# cat /etc/cp-release
# fw ver
# uname -a
# cpinfo -y all
# clish -c 'show installer installed packages'
# clish -c 'show installer status build'
# clish -c 'installer agent update'
# cpvinfo /opt/CPda/bin/DAService|grep -E 'Build|Minor'
# unset TMOUT
# raid_diagnostic
# raidconfig status
# lvm_manager
# cipher_util
# ls -lA /var/log/dump/usermode/
# ls -lA /var/log/crash/
# last -20 -w
# last -20 -i
# pvs
# ls -lA /var/log/crash/
# ifconfig
# clish -c 'show configuration bonding'
# cphaprob show_bond
# cphaprob show_bond bond[ID]
# more /proc/net/bonding/bond*
# cpstat os -f ifconfig
# find /sys/class/net/*
# fw getifs
# fw ctl iflist
# fw ctl arp -n; arp -n
# dbget ip:arp:cache_size
# ip monitor all
# ip -ts monitor link
# ip route get 8.8.8.8
# netstat -rn
# fw stat -b AMW
# cpstat -f subscription_status antimalware
# cpstat -f update_status antimalware
# cpstat antimalware -f update_status
# cpstat urlf -f update_status
# cpstat threat-emulation -f update_status
# cpstat appi -f update_status
# fgate stat; fgate log stat
# cpstat threat-emulation
# cpstat threat-emulation -f file_type_stat_file_scanned
# tecli s s
# tecli s e e
# tecli s c i; tecli s c quo; tecli s c que
# tecli s t m; tecli s t h; tecli s t d
# cplic print -x
# cpstat os -f licensing
# cphaprob stat
# cphaprob -a if
# cpstat -f all ha
# cphaprob syncstat
# cphaconf cluster_id get
# clish -c 'show routed cluster-state detailed'
# cphaprob show_failover
# cphaprob mvc
# fw hastat
# db_tool -p /opt/CPsuite-R81.20/fw1/state/local/FW1 get_rules
# db_tool -p /opt/CPsuite-R81.20/fw1/state/local/FW1 get_layers
# more /cinfig/active
# clish -c "show configuration"
# cpstat fw -f policy
# ioc_feeds show
# fw tab -t sam_blocked_ips
# dynamic_objects -l
# fw ctl get int up_early_drop_optimization
# domains_tool -ip 8.8.8.8
⚠ fw unloadlocal; fw stat
⚠ fw fetch localhost; fw stat
⚠ fw fetch sms; fw stat
⚠ fw amw unload; fw stat -b AMW
⚠ fw amw fetch local; fw stat -b AMW
# vpn tu
# vpn tu mstats
# vpn tu tlist
# vpn6 tu
# vpn6 tu mstats
# vpn6 tu tlist
# vpn overlap_encdom
# fw tab -f -t vpn_routing -u
# vpn shell tunnels show IPSec all
# cpstat -f statistics vpn
# stattest gettable 1.3.6.1.4.1.2620.1.9002.1
# vpn dump_psk
# vpn ipafile_check $FWDIR/conf/ipassignment.conf
# grep -c aes /proc/cpuinfo
Heiko Ankenbrand has been performing computer security work for over 28 years and has worked with Check Point products since 1996.
I am an active participant at the Checkmates user community as well as the Check Point User Group and frequently lends his expertise to solving problems posted by Check Point administrators all over the world. I also deal with Check Point architecture and performance issues.
Here is a brief overview of my current Check Point certifications. You can find more badges from me atCredly:
