Check Point Firewall Discovery - Servicenow
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-15-2023 05:17 AM
Hi Team,
Our organization using the checkpoint firewall but servicenow is not supported as of now.
I am trying to discover Checkpoint firewall, but the Firewall classifier and we can able to discover with community string and only we couldn't able to get the serial no.
I see Patterns for other firewall manufacturers. I am at Tokyo version.
Is there any way to get the serial no for check point firewall or any other suggestion or solution with custom one will be helpful.
Thanks and Regards,
Balaji Kanniah
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-15-2023 09:38 PM
I hope this can be of value, in building a pattern for an SNMP device it will show you how to load different mib's and create a pattern that can be ask the right questions for the type of device you are looking to discover.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-03-2024 01:42 AM
Hi Doug,
As per your video , we have created the pattern in our TE Stage Environment.
We can able to debug the details serialno , model, manufacturer and IP address after published the pattern and re-run the discovery Model, manufactuer and IP address are not updating it with the current classification.
prerequisites are met as given below :
1.Classification added the snmp OID and added the pattern .
2. discovery log payload all values return but its not updated the values (Model, Manufacturer and IP Address)
3. pattern sync to mid servers.
2024-01-03 10:23:40: CIType 'cmdb_ci_ip_firewall': {name=us293fw502, serial_number=BA22802811 , model_id=CP 1550, firmware_version=R80.20, ip_address=163.241.50.42, sys_class_name=cmdb_ci_ip_firewall, manufacturer=Check Point Software Technologies Ltd} CIType 'cmdb_ci_ip_address': {ip_address=10.131.19.179, ip_version=4, install_status=1, netmask=255.255.255.240, sys_class_name=cmdb_ci_ip_address} CIType 'cmdb_ci_ip_address': {ip_address=163.241.50.42, ip_version=4, install_status=1, netmask=255.255.255.0, sys_class_name=cmdb_ci_ip_address} CIType 'cmdb_ci_ip_address': {ip_address=172.19.20.2, ip_version=4, install_status=1, netmask=255.255.255.0, sys_class_name=cmdb_ci_ip_address} CIType 'cmdb_ci_network_adapter': {install_status=1, netmask=255.255.255.0, mac_address=00:1c:7f:b2:0a:68, name=WAN, alias=3, ip_address=163.241.50.42, sys_class_name=cmdb_ci_network_adapter} CIType 'cmdb_ci_network_adapter': {install_status=1, netmask=255.255.255.0, mac_address=00:1c:7f:b2:0a:69, name=LAN2, alias=5, ip_address=
I have attached the outcome after discovery run screenshot .
Could you please and advise if i am missing some step.
Thanks and Regards,
Balaji Kanniah
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-22-2024 08:30 AM
Hi @Balaji34 ,
Can you help me with OID used to extract the serial number for the check point device?
Thanks,
Richa
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-21-2024 10:34 PM
Hi Richa , You can see it OID Table and rest might you can run discovery and see it as well.
Thanks and Regards,
Balaji Kanniah