Check Point - Useful Files/Directories

Below are some of the various files and commands which you may find useful on Check Point.

Smart Centre Server

$CPDIR/conf - Contains parts of the CPShared system
    * cp.license  - license of machine
    * sic_cert.p12 - SIC certificate
$FWDIR/lib - .def files which are used when the rulebase is complied into inspection code for Enforcement points.
$FWDIR/conf - the rule base and the rest of the security policy can be found here.
    * rulebases_5_0.fws - Contains rulebases and duplicate in *.w files
    * objects_5.0.C - Contains all the objects. objects.C is created when sent to the Enforcement Points
$FWDIR/conf/fwauth.* - User Database, main file being fwauth.NDB
$FWDIR/conf/masters - Defines the local log definition in Dashboard
$FWDIR/database/fwauth.* - User Datbase, main file being fwauth.NDB
$FWDIR/log - Logs

$FWDIR/conf/discntd.if - Add interfaces you want to show as disconnected for ClusterXL.

Misc

/etc/sysconfig/netconf.C - Used to configure interface as down, this is useful for ClusterXL when interfaces have no link.

Check Point Environment variables (most common ones)

$FWDIR FW-1 installation directory, with f.i. the conf, log, lib, bin
and spool directories.

$CPDIR SVN Foundation / cpshared tree.
$CPMDIR Management server installation directory.
$FGDIR FloodGate-1 installation directory.
$MDSDIR MDS installation directory. Same as $FWDIR on MDS level.
$FW_BOOT_DIR Directory with files needed at boot time.