local firewall objects database

From cpwiki.net
Revision as of 17:00, 27 March 2014 by Nighthawk (Talk | contribs)

Jump to: navigation, search
Check Point Profressional Services

Firewall Versions: R65 to R75 (tested)


Object information such as IPs can be gathered locally on the firewall. This is useful for situations where you might cat $FWDIR/conf/masters to check the manager and logger configurations. You might what the associated IP address but not want to take the time to look it up on the GUI.

The local firewall object information can be found in

$FWDIR/database/objects.C


# grep -A 200 -r ": (mysmartcenter" * $FWDIR/database/objects.C | grep -i ipaddr
objects.C-                      :ipaddr (192.168.1.100)

where mysmartcenter should be replaced with you object name of interest

a little cleaner command for bash on SPLAT or Gaia

# NAME="mysmartcenter"; grep -A 200 -r ": ($NAME" * $FWDIR/database/objects.C | grep -i ipaddr

ipso

# set NAME="mysmartcenter"; grep -A 200 -r ": ($NAME" * $FWDIR/database/objects.C | grep -i ipaddr