I have 2 Checkpoint GWs on R80.10 in a VSX Cluster..
Security Team has reported a Critical Vulnerability Stating the following :
IP of CP GW is mentioned as the Remote Host here
- An antivirus application is installed on the remote host but its not working properly
- Sophos antivirus for linux is installed on the remote host. However, there is a problem with the installation, either its services are not running or its engine/virus definitions are out of date.
However, the gateway is up to date with the latest IPS/Antibot and Antivirus Updates as verified from Smartconsole... How can i troubleshoot related to this sophos proxy , services etc? whether its updating correctly or not.
Thanks