Checkpoint FW HA debugging.

Posted by admin on November 9th, 2009 | 0 comments

Some useful commands to help you if you need to debug a possible problem with HA or clusterXL services.

# cphaprob stat

This command shows you the current status of your ha configuration – ideally you will see OK’s rather than problem, it will also tell you the which node is the primary.

# cphaprob -ia list

This give you a bit more detail on any problems and which if any daemons have failed. So for example, if your fwd daemon has failed you would see a state of problem.

# cphaprob -a if

This shows you the interfaces, whether they are up, and whether they are running multicast or broadcast – this should be the same on the secondary node.

#fw stat

Shows you the host and the currently installed policy along with a list of your interfaces in use.

# netstat -i

Regular linux command, but useful as it shows you the state of your interfaces, and whether there is a possible network problem.

You can follow any responses to this entry through the RSS 2.0 feed.

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Comment Spam Protection by WP-SpamFree