Popular
Latest Articles
- How to Secure your Cisco Router
- Creating CLI Views on a Cisco Router
- Configuring TACACS+ on a Cisco Router
- How to enable SDM on your router
- Build a Samba Server on Redhat / CentOS
- How to set the Time / Date and Timezone in CentOS
- How to install SSH on Solaris 10 x86
- ESX4 - How do I turn on/off a Virtual Machine from the command line ?
Checkpoint - Ive pushed the Wrong Policy
Monday, 08 September 2008 11:35
Issue
There may be a time where you install the wrong policy onto a Checkpoint Firewall. This can block your connections, and screw which traffic is allowed through the firewall.
ResolutionThese steps will show you how to remove and reinstall the correct policy via the CLI on the manager (SCS),
- fw stat -l [firewall ip]
- fwm unload [fwname]
- fwm load [PolicyName].W [fwname]
Steps Explained,
- This will show you the policy history, so we can find out the name of the policy we need to reinstall.
- This will remove the security policy from the firewall.
- This will install the correct policy back onto your Firewall. Note how we add the .W to the policy name as it has yet to be be compiled into a .cf file (which is what is installed onto the Firewall/Gateway)
Additional Resources
We have 23 guests online