sudo dscacheutil -flushcache
sudo killall -HUP mDNSResponder
say cache flushed
Thursday, September 14, 2017
Checkpoint Firewall Ports
Check Point General Common Ports
PORT | TYPE | SERVICE DESCRIPTION |
---|---|---|
257 | tcp | FireWall-1 log transfer |
18208 | tcp | CPRID (SmartUpdate) |
18190 | tcp | SmartDashboard to SCS |
18191 | tcp | SCS to FW-1 gateway for policy install |
18192 | tcp | SCS monitoring of firewalls (SmartView Status) |
Check Point SIC Ports
PORT | TYPE | SERVICE DESCRIPTION |
---|---|---|
18209 | tcp | NGX Gateways <> ICAs (status, issue, or revoke). |
18210 | tcp | Pulls Certificates from an ICA. |
18211 | tcp | Used by the cpd daemon (on the gateway) to receive Certificates. |
PORT | TYPE | SERVICE DESCRIPTION |
---|---|---|
94 | TCP | Encryption IP protocols fwz_encapsulation (FW1_Eencapsulation) |
137 | Both | Netbios-ns NETBIOS Name Service |
138 | Both | netbios-dgm NETBIOS Datagram |
139 | Both | netbios-ssn NETBIOS Session |
256 | TCP | FW1 (fwd) policy install port FWD_SVC_PORT |
257 | TCP | FW1_log FW1_log FWD_LOG_PORT |
258 | TCP | FW1_mgmt FWM_SSVVC_PORT |
259 | TCP | FW1_clientauth_telnet |
260 | UDP | FW1_snmp FWD_SNMP_PORT |
261 | TCP | FW1_snauth Session Authentication Daemon |
262 | TCP | MDQ – mail dequer |
263 | TCP | dbs |
264 | TCP | FW1_topop Check Point SecureClient Topology Requests |
265 | TCP | FW1_key Check Point VPN-1 Public key transfer protocol |
8116 | UDP | Check Point HA SyncMode= CPHAP (new sync mode) |
8116 | UDP | Connection table synchronization between firewalls |
8989 | TCP | CPIS Messaging MSG_DEFAULT_PORT |
8998 | TCP | MDS_SERVER_PORT |
9000 | Command Line Port for Secure Client | |
10001 | TCP | Default CPRSM listener port for coms with RealSecure Console |
18181 | TCP | FW1_cvp Check Point OPSEC Content Vectoring Protocol |
18182 | TCP | FW1_ufp Check Point OPSEC URL Filtering Protocol |
18183 | TCP | FW1_sam Check Point OPSEC Suspicious Activity monitoring Proto (SAM API) |
18184 | TCP | FW1_lea Check Point OPSEC Log Export API |
18185 | TCP | FW1_omi Check Point OPSEC Objects Management Interface |
18186 | TCP | FW1_omi-sic Check Point OPSEC Objects management Interface with Secure Internal Communication |
18187 | TCP | FW1_ela Check Point OPSEC Event Loging API |
18190 | TCP | CPMI Check Point Management Interface |
18191 | TCP | CPD Check Point Daemon Proto NG |
18192 | TCP | CPD_amon Check Point Internal Application Monitoring NG |
18193 | TCP | FW1_amon Check Point OPSEC Appication Monitoring NG |
18201 | TCP | FGD_SVC_PORT |
18202 | TCP | CP_rtm Check Point Real time Monitoring |
18203 | TCP | FGD_RTMP_PORT |
18204 | TCP | CE communication |
18205 | TCP | CP_reporting Check Point Reporting Client Protocol |
18207 | TCP | FW1_pslogon Check Point Policy Server logon Protocol |
18208 | TCP | FW1_CPRID (SmartUpdate) Check Point remote Installation Protocol |
18209 | TCP | FWM CA for establishing SIC communication |
18210 | TCP | FW1_ica_pull Check Point Internal CA Pull Certificate Service |
18211 | TCP | FW1_ica_pull Check Point Internal CA Push Certificate Service |
18212 | UDP | Connect Control – Load Agent port |
18213 | TCP | cpinp: inp (admin server) |
18214 | TCP | cpsmc: SMC |
18214 | UDP | cpsmc: SMC Connectionless |
18221 | TCP | CP_redundant Check Point Redundant Management Protocol NG |
18231 | TCP | FW1_pslogon_NG Check Point NG Policy Server Logon Protocol |
18231 | TCP | NG listens on this port by default dtps.exe |
18232 | TCP | FW1_sds_logon Check Point SecuRemote Distribution Server Protocol |
18233 | UDP | Check Point SecureClient Verification Keepalive Protocol FW1_scv_keep_alive |
18241 | UDP | e2ecp |
18262 | TCP | CP_Exnet_PK Check Point Public Key Resolution |
18263 | TCP | CP_Exnet_resolve Check Point Extranet remote objects resolution |
18264 | TCP | FW1_ica_services Check Point Internal CA Fetch CRL and User Registration Services |
19190 | TCP | FW1_netso Check Point OPSEC User Authority Simple Protocol |
19191 | TCP | FW1_uaa Check point OPSEC User Authority API |
65524 | FW1_sds_logon_NG Secure Client Distribution Server Protocol (VC and Higher) |
Command to check on Checkpoint Bond Interface status
[Expert@fw01:0]# cphaprob -a if
Required interfaces: 3
Required secured interfaces: 1
Mgmt Disconnected non sync(non secured), multicast
bond0 UP non sync(non secured), broadcast, bond Load Sharing
bond1 UP non sync(non secured), broadcast, bond Load Sharing
bond2 UP sync(secured), multicast, bond Load Sharing
Required interfaces: 3
Required secured interfaces: 1
Mgmt Disconnected non sync(non secured), multicast
bond0 UP non sync(non secured), broadcast, bond Load Sharing
bond1 UP non sync(non secured), broadcast, bond Load Sharing
bond2 UP sync(secured), multicast, bond Load Sharing
[Expert@fw01:0]# cphaconf show_bond -a
|Slaves |Slaves |Slaves
Bond name |Mode |State |configured |in use |required
-----------+-------------------+------+-----------+-------+--------
bond0 | Load Sharing | UP | 2 | 2 | 1
bond1 | Load Sharing | UP | 2 | 2 | 1
bond2 | Load Sharing | UP | 1 | 1 | 0
Legend:
-------
UP! - Bond interface state is UP, yet attention is required
Slaves configured - number of slave interfaces configured on the bond
Slaves in use - number of operational slaves
Slaves required - minimal number of operational slaves required for bond to be UP
[Expert@fw01:0]# cphaconf show_bond bond0
Bond name: bond0
Bond mode: Load Sharing
Bond status: UP
Balancing mode: 802.3ad Layer3+4 Load Balancing
Configured slave interfaces: 2
In use slave interfaces: 2
Required slave interfaces: 1
Slave name | Status | Link
----------------+-----------------+-------
eth3-03 | Active | Yes
eth3-01 | Active | Yes
[Expert@fw01:0]# cat /proc/net/bonding/bond0
Ethernet Channel Bonding Driver: v3.2.4 (January 28, 2008)
Bonding Mode: IEEE 802.3ad Dynamic link aggregation
Transmit Hash Policy: layer2 (0)
MII Status: up
MII Polling Interval (ms): 100
Up Delay (ms): 200
Down Delay (ms): 200
802.3ad info
LACP rate: slow
Active Aggregator Info:
Aggregator ID: 1
Number of ports: 2
Actor Key: 33
Partner Key: 1
Partner Mac Address: 00:35:1a:d9:33:00
Slave Interface: eth3-03
MII Status: up
Link Failure Count: 1
Permanent HW addr: 00:1c:7f:61:90:50
Aggregator ID: 1
Slave Interface: eth3-01
MII Status: up
Link Failure Count: 1
Permanent HW addr: 00:1c:7f:61:90:4e
Aggregator ID: 1
Subscribe to:
Posts (Atom)