Checkpoint相关配置

564次阅读
没有评论

1. 重置SIC密码

进入系统后台
尖角号模式下输入cpconfig
vm-gw> cpconfig
This program will let you re-configure
your Check Point products configuration.


Configuration Options:
----------------------
(1)  Licenses and contracts
(2)  SNMP Extension
(3)  PKCS#11 Token
(4)  Random Pool
(5)  Secure Internal Communication
(6)  Enable cluster membership for this gateway
(7)  Check Point CoreXL
(8)  Automatic start of Check Point Products

(9) Exit

Enter your choice (1-9) :5
Configuring Secure Internal Communication...
============================================
The Secure Internal Communication is used for authentication between
Check Point components

Trust State: Trust established

 Would you like re-initialize communication? (y/n) [n] ? y

Note: The Secure Internal Communication will be reset now,
and all Check Point Services will be stopped (cpstop).
No communication will be possible until you reset and
re-initialize the communication properly!
Are you sure? (y/n) [n] ? y
Enter Activation Key: 
Retype Activation Key: 
initial_module:
Compiled OK.
initial_module:
Compiled OK.

2. 进入专家后台

配置专家模式密码
	vm-gw1> set expert-password
  	Enter new expert password: 
		Enter new expert password (again):
  配置密码时不显示,直接输入即可
	vm-gw1> expert
  	Enter expert password: //输入专家模式密码

3. 端口抓包

CP专家模式为linux系统,使用tcpdump抓包
	tcpdump -i eth0 icmp
admin
版权声明:本站原创文章,由 admin2022-05-28发表,共计1112字。
转载说明:除特殊说明外本站文章皆由CC-4.0协议发布,转载请注明出处。
评论(没有评论)