Showing posts with label Check Point. Show all posts
Showing posts with label Check Point. Show all posts

Friday 5 October 2012

Login to CP FW with Your Public Key & Changing CP Root Password


After you login with Public key, there was a problem to switch to root access with su – command. 
When you type and change root password with...
#passwd

Although it says root password has changed, it does not change (like a bug).

To solve this issue;
After you give a password to root with the command below 
#/usr/bin/passwd root 

then,
changing mode with '#chmod 4755 /bin/su' is enough to resolve the problem. Now, you can get access from your user account (logged in with the public key) to root access. 

In my understanding, there is a permission issue on the directory placed above which does not allow us to change root password (Although it never says so). 

adios.

Posted by at No comments:
Labels:

Friday 28 September 2012

fw unloadlocal in safe@office!


There is no such a thing, but there is a useful command which can save the day too;

fw delete rule ?

<indexed rules>
1-15 // Depending on size of the rule table.

you may easily delete the last rule which is an implicit deny...
Posted by at No comments:
Labels:

Friday 21 September 2012

Erasing CMI Temp Files


Case: SmartDashboard could not be opened, giving the Connection and GUI Client Error. When the migrate export file used in sandbox, the problem did not persist. To resolve the issue; the CMI Temp files deleted and forced to be re-created on startup.

1. cpstop
2.  cd $FWDIR/conf
 mv applications.C applications.C.old
  mv applications.C.backup applications.C.backup.old
  mv CPMILinksMgr.db CPMILinksMgr.db.old
  mv CPMILinksMgr.db.private CPMILinksMgr.db.private.old

3. cpstart

Posted by at No comments:
Labels:

Thursday 6 September 2012

Large Directory Listing //Checkpoint

You can identify large directories on one filesystem (-x) by running:
du -kx /opt | sort -n

 You can identify the large files on one file system 
find .  -size +100000
Posted by at No comments:
Labels:

Thursday 17 May 2012

CheckPoint - Checking Duplex Settings of Interfaces in one go!


# for ii in $(ifconfig | awk ' /Ethernet/ {print $1}') ;do ethtool $ii; done | egrep  'eth|Speed|Duplex' 
Settings for eth0:
Speed: 100Mb/s
Duplex: Full
Settings for eth1:
Speed: 1000Mb/s
Duplex: Full
Settings for eth1.150:
Speed: 1000Mb/s
Duplex: Full
Settings for eth1.160:
Speed: 1000Mb/s
Duplex: Full
Posted by at No comments:
Labels:
Subscribe to: Posts (Atom)