How to do packet capture in Juniper SRX? / How to use traceoptions in SRX?

How to do packet capture in Juniper SRX? / How to use traceoptions in SRX?

  February 27, 2019    Raj

---

 How to do packet capture in Juniper SRX? / How to use traceoptions in SRX? I have always been an ASA guy. When I first started working on SRX, I started comparing what I could do on ASA and how can I do that on SRX. On ASA you could do packet capture and very...

Read More

How to do packet capture in SRX? All commands at once.

How to do packet capture in SRX? All commands at once.

  February 27, 2019    Raj

---

How to do packet capture in SRX?  All commands at once. If you would to understand them then click here  >configure set security flow traceoptions file capin set security flow traceoptions file size 2m set security flow traceoptions flag basic-datapath set security flow traceoptions packet-filter p1 source-prefix 192.168.1.5 set security flow traceoptions packet-filter...

Read More

How to configure syslog on cisco ASA? / How to send logs to syslog server?

How to configure syslog on cisco ASA? / How to send logs to syslog server?

  February 15, 2019    Raj

---

Hello, Couple of engineers have asked me what commands are really required to make sure ASA is sending logs to syslog server. So I thought this could help someone else looking for it on Internet. So first thing you need is a syslog server's IP address. You can have a syslog server internal or external. Let's say we have a syslog server which is reachable from inside. Syslog server IP: 192.168.1.5 ==================================...

Read More

How to take the capture as pcap/wireshark format in Checkpoint?

How to take the capture as pcap/wireshark format in Checkpoint?

  February 04, 2019    Raj

---

How to take the capture as pcap/wireshark format in Checkpoint? Let's say you need to view the capture in wireshark. In that case it needs to be exported. In order to export the capture we need to save it.   Syntx: tcpdump -nni interface_name host IP_address_here -w/location/name.pcap [Expert@fw-checkpoint-raj:0]# tcpdump -nni eth2.2 host 10.197.112.5 -w/var/log/raj.pcaptcpdump: listening...

Read More

How to apply packet capture in Checkpoint?

How to apply packet capture in Checkpoint?

  February 04, 2019    Raj

---

How to apply packet capture in checkpoint? / How to apply tcpdump in Checkpoint firewall? For those of you who have been working on Cisco ASA, packet capture has been awesome thing so far and you really wish that it is available in every firewall. Well, it gets much easier with Checkpoint!! Really? Let's see then..... Like ASA, first thing we need to know is "On which Interface" we need a...

Read More

How to retrieve expert password on checkpoint via CLI? Forgot my checkpoint expert password.

How to retrieve expert password on checkpoint via CLI? Forgot my checkpoint expert password.

  February 04, 2019    Raj

---

This happened to me and I want to make sure I share it with you so that you can fix it by yourself. I forgot my "expert" password and needed to reset it. What you need to do is: login to the device with admin/root credentials: checkpoint-fw-raj> show configuration Run command "show configuration", look at the very bottom and look for this command: set user admin password-hash $1$6LgE8X45fg23987hgjsi34/234sak Now...

Read More

How to obtain config lock on checkpoint?

How to obtain config lock on checkpoint?

  February 04, 2019    Raj

---

Hello, I logged into my Checkpoint firewall via CLI and could see that it could not acquire the config lock because the lock is now owned by some other client. checkpoint-fw-raj>CLINFR0509  Could not re-acquire the config lock because the lock is now owned by some other client.CLINFR0509  Failed to maintain the lock. Command not executed. I need to enter this command: checkpoint-fw-raj>lock...

Read More