[隨手筆記] Check Point 功能設定

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

以下內容為皆為案件遇到內容，覺得可以記錄的小東西

Quantum Firewall

VPN流量統計(客戶詢問Report客製化無法呈現時發現的問題)
紀錄時間:2024/02/06

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果需要將VPN相關的使用者進行流量統計，需要特別開啟下面設定，才能夠在Log中看到流量，並且被Smartevent拿來使用，路徑位置在"SmartDashboard > Mobile Access > Logging"，基本上會使用的服務

ABR設定(協助客戶設定發現幾個細節要注意)
紀錄時間:2024/04/02

在設定PBR的時候我們會選擇至少一項當作條件即可，但是在ABR的情況下，如果我們設定選擇Policy後沒有指定如來源、目的地等，就會無法順利生效
Image Not Showing Possible Reasons
- The image was uploaded to a note which you don't have access to
- The note which the image was originally uploaded to has been deleted
Learn More →
按照範例設定，我們只能選擇目的地是SaaS物件的才能控制，如果可以使用應用程式控管會更方便，但是實際測試發現無法實現，底層也會出現錯誤訊息，查看限制也有說目前ABR並無法使用Application Control的功能
Image Not Showing Possible Reasons
- The image was uploaded to a note which you don't have access to
- The note which the image was originally uploaded to has been deleted
Learn More →
Image Not Showing Possible Reasons
- The image was uploaded to a note which you don't have access to
- The note which the image was originally uploaded to has been deleted
Learn More →

IPS Profile有個小符號(客戶要解決VPN漏洞問題，想說確認IPS阻擋的時候發現的)
紀錄時間:2024/05/31

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果在IPS Protection發現設定上有個小符號，他其實是暫存的意思，會讓該CVE防護都是偵測的模式，而非阻擋模式，需要調整設定，或點擊按鈕清除快取

如果開啟這個功能才會出現

Image Not Showing Possible Reasons

The image was uploaded to a note which you don't have access to
The note which the image was originally uploaded to has been deleted

Learn More →

測試VPN案件發現的，在不同的加密演算法有不同的速率
紀錄時間:2024/07/23

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果選擇的加密演算法沒有按照SK73980設定的話，就有可能損失效率實際測試跟Cisco在建立點對點VPN時候，選擇3DES建立並傳輸檔案，發現速率為8MB/s，如下圖如果將加密改成AES-128以及SHA1的話，發現速率增加至15MB/s，如下圖

Quantum Spark Firewall

測試客戶說SMB HA在Local模式下會無法立即同步問題
紀錄時間:2024/04/15

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

建立HA確認狀態完成後，設定SG-B(此時為Active)的Policy新增一條，此時登入SG-A的狀態只能看到設備資訊，無法設定。

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

進行切換後會直接看到Policy有更動過去

建立HA發現CPU Core異常，透過指令調整成功
紀錄時間:2024/04/15

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果建立HA完成後，在cphaprob stat查看狀態發現告知corexl問題可以這篇文章SK174423 https://support.checkpoint.com/results/sk/sk174423 調整CPU Core，預設在1530為3 core、1550為4 core 更改完成後查看HA狀態就正常了

Quantum Maestro

調整Security Group成員後須注意(執行完PEP問題排除發現的問題)
紀錄時間:2024/02/06

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果遇到一些狀況，需要調整原來的Security Group成員，更動完成後都需要注意每一台的防火牆JHF是否都一致，否則會遇到Build版本不同，開Case的時候會被懷疑問題原因是這個

Harmony Email & Collaboration

顯示Internal Server Error原因(某次POC遇到的問題)
紀錄時間:2024/02/06

Image Not Showing Possible Reasons

The image file may be corrupted
The server hosting the image is unavailable
The image path is incorrect
The image format is not supported

Learn More →

如果在POC階段有出現這個，通常是有延長Lic的時候，並且後臺尚未完成全部的更新，因此會在執行某些功能設定時候，跳出這個錯誤訊息

Image Not Showing Possible Reasons

The image was uploaded to a note which you don't have access to
The note which the image was originally uploaded to has been deleted

Learn More →