Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Duane_Toler
Advisor

show-simple-gateway and vpn-settings missing

I was checking a customer's management configuration today and noticed that the "vpn-settings" key was missing in the output.  I compared to another customer's management server, which worked correctly.  Both are R80.40 JHF 139 and standalone SMS.

 

Here's the JSON keys output, and the value of the "vpn" key (both are true):

 

 

[Expert@moon:0]# cpinfo -y FW1 |grep Take

This is Check Point CPinfo Build 914000219 for GAIA
	HOTFIX_R80_40_JUMBO_HF_MAIN	Take:  139

[Expert@moon:0]# mgmt_cli -r true -f json show simple-gateway name earth details-level full |jq -r 'keys,.vpn'

[

  "anti-bot",

  "anti-virus",

  "application-control",

  "color",

  "comments",

  "content-awareness",

  "domain",

  "dynamic-ip",

  "firewall",

  "firewall-settings",

  "hardware",

  "icon",

  "interfaces",

  "ips",

  "ipv4-address",

  "ipv6-address",

  "logs-settings",

  "meta-info",

  "name",

  "os-name",

  "save-logs-locally",

  "send-alerts-to-server",

  "send-logs-to-backup-server",

  "send-logs-to-server",

  "sic-name",

  "sic-state",

  "tags",

  "threat-emulation",

  "threat-extraction",

  "type",

  "uid",

  "url-filtering",

  "version",

  "vpn"

]

true

 

[Expert@mercury:0]# cpinfo -y FW1 |grep Take

This is Check Point CPinfo Build 914000219 for GAIA
	HOTFIX_R80_40_JUMBO_HF_MAIN	Take:  139

[Expert@mercury:0]# mgmt_cli -f json -r true show simple-gateway name officefw details-level full |jq -r 'keys,.vpn'
[
  "anti-bot",
  "anti-virus",
  "application-control",
  "color",
  "comments",
  "content-awareness",
  "domain",
  "dynamic-ip",
  "firewall",
  "firewall-settings",
  "groups",
  "hardware",
  "icon",
  "interfaces",
  "ips",
  "ipv4-address",
  "logs-settings",
  "meta-info",
  "name",
  "os-name",
  "platform-portal-settings",
  "read-only",
  "save-logs-locally",
  "send-alerts-to-server",
  "send-logs-to-backup-server",
  "send-logs-to-server",
  "sic-name",
  "sic-state",
  "tags",
  "threat-emulation",
  "threat-extraction",
  "type",
  "uid",
  "url-filtering",
  "usercheck-portal-settings",
  "version",
  "vpn",
  "vpn-settings"
]
true

 

Both of these gateways have site-to-site as well as Remote Access VPN communities configured and functional.  Any ideas? 🙂

 

Thanks!

0 Kudos
0 Replies