Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Antoine1
Explorer

Anti-Bot check last update

Hello,

I try to find when was the last time the antibot update occur unfortunatly i don't where it can be.

Nothing in the logs or in CLI with a cpstat.

Someone know where i can find this information, please? I'm in R80.10 version.

 

Thanks in advance,

Best regards,

Antoine

0 Kudos
5 Replies
PhoneBoy
Admin
Admin

There is not a local Anti-Bot database.
All necessary lookups should occur to ThreatCloud or a Private ThreatCloud appliance.
0 Kudos
Antoine1
Explorer

Thanks for your answer.

 

I have find the db_version on the firewall with "cat amw_status.C".

        : ("Anti Bot"

                :app_update_status (up-to-date)

                :app_next_update_description ("The next update will be run as scheduled.")

                :app_db_version (2001291327)

                :app_update_description ()

                :app_subscription_expiration_date ("Mon Jan 25 23:00:00 2021")

                :app_subscription_status (valid)

                :app_subscription_description ("Contract is up to date.")

Just need to find how get the db version on Checkpoint side and compare them.

0 Kudos
Antoine1
Explorer

Hello,

 

I think i have an answer, on a Checkpoint firewall anti-bot blade, he get a db_version who's register in the file :

cat $FWDIR/amw/update/amw_status.C

I can ask with a curl request Checkpoint what is the last version :

curl_cli -k https://secureupdates.checkpoint.com/AMW/v4/Version

 

On amw_status.C file we have the "db_version", with the curl request we got the "pkg_version".

Normaly they must be the same.

0 Kudos
Naseemh
Employee Alumnus
Employee Alumnus

I don't believe that is right. I checked on one of the gateway and it shows latest available version is 2004221514 while the installed version is 2004221516. 

Here is the relevant output: 

[Expert@gw-5e220f:0]# curl_cli -k https://secureupdates.checkpoint.com/AMW/v4/Version

:pkg_version (2004221514)

[Expert@gw-5e220f:0]# cd $FWDIR/amw/update
[Expert@gw-5e220f:0]# cat amw_status.C

:app_db_version (2004221516)

 

0 Kudos
Danny
Champion Champion
Champion

ccc can do this for you.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events