Press "Enter" to skip to content

Checkpoint Gaia FW Lost Connection to Management after a reboot

0

After rebooted one of cluster member, I found it lost the connection to Management Server for somehow. SIC, SSH, GUI all are not working anymore. Through Console, I could log into firewall and found this: [[email protected]]# cpconfigcpinst Error: Host name resolution for CP-FW-2 failed.                   Local host name resolution is required for normal…

ASA Memory Leak

0

CFWP2001/act/pri# sh startup-config | i 216.66.216.11CFWP2001/act/pri# wrBuilding configuration…No memory available Error executing command[FAILED]GDCM-CFWP2001/act/pri# show proc mem ————————————————————–Allocs   Allocated       Frees         Freed           Process          (bytes)                      (bytes)————————————————————–873      4214872         18    …

“GRE over IPSec” or “IPSec over GRE” ?

3

I was confusing IPSec over GRE this term before. Spent some hours to google Internet. Found out lots of people doesnot really understanding what are difference between them. Eventually found this answer at http://onlinestudylist.com/archives/ccie_security/2009-August/018744.html "There is no terminology as IPSec over GRE. It is always GREoIPSec.But the question, do you want to put the IPSec into GRE or GRE into IPSec.It…

Configuring Polycom Video Conference System – HDX 8000

1

My company is using Polycom solution to provide video conference for all branches. Recently there is a issue which one way video and audio from my site. What I found trick part is the firewall settings on Polycom. I would like to go through main configurations on our Device first: 1. On system settings page, set up name and other…

Enable SCP user on R75.40 Management Server

0

Enable SCP for SPLAT Smart-1 R75.40 Management Server 1) Login with the admin account 2) Enter Expert mode 3) Type adduser usernameadduser scpuser 4) Enter the password when prompted [[email protected]]# adduser scpuserEnter password: Enter password (again): User ‘scpuser’ was added successfully 5) Type vi /etc/passwd 6) Change the end of the line with the username from /bin/cpshell to /bin/bash It should look…

Enable Hidden 3D Report Tool on R75.40 SmartEvent Tool

0

What is 3D Report Tool? It analyze your network and provide a comprehensive security analysis report – exposing security risks and suggesting remediation. All security threats in one single report (High risk application and web sites, intrusions attempts, sensitive data loss, bandwidth hogging and more…) Easy-to-read graphical reports This service is free of charge No risk to your network environment…

Checkpoint SPLAT WebUI Error with browsers

0

Checkpoint SPLAT WebUI brings some crucial features when working on configuration or maintenance, especially for operations. In some certain environment, browser compatibility really bothers me a lot. Here is the envrionment: SPLAT version R75.40 (but same on R75.20 and R75.30) 1. Chrome 2. IE 8 Some machines I got the following error “You must include webisapi.js in order for webisBrowserSupport.js…

Sysconfig Command without first time configure wizard completed in Checkpoint appliance

0

Got a situation which has to remotely configure a factory reset checkpoint 2205 appliance. Unfortunately I have to do basic configuration from remote first until get internal interface configured proper ip, then I am able to run first time wizard to continue set up with new ip address. As we know after checkpoint appliance reset to factory, internal interface is…

Checkpoint SPLAT Manual Proxy ARP Configuration Example

0

Checkpoint manual NAT configuration is a quite useful method to remedy the weakness of auto nat . For me, I always mix them according to different scenarios although there are quite discussion which is better in a dispute  CPUG post. Use auto nat as possible as I can when starting projects or network, then slowly to roll out manually NAT when complexity components…