Security News, Product Updates, Tutorials and more.

Cisco ASA Firewall Cluster Member Replacement

April 8, 2018

So one of your firewalls in your highly available cluster died. It happens. It’s not your fault. But, you have to put humpty dumpty back together again. Do it the wrong way, and you can erase your configuration and bring the cluster down! Prepare for Success Backup current configuration:  Use the more system:running-config command b.      Certificates [...]

Keep Reading

This Is Loyalty: Building Trust in a Competitive Marketplace

January 22, 2018

In many ways, setting up a new business has never been easier. But when it comes to building customer and employee loyalty, technology is no substitute for building relationships the old-fashioned way.

Keep Reading

Security Updates: August 4, 2017

August 4, 2017

Check Point Gaia Management SecurePlatform IPSO ClusterXL old or too-new arriving updates percentage is normal Database revisions are set to automatically delete ClusterXL old or too-new arriving updates percentage is normal ICMP out of state drops are disabled on gateway ClusterXL Avg missing updates per request under 20 Database revision control will not be deleted [...]

Keep Reading

Security Updates: July 19, 2017

July 19, 2017

Check Point Secure Internal Communication (SIC) is established Fan speed is within normal levels System temperature is high CPU temperature is high Power supplies are healthy Free memory level is acceptable More than 50% of packets are taking medium path More than 50% of packets are taking slow path ICMP inspection is enabled  

Keep Reading

Check Point Firewall – Find Your Top 5 Rules Used on the CLI

July 15, 2017

An easy way to find out your top 5 used rules in R76 and above from the CLI (command-line interface) on your Check Point firewall is to type cpstat blades.  The command is not super intuitive, but it does produce results. [Expert@CN-Gaia-A:0]# cpstat blades |grep -A9 "Top Rule" Top Rule Hits ----------------------- |rule index|rule count| [...]

Keep Reading

Security Updates: July 10, 2017

July 10, 2017

Check Point TCP start timer is default Drop out-of-state ICMP packets TCP session timeout is default Drop out-of-state UDP packets TCP end timeout is default Drop out-of-state TCP packets UDP session timeout is default Log out-of-state TCP drops ICMP session timeout is default Log out-of-state UDP drops Other protocol session timeout is default Log out-of-state [...]

Keep Reading

STDIN (Standard In) on Steroids

June 18, 2017

CyberSana provides a secure bridge into your infrastructure. The ability to type the same commands on multiple devices is used for triage, incident response, upgrades, baselines and general information gathering. Regardless of the destination, you can now easily type a command to all devices or specific target groups or individual devices.

Keep Reading

Check Point SecureXL – Automatically detect status and enable acceleration

June 12, 2017

When acceleration is enabled in Check Point, you will not see the entire packet. When troubleshooting, engineers often disable SecureXL acceleration and do not re-enable it.  Whether on the fly or on a scheduled basis, this is how you can ensure the entire infrastructure is running at an optimal state.

Keep Reading

Cisco AnyConnect Windows Client Vulnerability

June 8, 2017

A big congrats to Felix Wilhelm for finding and sharing this information. The release from Cisco: Time to Execute      

Keep Reading

Find your Check Point Management Station

May 31, 2017

In a large environment, finding the Check Point manager for a firewall can be challenging. Generally, in a MSSP, large enterprise or an acquisition/growth phase business, you will have a separate domain/CMA (Customer Management Add-on) for each customer, line of business, purpose or location. Each management station is unique and when there are hundreds of them [...]

Keep Reading