How To Troubleshoot SIC-related Issues in Checkpoint GAIA

How To Troubleshoot SIC-related Issues in Checkpoint GAIA

How-To-Troubleshoot-SIC-related-Issues-in-Checkpoint-GAIA
How To Troubleshoot SIC-related Issues in Checkpoint GAIA:-
SIC or Secure Internal Communication is how communicating components authenticate between themselves and the Security Management Server. When successfully authenticated, communication between these components is secure.
This Check Point feature ensures that these modules can communicate freely and securely using a simple communication
initialization process,
The following security measures are taken to ensure the safety of SIC:-
  • Certificates for authentication
  • Standards-based SSL for the creation of the secure channel
  • 3DES for encryption
Almost everytime SIC issues are due to :-
1. mismatch in activation key or
2. sic ports being blocked
Today i am going to show you, How to troubleshoot mismatch SIC?
To do so login in to Firewall CLI by using Putty or any terminal emulator software.
To view SIC status enter the Fw > cp_conf sic status command.
As you seen in below image, My SIC status is Trust established.
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
But for this article, i am going to re-established. to do so enter the cpconfig command and choose the option number 5.
How-To-Troubleshoot-SIC-related-Issues-in-Checkpoint-GAIA
now enter Y for re-initialization and enter your activation key here.
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
then enter 9 to exit from this session
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
if you issue cp_conf sic status , it will show you trust un-established here.
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
now open your Smart Dashboard, Open Your Firewall gateway properties, In the general properties , Click on the Test SIC status.
How-To-Troubleshoot-SIC-related-Issues-in-Checkpoint-GAIA
it will give your Not communication error.
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
then click on the Communication tab and click on the Reset option
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
and enter your same authentication key here and click on the Initialize option to initilize your SIC again.
How-To-Troubleshoot-SIC-related-Issues-in-Checkpoint-GAIA

Now again click on the Test SIC status option again. it will show you your SIC is communicating now:-)
How-To-Troubleshoot-SIC-related-Issues-in-Checkpoint-GAIA
Now if you issue cp_conf sic status in CLI mode ,
How To Troubleshoot SIC-related Issues in Checkpoint GAIA
Hope you like my post.How To Troubleshoot SIC-related Issues in Checkpoint GAIA. Please Share with others.

Comments

  1. Please show us , how to rest SIC without restarting firewall

    ReplyDelete

Post a Comment

Popular posts from this blog

Download IOS Image for Router

tcpdumps in Checkpoint Firewall