With older versions of Firewall-1, is there a way to get a list of the IP
addresses that Firewall-1 sees on the internal network that it is counting
towards your license?
If the internal network is a class C network, will Firewall-1 count IPs on
different class networks that are on the same ethernet?
--
Will
Will wrote:
> With older versions of Firewall-1, is there a way to get a list of the IP
> addresses that Firewall-1 sees on the internal network that it is counting
> towards your license?
"fw lichosts"
See also #sk10200 in the Check Point knowledgebase.
Br.
Robby
"Robby Cauwerts"
news:1166546946.985913.145720@f1g2000cwa.googlegroups.com...
> Will wrote:
> > With older versions of Firewall-1, is there a way to get a list of the
IP
> > addresses that Firewall-1 sees on the internal network that it is
counting
> > towards your license?
>
> "fw lichosts"
This command spits out human readable text for years worth of traffic on
that firewall. It's not even in a form of unique IPs, but seems to create
summary information for each unique IP encountered in a given time period.
Is there any way to get just a list of unique IPs without having to crawl
through a 300K file?
What is the relevant time period that FW1 looks at for counting the number
of unique IPs? Is it the last 24 hours, last hour, etc?
--
Will
On 11 jan, 06:14, "Will"
> > Will wrote:
> Is there any way to get just a list of unique IPs without having to crawl
> through a 300K file?
"fw lichosts" gives a detailed overview.
For a more brief summary try:
# fw tab -t host_table (eventually with the -f flag, "fw tab -t
host_table -f")
or
# fw tab -t host_table -s
PEAK is the maximum nr of host since the host_table was cleared
> What is the relevant time period that FW1 looks at for counting the number
> of unique IPs? Is it the last 24 hours, last hour, etc?
Since the last time the host_table was cleared.
Search the Check Point kb for sk10200. This article deals with license
issues.
Br.
Robby