Scribd
Upload
1K views

Checkpoint Installation

The document provides instructions for installing Checkpoint Firewall software in a virtual environment and configuring basic settings. It outlines downloading the ISO image, creating a virtual hard disk, installing the software, and configuring the Security Management and Security Gateway components. Key steps include setting usernames and passwords, committing the configuration, configuring interfaces and routing, downloading the SmartConsole, and establishing communication between the Security Management and Gateway devices.

Uploaded by

kk
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
1K views

Checkpoint Installation

The document provides instructions for installing Checkpoint Firewall software in a virtual environment and configuring basic settings. It outlines downloading the ISO image, creating a virtual hard disk, installing the software, and configuring the Security Management and Security Gateway components. Key steps include setting usernames and passwords, committing the configuration, configuring interfaces and routing, downloading the SmartConsole, and establishing communication between the Security Management and Gateway devices.

Uploaded by

kk
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 56

CHECKPOINT FIREWALL

INSTALLATION AND BASIC SETUP


➢ Check_Point_R80.10_T462_Gaia.iso (IMAGE NAME)
➢ Download CP ( Checkpoint firewall from this link :
https://supportcenter.checkpoint.com/supportcenter/portal?action=portlets.DCFileAction&eventS
ubmit_doGetdcdetails=&fileid=73783
➢ mkdir /opt/unetlab/addons/qemu/cpsg-R80-10
➢ cd /opt/unetlab/addons/qemu/cpsg-R80-10
Upload the downloaded Check_Point_R80.10_T462_Gaia.iso image to the EVE /opt/unetlab/addons/qem
u/cpsg-R80-10 folder using for example FileZilla or WinSCP.
➢ mv Check_Point_R80.10_T462_Gaia.iso cdrom.iso
➢ /opt/qemu/bin/qemu-img create -f qcow2 hda.qcow2 80G
➢ Right Click on CP (Checkpoint Firewall) and Select Console VNC
➢ Please follow below step for installation on Checkpoint Security Mangament and Security Gateway

Now we will configure Checkpoint Firewall. (Start device and open that device on VNC )
And follow below steps to setup device
( This Username and password will use for all future installation)
➢ Enter Usename and password ( which we entered during ISO setup time)(admin/lab1234)
➢ Now we are going to commit image so we can use that image in future or in other lab)

Follow below steps


➢ Here we will going to configure Checkpoint Security Mangement.
➢ Here we are making connection from outside so we can access this firewall from our local
machine.
➢ Open Internet Exp and enter Checkpoint Mgmt. server IP address (https://192.168.1.40)
Now click on Go On the webpage
➢ Now Login with username and password ( admin/lab1234)

➢ Click Next
➢ Select R80.10 Configuration and click next

➢ Configured IP address you can see here , also you can change ip address but then again you will lose
the control here. Click Next
➢ Click Next

➢ Here also you can change Hostname, Give DNS server ip address for internet connectivity and
update, Click Next
➢ Select your time zone

➢ Click Next
➢ This is Security Management device so please select only Security Management and remove security
gateway.

➢ Here you can change Admin username and password , I selected default admin access.
➢ Click Next

➢ Click Finish
➢ Select Yes

➢ Here it will take more time for install all services


➢ Access SM (Security Mgmt from i.e browser)
➢ Installation steps for Security gateway.
➢ Enter Username and password
➢ Here you have to select Security Gateway
➢ SIC Key very important part of installation. using this we will setup communication between
SG and SM.
➢ On SG we will assign interface ip address and static route for communication.
Follow below step for primary configuration of SG interfaces and IP.
➢ Download Smart console from Security Gateway
(From Smart console we will access security management device and security gateway policy)
➢ Enter the IP address of Security Management. ( And username/password)
➢ Now we can see here Security Mgmt (SM) and he we are going to add Security Gateway
Enter here SIC Key which we have configured during security Gateway installation.
➢ This is the Security Gateway network topology which we configured after installation.
➢ Now in Security gateway we have local policy that policy we will remove from SG Cli to create
communication between SM and SG.

➢ (>Fw stat ) is the command to check firewall policy on SG cli


SG_GATEWAY> fw unloadlocal ( using this command we will remove this local policy)
Now we will configure Local rule for SM To SG communication using Smart console.( now this is
standard policy)
➢ Zone Assignment on SG interface (Please follow below all steps)

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy