Check Point Firewall Discovery - Servicenow

Balaji34
Tera Contributor

Hi Team,

 

Our organization using the checkpoint firewall but servicenow is not supported as of now.

I am trying to discover Checkpoint firewall, but the Firewall classifier and we can able to discover with community string and only we couldn't able to get the serial no.

I see Patterns for other firewall manufacturers. I am at Tokyo version.

 

Is there any way to get the serial no for check point firewall or any other suggestion or solution with custom one will be helpful.

 

Thanks and Regards,

Balaji Kanniah

7 REPLIES 7

doug_schulze
ServiceNow Employee
ServiceNow Employee

I hope this can be of value, in building a pattern for an SNMP device it will show you how to load different mib's and create a pattern that can be ask the right questions for the type of device you are looking to discover.

Balaji34
Tera Contributor

Hi Doug,

As per your video , we have created the pattern in our TE Stage Environment.

We can able to debug the details serialno , model, manufacturer and IP address after published the pattern and re-run the discovery Model, manufactuer and IP address are not updating it with the current classification.

prerequisites are met as given below :

1.Classification added the snmp OID and added the pattern .

2. discovery log payload all values return but its not updated the values (Model, Manufacturer and IP Address)

3. pattern sync to mid servers.

2024-01-03 10:23:40: CIType 'cmdb_ci_ip_firewall': {name=us293fw502, serial_number=BA22802811
, model_id=CP 1550, firmware_version=R80.20, ip_address=163.241.50.42, sys_class_name=cmdb_ci_ip_firewall, manufacturer=Check Point Software Technologies Ltd}
CIType 'cmdb_ci_ip_address': {ip_address=10.131.19.179, ip_version=4, install_status=1, netmask=255.255.255.240, sys_class_name=cmdb_ci_ip_address}
CIType 'cmdb_ci_ip_address': {ip_address=163.241.50.42, ip_version=4, install_status=1, netmask=255.255.255.0, sys_class_name=cmdb_ci_ip_address}
CIType 'cmdb_ci_ip_address': {ip_address=172.19.20.2, ip_version=4, install_status=1, netmask=255.255.255.0, sys_class_name=cmdb_ci_ip_address}
CIType 'cmdb_ci_network_adapter': {install_status=1, netmask=255.255.255.0, mac_address=00:1c:7f:b2:0a:68, name=WAN, alias=3, ip_address=163.241.50.42, sys_class_name=cmdb_ci_network_adapter}
CIType 'cmdb_ci_network_adapter': {install_status=1, netmask=255.255.255.0, mac_address=00:1c:7f:b2:0a:69, name=LAN2, alias=5, ip_address=

 

I have attached the outcome after discovery run screenshot .

 

Could you please and advise if i am missing some step.

 

Thanks and Regards,

Balaji Kanniah

Richa19
Tera Contributor

Hi @Balaji34 , 
Can you help me with OID used to extract the serial number for the check point device?

 

Thanks,

Richa

Balaji34
Tera Contributor

Hi Richa ,  You can see it OID Table and rest might you can run discovery and see it as well.

 

Thanks and Regards,

Balaji Kanniah