Here are various notes I have on Check Point FireWall-1 4.0 that are not detailed enough to warrant their own Web page.
Adding a Management Console user
# ./fwm -a user
Deleting Management Console user
# ./fwm -r user
Displaying all Management Console users and associated permissions
# ./fwm -p
Manually loading a security policy
To manually install a CheckPoint FireWall security policy, use the "fw load" command, followed by the name of the policy, and the server destination.
Example:
# ./fw load /var/opt/CKPfw/conf/policy_file.W hostname
Empty security policy
If you see an empty security policy (i.e. you only see Standard.W) when using the Security Policy GUI, the $FWDIR/conf/rulebases.fws file may be corrupt. This could be caused by making a manual policy/object modification without coordinating the change in rulebases.fws. It is of course best to make modifications only through the Security Policy GUI.
More information:
http://groups.google.com/groups?hl=en&threadm=6etvds%243bq%241%40mailhost2.dtc.co.jp&rnum=1&prev=/groups%3Fq%3Dcheckpoint%2Bempty%2Bsecurity%2Bpolicy%26hl%3Den%26rnum%3D1%26selm%3D6etvds%25243bq%25241%2540mailhost2.dtc.co.jp
No comments:
Post a Comment