Profile cover photo
Profile photo
John Fleming
4 followers
4 followers
About
Posts

Hi all, i'm a bit new to google+. I did a few searches for this and didn't really see what i wanted. What i'm trying to do is automate a rule object usage report against a Check Point Provider-1 (MDS) install.

My end goal is a usage report for global policy across a lot of firewalls. It seems like tufin doesn't have support for something like this out of the box from talking with support. I'm fine with that.

So I'm assuming I can do a API call to generate a rules and usage report for a given firewall correct? I'm also wanting the report to dive into group objects. I don't really care what the output is as long as it can be parsed (not pdf or html). CSV, JSON, XML are fine.

So if i could do rules and usage accross X firewalls i could then create a report based on that of global policy usage. Hope that makes sense and i can finally make some progress here. Getting pretty frustrated with how this has gone.

BTW I'll need local usage report of the same if that wasn't clear but for now global policy is my main focus.

Post has attachment
**
Hi all, quick and dirt post. So you're upgrading to R80.x and you're got none ascii stuff in the database(s). Here is a quick and dirt way to see what matches for Objects_5_0.c and rulebases_5_0.c. This will be shown as network_objects and rulebases in the ...
Add a comment...

Post has attachment
Installing and Using Google Authenticator for Two Factor Auth on a Checkpoint 750.
Hi all, in  Installing Kali Linux on a Checkpoint 750 SMB Gaia Emebedded Firewall  I dropped a hint about a reason to do this. Well here is an interesting use case. We can create a free stand alone 2 factor authentication system for VPN users using Google A...
Add a comment...

Post has attachment
Installing and Using Google Authenticator for Two Factor Auth on a Checkpoint 750.
Hi all, in  Installing Kali Linux on a Checkpoint 750 SMB Gaia Emebedded Firewall  I dropped a hint about a reason to do this. Well here is an interesting use case. We can create a free stand alone 2 factor authentication system for VPN users using Google A...
Add a comment...

Post has attachment
Installing Kali Linux on a Checkpoint 750
Hi all! Its been a little while since I posted something. I've had a little side project I've been working and I just got everything setup. I have a different write up describing how to install a Debian (ehem stable) chroot on a SD card in a 750. Well, I fo...
Add a comment...

Post has attachment
Installing Kali Linux on a Checkpoint 750
Hi all! Its been a little while since I posted something. I've had a little side project I've been working and I just got everything setup. I have a different write up describing how to install a Debian (ehem stable) chroot on a SD card in a 750. Well, I fo...
Add a comment...

Post has attachment

Post has attachment
How to build custom software for Gaia Embedded - 600/1100/700/1400 (not 1200R)
I recently... well maybe not that recently.. spent a few months working on building cross compilers that matched up %100 to a given Checkpoint Gaia Embedded system. Meaning, same libc (glibc 2.5, what a pain!), compiler version (based on glibc output) and k...
Add a comment...

Post has attachment
Meetup group created!
Hi everyone, if you live in south Florida (or close enough) you should join the Meetup! The South Florida Checkpoint Zdebug Group - SFCZG for short! We're just getting started with the meetup. We're researching a location somewhere in Miami. Might expand to...
Add a comment...

Post has attachment
Enhanced TCP logging options.
There is an interesting post on cpug about tcp logging options. You can get a lot more details on what happened to a tcp connection, such as when it expired, why it closed etc. Take a look! TCP State Logging sk101221
Add a comment...
Wait while more posts are being loaded