Added New Appliances to Lachmann List

 Security  Comments Off on Added New Appliances to Lachmann List
Apr 242020
 

I added the following new appliances to the Lachmann List:

  • Quantum 3800 (seems to be a rename of the Quantum 3600T)
  • Quantum 6400 (seems to be a rename of the Quantum 6200T)
  • Quantum 6700
  • Quantum 7000
  • Quantum16200 (seems to be a rename of the Quantum 16000T)
  • Quantum 28000 (seems to be a rename of the Quantum 26000T)

Would be nice to see some input about the CPUs from you.

New Lachmann List

 Security  Comments Off on New Lachmann List
Mar 022020
 

From now on the Lachmann List will not be a post every time something changed but a fixed page instead. You can reach this page via the link “Lachmann List” at the top of this page.

Many people sent me information on appliances in the past and I hope they will continue to do so. Check Point put a whole bunch of new appliances to the market in the last months – I call them “2019 Appliance Series“. There is much of information to gather. Please help me with that.

Feb 282017
 

For years Tobias Lachmann posted a list of Check Point hardware, for the last time on July 30th 2015. I am continuing and extending the list for the new appliances. Therefore I need your contribution. If you have an appliance at your fingers please be so kind to issue these commands
cat /proc/cpuinfo > lachmann.txt
cat /proc/meminfo >> lachmann.txt

and sent the file lachmann.txt with the appliance type as subject to lachmannlist@fink.sh. I will try to update the list by time.

Updates:

  • CPU and Memory for 1450 & 1470 (Thanks to Florian Hildinger)

Continue reading »

Feb 212017
 

For years Tobias Lachmann posted a list of Check Point hardware, for the last time on July 30th 2015. I am continuing and extending the list for the new appliances. Therefore I need your contribution. If you have an appliance at your fingers please be so kind to issue these commands
cat /proc/cpuinfo > lachmann.txt
cat /proc/meminfo >> lachmann.txt

and sent the file lachmann.txt with the appliance type as subject to lachmannlist@fink.sh. I will try to update the list by time.

Updates:

  • CPU and Memory for 1430 (Thanks to Florian Hildinger)

Continue reading »

Check Point Appliance Hardware (Lachmann List, Update February 10th 2017)

 Security  Comments Off on Check Point Appliance Hardware (Lachmann List, Update February 10th 2017)
Feb 102017
 

For years Tobias Lachmann posted a list of Check Point hardware, for the last time on July 30th 2015. I am continuing and extending the list for the new appliances. Therefore I need your contribution. If you have an appliance at your fingers please be so kind to issue these commands
cat /proc/cpuinfo > lachmann.txt
cat /proc/meminfo >> lachmann.txt

and sent the file lachmann.txt with the appliance type as subject to lachmannlist@fink.sh. I will try to update the list by time.

Updates:

  • New appliance 3100
  • New appliance 5100
  • New appliance 5900
  • Maxmimum memory for 5400
  • Maxmimum memory for 5600
  • Maxmimum memory for 5800
  • Maxmimum memory for 15400
  • Maxmimum memory for 15600
  • Maxmimum memory for 23500
  • Maxmimum memory for 23800

Continue reading »

SKO: New Check Point Appliances // VSX becomes adult

 Security  Comments Off on SKO: New Check Point Appliances // VSX becomes adult
Feb 092017
 

I am on my journey back from the Barcelona Sales Kick-Off of Check Point. We were presented the new appliances and while sitting at the airport I realize that they are already on the website. These are the new appliances: 3100, 5100 and 5900. The 5900 is really exciting with up to 32 GB RAM and dual hot-swap HDD or SSD. This system seem to fit perfectly between 5800 and 15400.

VSX R77.30 is quite a good implementation with some annoying flaws – but really worth using it. The now announced features for VSX in R80.10 and beyond will make it even a by far more mature OS. I am really looking forward to the first implementations. Stay tuned.

Check Point Appliance Hardware (Lachmann List, Update January 23rd 2017)

 Security  Comments Off on Check Point Appliance Hardware (Lachmann List, Update January 23rd 2017)
Jan 232017
 

For years Tobias Lachmann posted a list of Check Point hardware, for the last time on July 30th 2015. I am continuing and extending the list for the new appliances. Therefore I need your contribution. If you have an appliance at your fingers please be so kind to issue these commands
cat /proc/cpuinfo > lachmann.txt
cat /proc/meminfo >> lachmann.txt

and sent the file lachmann.txt with the appliance type as subject to lachmannlist@fink.sh. I will try to update the list by time.

Updates:

  • CPU & Memory 1490 (Thanks to Christoph Murth)

Continue reading »

Jan 212017
 

Have you ever been frustrated that simple scripting is a problem when doing things on your Check Point firewall? There is a reason why compilers and scripting tools are very limited on such devices. The less options a potential attacker finds to do harm with the better.

As far as I remember from different trainings Check Point uses a GCC compiler to build the policies. But this compiler is said to be stripped down to a large extent.

And there exists Python within GAiA. I would not suggest to use this Python on a gateway, but on a management server it could be very useful.

This is how you start python:

[Expert@cp2205:0]# $FWDIR/Python/bin/python
Python 2.7.3 (default, Jun 27 2012, 14:41:05)
[GCC 3.2.3 20030502 (Red Hat Linux 3.2.3-20)] on linux2
Type "help", "copyright", "credits" or "license" for more information.
Python usage is limited in Check Point security gateway

The last line is true. We will see it in a few moments. Let’s try with a simple script: Continue reading »