Archive for the ‘VPN-1’ Category
they are located in $FWDIR/conf/db_versions/repository/<###>
Comments Closed
By default NGX R65 comes with a very limited max active connections number (was 25 000 in my case).
Thats very weak especially for big website hosting.
To increase that limit :
- Double clic on the gateway object
- go in the Capacity Optimization section
- then you can tune Maximum concurrent connections counter
There are two tools to export the policy to HTML, cpdb2html and cpdb2web.
1. Requirements
You must have Smartdashboard allready installed on the computer that will use cpdb2html.
- download Web_Visualization_Tool_R65.linux.tgz on the checkpoint website (R65 version in my case)
- extract and copy files in C:Program FilesCheckPointSmartConsoleR65PROGRAMcpdb2html
- go back in C:Program FilesCheckPointSmartConsoleR65PROGRAM and copy all dll files
- paste them in C:Program FilesCheckPointSmartConsoleR65PROGRAMcpdb2html
2. using cpdb2html
- run cmd for start menu -> run
- here is the command line :
#cpdb2html “C:progra~1CheckPointSmartConsoleR65PROGRAM\cpdb2html” C”:progra~1\CheckPointSmartConsole\R65\PROGRAM\cpdb2htmlout” 1.1.1.1 admin-user admin-password -o out.html
The tool will export the last saved policy, in other words, if you want to export another policy, just open un your Dashboard, load the policy you want and just save, exit and run the tool again.
make sure you use “progra~1″ instead of “Program Files” !!!
2. using cpdb2web
C:\Program Files\CheckPoint\SmartConsole\R65\PROGRAM\cpdb2html>cpdb2web.exe -s 1.1.1.1 -a
cert.p12 -p password -o “C:\Progra~1\CheckPoint\SmartConsole\R65\PROGRAM\cpdb2html\xsl\
xml” -l policy-name
this procedure works remotely
1/ run #idle 999
2/ check your disk space
It can be usefull to move /tmp on /var using links
4/ insert the R65 cd in your CD Drive
5/ mount the cd
#mount /mnt/cdrom
6/ run
#patch add cd
this command will start the installation program
cat /opt/CPshrd-R65/registry/HKLM_registry.data | grep HOTFI