This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
r1der
Advisor
‎2023-04-19 10:07 AM
Jump to solution

is_whitelist_domain_enable ?

When I'm saving our policy, this shows up next to the threat prevention policy. I'm not finding much information about this.

Has anyone seen this before, or what I should be looking for to fix this?

- is_whitelist_domain_enable: is_ok_for_whitelist_domain_look_for_any_at_global_tbl() returned false for services
--------------------------------------------------------------------------------

R81.10, Take 79.

tempsnip.png
Preview file
11 KB
0 Kudos
2 Solutions

Accepted Solutions
r1der
Advisor
‎2023-05-03 03:39 PM
In response to PhoneBoy
Jump to solution

TAC provided a fix and I'm no longer seeing the Info icon. 

View solution in original post

14 Replies
the_rock
Legend
Legend
‎2023-04-19 10:40 AM
Jump to solution

Never ever seen that before, not in any R80 or R81 flavor at all. I did look for it in Guidbedit and nothing came up.

PhoneBoy
Admin
Admin
‎2023-04-21 12:40 PM
Jump to solution

Recommend a TAC case to investigate: https://help.checkpoint.com 

r1der
Advisor
‎2023-05-03 03:39 PM
In response to PhoneBoy
Jump to solution

TAC provided a fix and I'm no longer seeing the Info icon. 

the_rock
Legend
Legend
‎2023-05-03 03:42 PM
In response to r1der
Jump to solution

Just curious, what was the fix?

Andy

0 Kudos
r1der
Advisor
‎2023-04-25 03:34 PM
Jump to solution

Thanks @the_rock and @PhoneBoy. I will update back when I hear from TAC. 

0 Kudos
the_rock
Legend
Legend
‎2023-04-25 03:36 PM
In response to r1der
Jump to solution

Let us know, Im super curious how it gets solved. I literally looked everywhere, as this was bugging me and cant find anything useful...sorry mate.

0 Kudos
Nik_Bloemers
Advisor
Advisor
‎2023-04-25 11:10 PM
In response to r1der
Jump to solution

Curious to see what the result from TAC is. I'm getting this message on multiple gateways as well now, but so far doesn't seem to impact anything (it also has like a blue 'informational' icon rather than a warning or error one.

0 Kudos
r1der
Advisor
‎2023-04-27 02:39 PM
In response to Nik_Bloemers
Jump to solution

TAC informed me there is a portfix (I think they meant postfix?) for it, and I am currently uploading cpinfo logs for it. Correct, there doesn't seem to be any impact to anything.

 

0 Kudos
the_rock
Legend
Legend
‎2023-04-26 05:38 AM
In response to r1der
Jump to solution

@r1der 

Just curious, when did you first notice this issue? I tried replicating this in my current R81.10 lab with same jumbo, newly built one as well and no success, it never comes up.

Andy

0 Kudos
r1der
Advisor
‎2023-04-27 02:38 PM
In response to the_rock
Jump to solution

I only noticed it on take 79. However, it could've been on there before that. TAC informed me there is a portfix (think they meant postfix) for it that they'll provide after submitting further cpinfo details.

0 Kudos
the_rock
Legend
Legend
‎2023-04-27 02:48 PM
In response to r1der
Jump to solution

They definitely meant portfix : ). Either way, does not matter the terminology, as long as it fixes the problem. Portfix simply means fix installed on top of your existing jumbo. Be mindful of those things, as you may end up asking for new portfix every single time in the future there is an issue...just saying, something to keep in mind.

Jones
Collaborator
Collaborator
‎2023-06-16 03:00 AM
In response to the_rock
Jump to solution

I'm also seeing the informational message. I'm on recommended JHF95 on R81.10, so it's not fixed maintrain. Do we need the portfix to get rid of the messages or can we just safely ignore it?

0 Kudos
the_rock
Legend
Legend
‎2023-06-16 05:00 AM
In response to Jones
Jump to solution

Personally, if everything works, then I assume you could ignore it. But, to be on a safe side, maybe open TAC case and send them this post or @r1der  can confirm what was the fix they were given in order to resolve this issue.

Cheers,

Andy

0 Kudos
r1der
Advisor
‎2023-06-16 12:28 PM
In response to the_rock
Jump to solution

@Jones per the notes on my case: 
"a private fix was provided to resolve this issue and requires a TAC case. 
fw1_wrapper_HOTFIX_R81_10_JHF_T79_560_MAIN_GA_FULL.tar - The fix will be installed on the SMS."

Based on R&D, this is an "unclear and unnecessary warning" that does not affect the functionality of the product.

I ended up uninstalling the fix because like @the_rock mentioned above, it will have to be ported over to the new Hotfixes.
So, you'd have to email TAC to upgrade to newer versions that has the fix. Otherwise you'd get a message "JHF Take XX is not allowed". 

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    In-Person

    Tue 18 Mar 2025 @ 09:30 AM (EET)

    CheckMates Live Greece
    In-Person

    Tue 25 Mar 2025 @ 09:00 AM (EDT)

    Canada In-Person Cloud Security with Hands-On CloudGuard Workshops!
    In-Person

    Tue 25 Mar 2025 @ 12:00 PM (MDT)

    Salt Lake City: CPX 2025 Recap
    In-Person

    Tue 08 Apr 2025 @ 12:00 PM (MDT)

    Denver: CPX 2025 Recap
    CheckMates Events
    Top