New pages
(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)
- 19:00, 16 April 2017 CLM object settings (hist) [745 bytes] Nighthawk (Talk | contribs) (Created page with "CLM objects_5_0.C settings for some log stuff ==logs > storage== <br>:log_delete_below_metrics (percent) <br>:log_delete_below_value (5) <br> :log_delete_on_...")
- 16:56, 15 February 2017 Gaia clish config example (hist) [110 bytes] Nighthawk (Talk | contribs) (Created page with " set interface eth1-05 ipv4-address 192.168.253.1 mask-length 24 set interface eth1-05 link-speed 1000M/full")
- 17:04, 6 December 2016 enabling and disabling CMAs (hist) [398 bytes] Nighthawk (Talk | contribs) (Created page with " == disable a CMA == # login to CMA with write privileges via SmartDashboard # mdsenv <cma|cma_ip> # chatter +i $FWDIR/tmp/manage.lock this make the manage.lock file undele...")
- 20:20, 14 November 2016 verify gaia vrrp preempt mode (hist) [125 bytes] Nighthawk (Talk | contribs) (Created page with "<src> [Expert@chkpfw1:0]# clish -c "show configuration" | grep preempt | awk '{print $(NF-1), $NF}' preempt-mode off </src>")
- 01:36, 25 October 2016 Setting the fwd daemon cpu affinity (hist) [986 bytes] Nighthawk (Talk | contribs) (Created page with "Performance Tuning Administration Guide R77 Allocating a Core for Heavy Logging If the gateway is performing heavy logging, it may be advisable to allocate a processing core ...")
- 01:51, 24 July 2016 nokia ipso verify hotfixes installed (hist) [134 bytes] Nighthawk (Talk | contribs) (Created page with "<source lang="bash"> # cpvinfo /opt/CPsuite-R75.20/fw1/boot/modules/fwmod.o | grep -i minor Minor Release = foxx_hf_ha30_390 </source>")
- 04:40, 15 June 2016 cpstat examples (hist) [4,733 bytes] Nighthawk (Talk | contribs) (Created page with " [Expert@chkpmgr3:0]# cpstat -h 192.168.175.2 -f policy fw Product name: Firewall Policy name: Standard Policy install time: Fri Jun 10 1...")
- 03:38, 10 June 2016 gaia list interface parameters on a single line (hist) [262 bytes] Nighthawk (Talk | contribs) (Created page with "clish -c "show interfaces" | grep -v -E "lo|Mgmt|Sync" | while read line; do printf "$line,"; for i in state link-state speed duplex ipv4-address auto-negotiation mtu monitor-...")
- 18:31, 7 June 2016 mgmt cli examples (hist) [106 bytes] Nighthawk (Talk | contribs) (Created page with "dump all rules mgmt_cli show-access-rulebase name Network use-object-dictionary false -u jsmith -p abc123")
- 13:49, 3 June 2016 fwd log buffer parameters (hist) [350 bytes] Nighthawk (Talk | contribs) (Created page with "[admin@chkpfw1 ~]# grep FW_ASYC_BUFFER_FOR_FWD /opt/CPshrd-R77/registry/HKLM_registry.data :FW_ASYC_BUFFER_FOR_FWD ("[4]3000") [admin@c...")
- 17:03, 13 April 2016 gaia setup via CLI (hist) [522 bytes] Nighthawk (Talk | contribs) (Created page with "we don't like wizards... == creating a config template == # config_system --create-template <template_name> edit the template and fill out fields per comments test the v...")
- 16:27, 20 February 2016 cpview log (hist) [2,112 bytes] Nighthawk (Talk | contribs) (Created page with " == example queries == using sqlite3 sqlite3 /var/log/CPView_history/CPViewDB.dat 'select datetime(Timestamp, "unixepoch") as loltime,inbound_throughput/1048576/10 as MBS_IN...")
- 22:39, 12 February 2016 check jumbo hotfix install status (hist) [52 bytes] Nighthawk (Talk | contribs) (Created page with " # installed_jumbo_take")
- 16:28, 18 January 2016 gaia 77.30 bug (hist) [689 bytes] Nighthawk (Talk | contribs) (Created page with "[Expert@chkpfw1:0]# clish -c "set user admin newpass abc1235" CLINFR0710 Illegal characters [Expert@chkpfw1:0]# clish -c "set user admin newpass abc1235" CLINFR0710 Ille...")
- 06:39, 4 December 2015 growing root partition (hist) [3,044 bytes] Nighthawk (Talk | contribs) (Created page with " Example 20GB disk space [Expert@chkpfw1:0]# '''df -h''' Filesystem Size Used Avail Use% Mounted on /dev/mapper/vg_splat-lv_current 4....")
- 16:23, 25 February 2015 show interface statistics for up interfaces only (hist) [965 bytes] Nighthawk (Talk | contribs) (Created page with "this will only work from the BASH shell, NOT csh. [root@myfw ~]# clish -c "show interfaces" | grep -B 1 " Up" | grep "Physical Interface" | grep -v -E "loop0|Tunnel" | awk...") originally created as "nokia IPSO show all up interface statistics"
- 22:49, 21 January 2015 set palo alto firewall management interface ip (hist) [112 bytes] Nighthawk (Talk | contribs) (Created page with " set deviceconfig system ip-address 192.168.2.1 netmask 255.255.255.0 category:PAN category:palo alto")
- 14:12, 8 October 2014 firewall log parsing scratch notes (hist) [744 bytes] Nighthawk (Talk | contribs) (Created page with " command run on "fw log" output to txt file... cat /var/tmp/CLM_2014-10-03_06-00-00_to_09-00-00.log.txt | awk -F ";" '{print $3}' | awk "{print $2}' | uniq -c | sort -rn |...")
- 17:33, 11 August 2014 disabling smartmap (hist) [270 bytes] Nighthawk (Talk | contribs) (Created page with " To disable SmartMap completely: # Backup and edit using vi the objects_5_0.C located at $FWDIR/conf on the active CMA / SmartCenter # Search for the line entry: totally_disa...")
- 05:03, 6 August 2014 enable or disable a Provider-1 CMA (hist) [533 bytes] Nighthawk (Talk | contribs) (Created page with " to disable a cma… 1) Connect to cma with write privledges, this creates a manage.lock file in $FWDIR/tmp/ 2) mdsenv <cma|cma_ip> 3) chattr +i $FWDIR/tmp/manage.lock, th...") originally created as "enable / disable Provider-1 CMA"
- 16:54, 25 July 2014 revoking Check Point administrator certificates (hist) [1,569 bytes] Nighthawk (Talk | contribs) (Created page with " == problem description == Sometimes the need arises to revoke a user's certificate via CLI. One such situation is one where an administrator account was deleted without fir...")
- 09:32, 16 July 2014 R77 upgrade via CLI (hist) [1,525 bytes] Nighthawk (Talk | contribs) (Created page with "This guide is for upgrading an existing Gaia check point device to R77, R77.10, or presumably R77.20. The source device can be R75.4x or above. In this example the firewall ...")
- 18:27, 12 July 2014 nokia legacy vrrp failover (hist) [1,020 bytes] Nighthawk (Talk | contribs) (Created page with "O.S. version: IPSO 4.2 If stuck working on and archaic firewall with a legacy vrrp setup, vrids must be failed over individually. The commands are below as shown by a one-l...")
- 17:54, 3 July 2014 local firewall rules.C file (hist) [46 bytes] Nighthawk (Talk | contribs) (Created page with " == file location == $FWDIR/database/rules.C")
- 20:33, 10 June 2014 shell inactivity timout (hist) [2,690 bytes] Nighthawk (Talk | contribs) (Created page with "shell timeout for ssh session is controlled by an environment variable called TMOUT. it is a ridiculously annoyingly low 180 seconds / 3 minutes by default for many check poi...")
- 21:02, 8 June 2014 nagios (hist) [81 bytes] Nighthawk (Talk | contribs) (Created page with "[http://patrick.proy.free.fr/nagios/index_commands.html]")
- 20:51, 6 June 2014 61000 O.S. global commands (hist) [381 bytes] Nighthawk (Talk | contribs) (Created page with " == OS global commands == Description: The global commands are utilities to run certain commands on multiple SGMs. This document is dealing with Operating System related com...")
- 07:57, 28 May 2014 enable bash history in Gaia and SPLAT (hist) [531 bytes] Nighthawk (Talk | contribs) (Created page with "by default, bash history is on but commands run are not save to the .bash_history file to be accessed upon you next login. [Expert@ckkpmgr]# s'''et -o | grep history''' his...")
- 20:23, 26 May 2014 running SmartConsole in wine on linux (hist) [1,768 bytes] Nighthawk (Talk | contribs) (Created page with " == versions == wine: 1.7.18 winetricks: 20140302 smartconsole: R77.10_T131_B990150213 O.S.: gentoo linux == prerequisites == install wine and winetricks on your distro == ...")
- 18:45, 19 May 2014 CMD (Chassis Monitor Daesmon) restart (hist) [1,073 bytes] Nighthawk (Talk | contribs) (Created page with " == indentify SGM blade running the CMD == run the following command and note the SGM ID for the CH Monitor [Expert@my61k-ch01-01]# '''asg stat -i tasks''' <br>Chassis ID:...")
- 02:17, 16 May 2014 SecureXL Mechanism (hist) [4,064 bytes] Nighthawk (Talk | contribs) (Created page with " == SecureXL Mechanism == Solution ID: sk32578 Product: SecureXL Version: All Platform / Model: All Date Created: 15-Feb-2007 Last Modified: 26-Mar-2014 Rate t...")
- 04:57, 13 May 2014 check point appliance documentation (hist) [228 bytes] Nighthawk (Talk | contribs) (Created page with " sk96246 [https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96246&js_peid=P-114a7bc3b09-10006&partition=General&p...")
- 19:02, 12 May 2014 How to add NATs and ARPs on Gaia with VRRP (hist) [1,369 bytes] Nighthawk (Talk | contribs) (Created page with " == add NAT rules == Step 1 - Add automatic or manual static NATs in the ruleset as normal. == configuring proxy ARP == Automatic arp is not compatible with firewalls using...")
- 21:45, 10 May 2014 12400 quick start guide (hist) [923 bytes] Nighthawk (Talk | contribs) (Created page with " == console == Configure the terminal emulation program settings: * Serial port settings: 9600 BPS, 8 bits, no parity, 1 stop bit. * Flow control is None. [[category:12000...")
- 04:36, 6 May 2014 ssl network extender on gentoo linux (hist) [3,280 bytes] Nighthawk (Talk | contribs) (Created page with " == install a java runtime environment JRE == == downloading snx == if you can find it on the support website, download it. I found it once, but had trouble finding it again...")
- 21:28, 2 May 2014 nokia cpu monitoring (hist) [1,595 bytes] Nighthawk (Talk | contribs) (Created page with "view individual cpu stats # top -SHp last pid: 61252; load averages: 0.31, 0.37, 0.35 up 229+17:51:01 21:2...")
- 06:01, 2 May 2014 inspect (hist) [194 bytes] Nighthawk (Talk | contribs) (Created page with " [http://etutorials.org/Networking/Check+Point+FireWall/Chapter+14.+INSPECT/Sample+INSPECT+Code/ http://etutorials.org/Networking/Check+Point+FireWall/Chapter+14.+INSPECT/Sa...")
- 05:56, 2 May 2014 geoprotection (hist) [2,252 bytes] Nighthawk (Talk | contribs) (Created page with "iptocountry data file location $FWDIR/tmp/geo_location_tmp/updates/IpToCountry.csv == file format == # FILE FORMAT IPV4 # ================ # # ---------------------...")
- 10:38, 27 April 2014 how stop annoying syslog messages to console on nokia ipso firewalls (hist) [280 bytes] Nighthawk (Talk | contribs) (Created page with " dbset syslog:action:user:admin dbset syslog:action:user:admin:selector:all.err dbset syslog:action:user:admin:selector:auth.debug dbset syslog:action:user:all dbset sys...")
- 02:52, 20 April 2014 Configuring Security Gateway Modules as Up or Down (asg blade admin) (hist) [829 bytes] Nighthawk (Talk | contribs) (Created page with "'''Configuring Security Gateway Modules as Up or Down (asg_blade_admin)''' '''Description''' Administer the Security Gateway Modules (blades). Administratively turn the blad...")
- 08:01, 19 April 2014 ipso password history checking (hist) [173 bytes] Nighthawk (Talk | contribs) (Created page with " to disable > set password-controls history-checking off to enable > set password-controls history-checking on category:nokia category:ipso category:clish")
- 00:12, 17 April 2014 Maximum concurrent connection and firewall memory (hist) [1,963 bytes] Nighthawk (Talk | contribs) (Created page with " Check Point firewall versions: All currently supported (R65-R77 as of this posting) <table border="1" cellspacing="4" cellpadding="4"> <tr> <td><strong>Concurrent connection...")
- 17:05, 15 April 2014 cmm notes (hist) [68 bytes] Nighthawk (Talk | contribs) (Created page with "FRU = Field Replaceable Unit category:cmm category:61000")
- 15:58, 15 April 2014 CMM Shelf Manager CLI Command Summary (hist) [14,138 bytes] Nighthawk (Talk | contribs) (Created page with "<TABLE CLASS="Titled" SUMMARY="Table that is numbered and titled" BORDER="1" CELLPADDING="5" CELLSPACING="0" DIR="LTR"><CAPTION CLASS="TableCaptionA-Wide"> Shelf Manager CLI ...")
- 15:24, 15 April 2014 get or set active / backup status from CMM CLI (hist) [923 bytes] Nighthawk (Talk | contribs) (Created page with "To get CMM (shmm) status after logging into the CMM, use the commands below. shmm500 login: admin Password: # clia shmstatus <br>Pigeon Point Shelf Manager Command Line ...") originally created as "get active / backup status from CMM CLI"
- 05:59, 12 April 2014 Configuring a Chassis as Up or Down (hist) [321 bytes] Nighthawk (Talk | contribs) (Created page with "Configuring a Chassis as Up or Down Syntax asg_chassis_admin -c <chassis_id> <down|up> Parameter Description chassis_id: ID of one chassis to be modified (1 / 2) down | u...")
- 05:23, 6 April 2014 get cmm status (hist) [433 bytes] Nighthawk (Talk | contribs) (Created page with " # asg_chassis_ctrl get_cmm_status Getting CMM(s) status CMM #1 -> Health: 0, Active: 1 CMM #2 -> Health: 0, Active: 0 Active CMM firmware version: 2.83 [Expert@PDM...")
- 17:38, 5 April 2014 creating a NON-CPSHELL new user on secureplatform (SPLAT) vi CLI (hist) [1,409 bytes] Nighthawk (Talk | contribs) (Created page with " == THIS PAGE IS UNDER CONSTRUCTION AND INCOMPLETE == I may not finish this page since Gaia has been out so long. The purpose would be to create a secure user account that c...")
- 16:59, 27 March 2014 local firewall objects database (hist) [1,759 bytes] Nighthawk (Talk | contribs) (Created page with "Firewall Versions: R65 to R75 (tested) Object information such as IPs can be gathered locally on the firewall. This is useful for situations where you might cat $FWDIR/con...")
- 15:24, 25 March 2014 61000 get cmm firmware version (hist) [1,394 bytes] Nighthawk (Talk | contribs) (Created page with " [Expert@my61k]# '''asg_version''' +--------------------------------------------------------------------------+ | Hardware Versions ...")