Security Basics mailing list archives
Re: Checkpoint Firewall Configuration
From: "Andrea Gatta" <andrea.gatta () gmail com>
Date: Tue, 29 Jan 2008 16:39:48 +0000
Hi, I guess that there are at least two ways to do that: - use the database revision control from the GUI. Bear in mind that this need to be maintained. Then you can simply work out main difference between one revision and another - use a script or anyway a batch procedure to check all the relevant files under $FWDIR/conf just to start. Here are stored all the critical files starting from global objects, users databases ad firewall policies. I'm quite sure there are some tools out in the wild that can help you out on this. Take into account that, depending on the way you deployed the firewall architecture(stand alone or distributed), you might need to make same checks on both management and firewall node side Cheers, Andrea On 29 Jan 2008 06:04:25 -0000, <global.infosec () gmail com> wrote:
We are in the process of auditing our Checkpoint confifuration. We need to capture the configuration details of the Firewall. The objective is to identify if any changes have occured to the configuration at any point of time. How do we capture the firewall configuration for Audit purpose? Thanks.
Current thread:
- Checkpoint Firewall Configuration global . infosec (Jan 29)
- Re: Checkpoint Firewall Configuration Andrea Gatta (Jan 29)
- RE: Checkpoint Firewall Configuration Hall, Spencer D (Jan 29)
- Re: Checkpoint Firewall Configuration Jason Thompson (Jan 29)
- Re: Checkpoint Firewall Configuration Louise Forrest (Jan 29)
- Re: Checkpoint Firewall Configuration Jurgen Vermeulen (Jan 30)
- RE: Checkpoint Firewall Configuration Dieter Sarrazyn (Jan 30)
- Re: Checkpoint Firewall Configuration c0unter14 (Jan 31)
- <Possible follow-ups>
- Re: RE: Checkpoint Firewall Configuration bill (Jan 30)
- Checkpoint Firewall Configuration David Glosser (Jan 30)
- Re: Checkpoint Firewall Configuration Andrea Gatta (Jan 29)