You can port scan the firewall or
sh run | i http server enable
Tuesday, 26 July 2016
add a route on checkpoint CLI
route add -net 10.5.140.0/24 gw 192.168.0.1 (works for lgma need write mode on FW you are adding the route on open the correct policy for each fw before making the change)
Remove a route worked on PH
route del -net 192.168.80.0/20 gw 192.168.80.51
route add -net 192.168.80.0/20 dev eth15
gives this kind of route
192.168.80.0 0.0.0.0 255.255.240.0 U 0 0 0 eth15
Maybe this in newer versions
https://supportcenter.checkpoint.com/supportcenter/portal%3FeventSubmit_doGoviewsolutiondetails%3D%26solutionid%3Dsk39746
clish (enter clish if no already there)
Watch out for NAT's you may need to add to grp_No_NAT
Remove a route worked on PH
route del -net 192.168.80.0/20 gw 192.168.80.51
route add -net 192.168.80.0/20 dev eth15
gives this kind of route
192.168.80.0 0.0.0.0 255.255.240.0 U 0 0 0 eth15
Maybe this in newer versions
https://supportcenter.checkpoint.com/supportcenter/portal%3FeventSubmit_doGoviewsolutiondetails%3D%26solutionid%3Dsk39746
clish (enter clish if no already there)
set static-route 192.168.0.0/24 nexthop gateway address 10.0.0.1 priority 1 on
save config
exit
netstat -nr | grep 192.168.0.0
Run on both FWs(works on REV fws)
Watch out for NAT's you may need to add to grp_No_NAT
There may be a static server NAT for the server.
Show routes
netstat -nr - show all routes
netstat -nr | grep 10.5.140
Show routes
netstat -nr - show all routes
netstat -nr | grep 10.5.140
185.5.241.204
Monday, 18 July 2016
Use nslookup to find the IP addresses of the domain controllers
You can use Nslookup is a command-line tool that displays information you can use to diagnose Domain Name System (DNS) infrastructure.
- Click Start, and then click Run.
- In the Open box, type cmd.
- Type nslookup, and then press ENTER.
- Type set type=all, and then press ENTER.
- Type _ldap._tcp.dc._msdcs.
Subscribe to:
Posts (Atom)