM
In response to G_W_Albrecht

Second this question. AI replies should always be verified, before sharing.

0 Kudos
the_rock
MVP Platinum
MVP Platinum
‎2025-04-14 03:59 AM
In response to _Val_

I would agree with that : - )

Andy

Best,
Andy
0 Kudos
_Val_
Admin
Admin
‎2025-04-14 01:35 AM
In response to the_rock

Sorry to say, but this is absolutely incorrect and useless, @the_rock 

0 Kudos
the_rock
MVP Platinum
MVP Platinum
‎2025-04-14 03:59 AM
In response to _Val_

K, fair enough : - )

Best,
Andy
0 Kudos
D_W
Advisor
‎2025-04-11 09:34 PM

If the device has no LOM then You can try to power cycle it with a „smart home“/remote controlled power outlet.

0 Kudos
oa_munich
Contributor
‎2025-04-11 11:30 PM
In response to D_W

Unfortunately power-cycling on the PDU doesn't help, at least on 6400 with redundant power, it just waits for power to be toggled by the power switch at the back.

Got the point on the LOM, but that's something requiring a user interaction.

Thanks for confirming my findings.

0 Kudos
_Val_
Admin
Admin
‎2025-04-14 01:11 AM

@oa_munich As other people already told you, this is not something that we currently support. What is your specific use case? Do you want to force GW to reboot? Or do you want to start a power-on cycle for your cold appliances? Can you please elaborate?

0 Kudos
oa_munich
Contributor
‎2025-04-14 01:43 AM
In response to _Val_

We have a subset of the data center on cold standby at another site. We power it up and down regularly to sync, and it would power up automatically in case of an actual disaster event. So far, the gateway is the only thing we can power down, but cannot power up remotely. I'll be keeping it up, I was just wondering if there was an option.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events