Solved

checkpoint R75.30 URL doesn't work

Posted on 2014-10-09
9
180 Views
Last Modified: 2015-02-22
hi, I have 2 checkpoint devices working in a cluster. Primary checkpoint device has a problem with URL filtering - error message is failed to reload database and thus URL filtering is not working.
Could you please help me with the issue
0
Comment
Question by:dedri
  • 5
  • 4
9 Comments
 
LVL 61

Expert Comment

by:btan
ID: 40372071
For URL Filtering, each Security Gateway also has a local database that contains commonly used URLs and their related categorization. We can try to see if manual update can be done in each primary box. Rightfully, there is the local cache on each Security Gateway keeps URL categorization responses up to 3 days.

http://blog.lachmann.org/?p=239

To manually update the management server only:
On the Advanced > Updates pane of the Application and URL Filtering tab, click Update Management to update the management only.

You may also want to see newer release is recommended e.g. R75.47 (this is not latest though)
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk93450#URL%20Filtering

Anti-Virus / Anti-Bot / Application Control / URL Filtering update might fail on R75.40 / R75.40VS / R75.45 / R75.46 / E80.41
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk90700&js_peid=P-114a7ba5fd7-10001&partition=General&product=Anti-Virus,

Anti-Virus and URL Filtering update fails on the Standby member of ClusterXL in High Availability mode
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk43807&js_peid=P-114a7ba5fd7-10001&partition=Advanced&product=ClusterXL%22

Open a support case with CP
0
 

Author Comment

by:dedri
ID: 40419619
I tried the suggestion from http://blog.lachmann.org/?p=239 ,but I cannot find sfcontro file in the directory according to the article.
Also nothing is logged on the tracker, it doesn't matter what page I am trying to open
0
 
LVL 61

Expert Comment

by:btan
ID: 40420736
The CP forum (sk36398) stated on the Security Gateway:

    Go to the $FWDIR/uf/sc/update/incoming directory.
    Delete all of the files that match the syntax: sfcontrol.*
    Run the cpstop command.
    Run the cpstart command.
    Start the Web Filtering database update again.
0
 

Author Comment

by:dedri
ID: 40426513
There isn't such file like sfcontrol in this directory as I've already said in the above post
Here is an output:
[Expert@fw1]# cd $FWDIR/uf/sc/update/incoming
[Expert@fw1]# ls -l
total 188
-rw-rw----    1 root     root        86073 Nov  6 15:57 URL_Filtering.C
-rw-rw----    1 root     root        86073 Nov  6 15:57 URL_Filtering2.C
-rw-rw----    1 root     root          143 Oct  8 16:42 URL_Filtering2.entitleme                         nt.C
lrwxrwxrwx    1 root     root           45 Jan 16  2012 incoming -> /opt/CPsuite                         -R75.20/fw1/uf/sc/update/incoming
[Expert@fw1]# pwd
/opt/CPsuite-R75.20/fw1/uf/sc/update/incoming
[Expert@fw1]#
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 
LVL 61

Expert Comment

by:btan
ID: 40427485
possible to check out the kb as I have no access to them

Anti-Virus and URL Filtering update fails on the Standby member of ClusterXL in High Availability mode
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk43807

URL Filtering drops traffic with an "Internal Error" log
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk98743

sidenote (which you may know) - The Application and URL Filtering Database only updates if you have a valid Application Control and/or URL Filtering contract. By default, all new Application Control installations have a valid contract for 30
days.
0
 

Author Comment

by:dedri
ID: 40580212
this article didnt't help us, the problem still exist
0
 
LVL 61

Expert Comment

by:btan
ID: 40580926
looks a tough nut so do consider raising the support ticket. I was also thinking to re-cre ate the clustering again and check the HA setup as per in this post http://www.sysadmintutorials.com/tutorials/check-point/check-point-r75-cluster-setup/
0
 

Accepted Solution

by:
dedri earned 0 total points
ID: 40614418
we open a support ticket with checkpoint and they were not able to find a solution or workaround. They propose us to reinstall the checkpoint devices
0
 

Author Closing Comment

by:dedri
ID: 40624020
we open a support ticket with checkpoint and they were not able to find a solution or workaround. They propose us to reinstall the checkpoint devices
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now