CheckPoint critical files
Below are some of
the various files and commands which you may find useful on a Checkpoint.
Smart Centre Server
$CPDIR/conf -
Contains parts of the CPShared system
* cp.license -
license of machine
* sic_cert.p12 - SIC
certificate
$FWDIR/lib - .def
files which are used when the rulebase is complied into inspection code for
Enforcement points.
$FWDIR/conf - the
rule base and the rest of the security policy can be found here.
* rulebases_5_0.fws
- Contains rulebases and duplicate in *.w files
* objects_5.0.C -
Contains all the objects. objects.C is created when sent to the Enforcement
Points
$FWDIR/conf/fwauth.*
- User Database, main file being fwauth.NDB
$FWDIR/conf/masters
- Defines the local log definition in Dashboard
$FWDIR/database/fwauth.*
- User Datbase, main file being fwauth.NDB
$FWDIR/log - Logs
Enforcement Point
$CPDIR/conf -
Contains parts of the CPShared system
* cp.license -
license of machine
* sic_cert.p12 - SIC
certificate
$FWDIR/conf/discntd.if
- Add interfaces you want to show as disconnected for ClusterXL.
Misc
/etc/sysconfig/netconf.C
- Used to configure interface as down, this is useful for ClusterXL when
interfaces have no link.
No hay comentarios:
Publicar un comentario