- Products
- Learn
- Local User Groups
- Partners
- More
Access Control and Threat Prevention Best Practices
5 November @ 5pm CET / 11am ET
Ask Check Point Threat Intelligence Anything!
October 28th, 9am ET / 3pm CET
Check Point Named Leader
2025 Gartner® Magic Quadrant™ for Hybrid Mesh Firewall
HTTPS Inspection
Help us to understand your needs better
CheckMates Go:
Spark Management Portal and More!
I don't exactly know what you mean by wipe and rebuild, but let me try to summarise my CP ansible experience.
CP offers two ansible plugins: mgmt and gaia.
The mgmt plugin is simply said for managing the rulebase on the Checkpoint Management Server. The modules there are fine for doing "daily tasks" like adding/modifying/deleting objects (hosts, groups, networks, etc.) and rules but does not support any modification of general settings.
The gaia plugin does only supports changing hostnames, dns server and physical interfaces at the gaia system. There is not even a documentation for this on ansible (so the only docs is the code on github).
So I would recommend the mgmt plugin only for regular tasks, and the gaia plugin not at all at the moment. This really means at the moment. There are updates getting regularly published, so there is really a progress going on, but there is still a lot to do to really support managing the mgmt and gws with ansible.
If you don't want to wait, there is also the API documentation, so you could build modules yourself. The CP ansible modules only address the APIs, so if a new API appears, chances are, that they will appear as an ansible module as well.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY