A few days ago, one of our Check Point IAS M6 Firefly equiped, R70.20 Splat clusters, had a member fail due to "PLANAR VOLTAGE FAILURE", so says the IBM iLO event log. Since this is not solved by a simple power supply replacement, so an RMA replacement unit from Check Point was obtained. The new device came pre-loaded with R65 and no HFA's or hotfixes. So we distributed R70 Splat to the box via Provider-1, upgraded and everything was happy, with us seemingly cruising along on a smooth … [Read more...]
Check Point Firewall – Backup vs Snapshot
Backup procedures Check Point provides three different procedures for backing up (and restoring) the operating system and networking parameters on your appliances. • Snapshot (Revert) • Backup (Restore) • upgrade_export Each of these procedures backs up certain parameters and has relative advantages (such as: file size, speed, and portability), which are fully described in this article, together with detailed instructions as to how to carry out each procedure. Snapshot The snapshot … [Read more...]
Blue Coat ProxySG – ICAP, deferred scanning, and data trickling
Recently I was digging into a BlueCoat ProxySG / ProxyAV setup for ICAP and noticed some things that had room for improvement. Not a major overhaul, but some things that were missed from the best practices guide that just so happened to be causing a bit of an issue. Below is part of the small case study I completed to explain the options and differences between them, as well as my recommendations to management on how to proceed. Scope: At least once a month, if not more, I would hear … [Read more...]
Blue Coat Proxy – test http get
When troubleshooting user internet connection issues with a specific URL, that are returning the very unhelpful Blue Coat “TCP Error" message, I normally pop into the Blue Coat ProxySG appliance and run a test from the appliance to the URL in question. I will log into the ProxySG appliance via SSH, and issue the 'test http get' command below: test http get http://url-with-the-issue.xyz From this command you will receive enough information to identify if the site is having issues, maybe … [Read more...]
Blue Coat ProxySG – CLI Commands
Here is a list of Blue Coat ProxySG CLI commands, that I have compiled from my studies, Blue Coat documents, and places around the web. This is by no means an exhaustive or comprehensive list, but is rather meant to be a command line KB of sorts - mainly for my quick reference. The list is split into standard and privileged mode commands. If the list proves useful to you, please feel free to share the link with others. Also, if you see any typo's with anything, feel free to let me know! Blue … [Read more...]
Check Point Firewall – SPLAT CLI Commands
Here is a list of SPLAT CLI Commands commands for Checkpoint Secure Platform, that I have compiled from my studies, checkpoint documents, and places around the web. This is by no means an exhaustive or comprehensive list, but is rather meant to be a command line KB of sorts - mainly for my quick reference. The list is split into CP and FW commands. If the list proves useful to you, please feel free to share the link with others. Also, if you see any typo's with anything, feel free to let me … [Read more...]
Blue Coat ProxySG – Creating A Splash Page
There do not seem to be many up to date resources regarding the building of BlueCoat splash pages, or exception pages. Even the top Google search will point you to a BlueCoat document (578) that is dated "v3-0609" for June of 2009, or to another BlueCoat document (8577) that are pretty stripped down and provide only the bare essentials of user notification. Not to mention it really doesn't help out in a large environment with multiple BlueCoat proxy's and multiple layers of support personnel. I … [Read more...]