CheckPoint Firewall R80 Installation in VMware

                       CheckPoint Firewall R80 Installation in VMware





Hi Guys,
I tried to install the Checkpoint R80 IOS image in my VMware Lab. I perform the below steps to make it successful. See what happened during this process.

Step1:  In VMware I have select the following parameter:
              Disk: 120 GB
              RAM: 1 GB
              CPU Process: 1

          Core Process: 1  
Step 2:  Click on ok ok and assign the IP to the interface when it asks you for IP assign. At last when installation process will be done. It will ask you to reboot the system. So go for reboot and follow next step. 




Step 3:  Now as you can see it ask you to run the first time wizard. So go to the browser and type the assigned IP as https://x.x.x.x. For example, we have configured IP 192.168.0.110. So we will access
https://192.168.0.110 . On security check hit continue button and go further.








Step 4: Enter you username and password which you assign as the time of installation of OS.






Step 5: Now select next button to complete CP first time wizard. 





Step 6: you have four option here for installation. But as we are working in VMware with OS image so we will continue with the first option.




Step 7: Assigned IP will reflect in front of you. If you want to change it here then go for it. But your GUI portal will disconnect and It asks you follow all the steps at the beginning. Here we are not going to change the IP So go to next step. 






Step 8: Here you can Provide Host name to your device, Domain Name and DNS. If you have any proxy server and you want to connect then go for proxy setting. So leave proxy setting and select next.

 

Step 9: Now you have two option to sync time with the firewall.
1                            Either select your local PC time.


                               Configure NTP (if you have NTP then it recommended that go for it. )








Step 10: Here you have two option. But select first one as we are going for a basic deployment of the firewall management server.  MDS is Advance process in the checkpoint. Select next






Step 11: Here the option depends upon your requirement. If you want to make your VM as CP Management then check only Management. If you want to make it to the gateway then Check the only Gateway. If you want to make your device as Standalone Box then check both Options. Here I select Mgmt. as I want to make it CP Management and want to go for distributed deployment.



Step 12: Here you can see a new option in CP R80. Here is a new option to add a new admin. So depend on you either you can for old admin or want to add a new one. So I select new one and add username as “Administrator” and Password J  I am security engineer J





Step 13: Ok so who can access this Management box. So here I select any IP as I am using a test environment. But in a live environment, you need to specify Network of IP range for management subnet.





Step 14: So finally we have done. Now go for the finish and finalize the process. 





Select “YES”







Here we are going for complete the process J I am happy that now I will have access to checkpoint R80. 






What ?   Configuration Failed with error we need to add at least 2 CPUs.


OK, so I shut down the Guest and go to the “ VMware Machine Settings”. Now I have increased both the process up to 4 as you can see in both the below screenshot. 





Also, I have increased the RAM up to 2 GB as you can see.




Now it’s time to restart the OS once again and let’s see what happen next.




Now it does not ask me to configure first time wizard. I am happy :) Now it time to launch the smart dashboard R80. 

So when i tried to login in smart dashboard, see what happen :( 





So I check all the daemons in cli are they working fine or not. I found every service is working fine with checkpoint. So what i did i run the below command to check if any port block by my PC antivirus. 

netstat 1 -an | findstr <Mgmt IP>
And i found that on port 19009 only SYN packet is going and not any incoming traffic. So I uninstall the antivirus in my PC and try again to connect with my management. Now hurryyyyyyy
Its working fine and I am able to connect with the dashboard. Make sure you should have enough RAM to run the Smart dashboard.






Select TGZ file for hotfix installation not exe. 


Now its time to install the Jumbo Hot Fix which i download from Checkpoint Support. 
NOTE: You should have enough credential with checkpoint to download this file. 


So i login to GUI and try to import Jumbo hotfix as: 
















Now right Click on the installed HotFix, you will see four option.  So go through below step:
1. First verify it. 


2. Now go for installation of this HotFix. 





Once your hotfix will installed then you need to reboot your device. Otherwise select the check box for reboot and it will auto reboot after completion of this installation. 
I wish after that i will able to launch the dashboard. 



So Finally Installation done. Reboot Done. And now it show Installed Hotfix. See






I think now i should try to launch the dashboard. Let see will it work .....

Hurry :) I am able to login now.....




Please comment your review for this blog..









Comments

Post a Comment

Popular posts from this blog

Download IOS Image for Router

tcpdumps in Checkpoint Firewall