Checkpoint   Checkpoint – Nagios plugin to monitor ARP table in VSX



When suffering random network interruptions, a possible cause (and diffcult to find) is our firewall ARP table overflow. In Checkpoint systems, the Linux kernel Gaia is based on would log messages like "kernel: neighbour table overflow" to /var/log/messages.

After living two small crisis due to this problem (network scanning software and mask B networks are dangerous for the … Read more

Checkpoint   Checkpoint – Nagios plugin to monitor VS active connections



Having our Checkpoint VSX Virtual System active connections under control can be very important to avoid problems, configure a higher connection limit, be ready for growth (and so scalate our environment)…

Nagios and SNMP can be used to configure a VS connection monitor plugin:
Checkpoint - Nagios plugin to monitor VS active connections 1

Steps needed to configure the plugin:

  1. SNMP OID for virtual systems active connections
  2. Develop an script
Read more

Checkpoint   Checkpoint – SNMP return 0 value when querying virtual systems



When trying to perform SNMP queries in an VSX environment, data related to virtual systems may be returned always as 0 value. By default, R77.10 and R77.20 vsx systems behave this way. For example, this is an SNMP query to get the concurrent connections of the phisical VSX and its virtual systems:

# /usr/bin/snmpwalk -v1 -c public 10.0.5.5 vsxCountersConnNum
CHECKPOINT-MIB::vsxCountersConnNum.1.0 
Read more