Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Forsaken_61
Explorer

Threat Prevention API - tecli emulations

Hi!

I'm having some weird issues with two on-prem Private Cloud Appliance boxes and however If files really are emulated on the boxes or not.


The communication to the two Private Cloud Appliances are handled by  the Threat Prevention API.


I did a test scenario were I loaded In tons of files for Threat Emulation. In my Smart Console I can see that I get a verdict on all the files and on which Private Cloud Appliance the file was analyzed on.
But It's here I get confused.


I ran the command "tecli show emulator emulations" on both my Private Cloud Appliances when I loaded in tons of files through the API. 

I got this result,
Pending emulating requests: 0
Running virtual machines: 0
Number of emulated files: 0

Isn't this weird? It's 0 on all. 

 

0 Kudos
2 Replies
G_W_Albrecht
Legend Legend
Legend

Use https://support.checkpoint.com/results/sk/sk106120 to resolve this !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Forsaken_61
Explorer

I'm not sure were In that SK I should look at. Please guide me which table of content I should look at to investigate my issue further.

  1. File Type is not among the supported types for Threat Emulation
  2. File size exceeded the maximum configured size in SmartDashboard
  3. File was filtered by the Static Analysis engine
  4. License on Threat Emulation Gateway has expired
  5. Hard Disk free space is below a pre-configured threshold
  6. The emulated file has not reached TED process
  7. The file has indeed reached the TED process, however was not emulated due to an error
  8. Related documents
  9. Related solutions
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events