This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
pmship
Participant
‎2020-02-17 12:06 AM
Jump to solution

Couln't save sysctl variables

Hello!

Unfortunately i don't know right category for my question... Sorry!

I have CheckPoint 600 Appliance with R77.20.20 firmware. There is a proble like https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut..., but "To view this solution, Advanced access is required"... Pity.


I consider that this ploblem seemsed like ARP Flux, so sulution can be "sysctl -w net.ipv4.conf.all.arp_ignore=2", byt this work only before reboot... For a standard linux you should write this config to /etc/sysctl.conf for permanently save. But CheckPoint is not a standard linux, and have no /etc/sysctl.conf (if i've create it, checkpoint dont read that). 

Whot shoul i do to save "net.ipv4.conf.all.arp_ignore=2" config permanently???

 

0 Kudos
1 Solution

Accepted Solutions
8 Replies
_Val_
Admin
Admin
‎2020-02-17 03:52 AM
Jump to solution

SecureKnowledge article you want to access is irrelevant for SMB appliances. 

 

Before going any further, what is the issue with ARPs that you are facing?

0 Kudos
pmship
Participant
‎2020-02-17 06:06 PM
In response to _Val_
Jump to solution

Somtimes (not everytime) when host A from the same network as firewall want to know communicate with host B, he is sending ARP request in order to get the MAC address of host B, host B terned off that time, but firewall ansvers, that have this mac in his LAN. It won't be a problem if not IEEE 802.1X, but we have this technology, and switch considers that host B mac is on firewals port of switch, not on host B real port of switch.
We want to forbid firewall answers for ARP requests.

0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2020-02-17 05:49 AM
Jump to solution

Did you consult sk114531: Configuring Proxy ARP for Manual Static NAT on SMB appliances already ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
pmship
Participant
‎2020-02-17 06:07 PM
In response to G_W_Albrecht
Jump to solution

unfortunately, we have no "Advanced access"

0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2020-02-19 02:59 AM
In response to pmship
Jump to solution

Then contact TAC for help - you do have valid support ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2020-02-19 03:15 AM
Jump to solution

sk52520: How to run commands at boot on an SG80/600/700/1100/1400/1200R -- UserScript

sk111818: How to make kernel parameters survive reboot on SMB appliances

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
pmship
Participant
‎2020-02-19 11:58 PM
In response to G_W_Albrecht
Jump to solution

Ok, i successfully have resolved my problem by ```echo "sysctl -w net.ipv4.conf.all.arp_ignore=2" >> /pfrm2.0/etc/userScript```

_Val_
Admin
Admin
‎2020-02-20 12:09 AM
In response to pmship
Jump to solution

good to know!

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events