Preconfiguring a Security Gateway

  1. Log on to your Check Point appliance.
  2. (Optional) Set a password for expert mode.
  3. Type the password to enter expert mode.
  4. Use the vi editor to open /var/opt/CPsuite-R80/fw1/conf/fwopsec.conf.
    Note:

    The image of the default configuration is for reference only. The actual file contents may vary.

  5. In fwopsec.conf, configure the SAM communication mode ports using one of the following options:
    • Secured connection (default port)

      • No changes in fwopsec.conf are necessary. The default port 18183 is used for the sam_server auth_port setting.

        Note:

        On Deep Discovery Director (Consolidated Mode), verify that the Check Point Open Platform for Security (OPSEC) Port setting at is also 18183.

    • Secured connection (user-defined port)

      • In fwopsec.conf, remove the comment sign (#) from sam_server auth_port: 18183 and then change the port number.

        Note:

        Configure the same port in fwopsec.conf and in the Check Point Open Platform for Security (OPSEC) Port setting on Deep Discovery Director (Consolidated Mode) at .

    • Clear connection (user-defined port)

      • In fwopsec.conf, remove the comment sign (#) from sam_server port: 0 and then change the port number.

        Note:

        Configure the same port in fwopsec.conf and in the Check Point Open Platform for Security (OPSEC) Port setting on Deep Discovery Director (Consolidated Mode) at .

  6. If changes were made to the fwopsec.conf file, save the fwopsec.conf file and restart your Check Point appliance.