Hi guys,
The success migration step with below detail:
Checkpoint Firewall Management migration plan
1. Change firewall IP address that connect to existing management
- Go to New mgmt on-prem via SmartConsole --> GATEWAYS & SERVERS
- Double click on gateway properties, On IPv4 Address: change from MaaS tunnel IP to MGMT IP.
2. Turn off the management tunnel where connected to existing management
- SSH to Gateways perform command:maas off
- Disable/Delete the maas_tunnel interface from topology: [Option]
3. Reset SIC on Firewall
- SSH to Gateway with export mode (without restart services)
cp_conf sic init [OTP] norestart
cpwd_admin stop -name CPD -path "$CPDIR/bin/cpd_admin" -command "cpd_admin stop"
cpwd_admin start -name CPD -path "$CPDIR/bin/cpd" -command "cpd"
4. Rejoin checkpoint gateways to new management
- Gateway Properies >
- Secure Internal Communication > Communication > Reset > Fill One-time password: [OTP]
- Install policy on gateways
6. Verification step
- Checkpoint firewall status on Dashboard.
- No alert on smartconsole dashboard
- Testing all blad are working fine.
7. Troubleshooting
- TAC involve
Thanks you for your help!!
