checkpoint questions - Page 1

thibon

Asked: 2016-06-18 02:29:32 +0800 CST

Windows - Log services access to certificate store

4

I have a software which run as a service (Checkpoint Identity Awareness) which connects to a server and verifies its identity (actually a checkpoint firewall) by checking its certificate, like any browser do. The problem is that this software keeps not recognizing the certificate presented by the server, although the certificate chain is present in the computer certificate store, and so in the service certificate store. This triggers a warning message saying that the gateway is untrusted.

To help me debug this issue, is there a windows event that log access to certificate store (reading), so I can see if the software actually tries to check the certificate?

I hope its clear enough

Pablo Santa Cruz

Asked: 2012-03-07 05:11:35 +0800 CST

Checkpoint VPN on Linux

7

I need to setup a Checkpoint VPN client with a customer who gave me these settings:

Authentication Type: P12 certificate
Password: *****
Peer Site: IP_ADDRESS

They tell me the VPN server is:

IPSO 6.2
CheckPoint R70.40

I have nothing more. I can connect with Checkpoint's Windows Client without issues.

What options do I have?

I read other related questions on this and other sites, but there is no definitive answer.

agnul

Asked: 2011-10-25 06:54:14 +0800 CST

Can I replace CheckPoint's SSL Network Extender (client) with some vanilla linux software?

3

I used to run CheckPoint's SSL Network Extender to connect to a customer's network, but it looks like 64bit support for Linux is nowhere in sight. Could I use something else to connect, e.g. OpenVPN?

user21014

Asked: 2010-02-11 03:32:59 +0800 CST

Home workers requiring simultaneous office VPN and local network access

4

I now have a large number of remote users that are using a Check Point Secure Client VPN connection into the office. These users also need access to network resources attached to their local router/hub (network storage and network printer). Is there any way that the client (Windows 7 or XP) can be configured to bypass the VPN for local addresses (192.*)

chmeee

Asked: 2009-07-01 01:03:26 +0800 CST

Reviewing firewall rules

12

I need to review firewall rules of a CheckPoint firewall for a customer (with 200+ rules).

I have used FWDoc in the past to extract the rules and convert them to other formats but there was some errors with exclusions. I then analyze them manually to produce an improved version of the rules (usually in OOo Calc) with comments.

I know there are several visualization techniques but they all go down to analyzing the traffic and I want static analysis.

So I was wondering, what process do you follow to analyze firewall rules? What tools do you use (not only for Checkpoint)?

Windows - Log services access to certificate store

Checkpoint VPN on Linux

Can I replace CheckPoint's SSL Network Extender (client) with some vanilla linux software?

Home workers requiring simultaneous office VPN and local network access

Reviewing firewall rules

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Questions[checkpoint](server)