Open Frames Download Complete PDF Send Feedback Print This Page

Previous

Next

GetBulkRequest

The GetBulkRequest minimizes the number of protocol exchanges and lets the SNMPv2 manager request that the response is large as possible.

The GetBulkRequest PDU has two fields that do not appear in the other PDUs: non-repeaters and max-repetitions. The non-repeaters field specifies the number of variables in the variable-bindings list for which a single-lexicographic successor is to be returned. The max-repetitions field specifies the number of lexicographic successors to be returned for the remaining variables in the variable-bindings list.

If at any point in the process, a lexicographic successor does not exist, the endofMibView value is returned with the name of the last lexicographic successor, or, if there were no successors, the name of the variable in the request.

If the processing of a variable name fails for any reason other than endofMibView, no values are returned. Instead, the responding entity returns a response PDU with an error-status of genErr and a value in the error-index field that is the index of the problem object in the variable-bindings field.

Job Scheduler

You can use WebUI to access cron and schedule regular jobs. You can configure the jobs to run at the dates and times that you specify, or at startup.

Configuring Job Scheduler - WebUI

To schedule jobs:

  1. In the tree view, click System Management > Job Scheduler.
  2. Click Add. The Add A New Scheduled Job window opens.
  3. In Job Name, enter the name of the job. Use alphanumeric characters only, and no spaces.
  4. In command to Run, enter the name of the command. The command must be a UNIX command.
  5. Below Schedule, select the frequency (Daily, Weekly, Monthly, At startup) for this job. Where relevant, enter the Time of day for the job, in the 24 hour clock format.
  6. Click OK. The job shows in the Scheduled Jobs table.
  7. In E-mail Notification, enter the email to receive the notifications.

    Note - You must also configure a Mail Server.

  8. Click Apply.

To delete scheduled jobs

  1. In the tree view, click System Management > Job Scheduler.
  2. In the Scheduled Jobs table, select the job to delete.
  3. Click Delete.
  4. Click OK to confirm, or Cancel to abort.

To edit the scheduled jobs:

  1. In the tree view, click System Management > Job Scheduler.
  2. In the scheduled Jobs table, select the job that you want to edit.
  3. Click Edit. The Edit Scheduled Job opens.
  4. Enter the changes.
  5. Click Ok.

Configuring Job Scheduler - CLI (cron)

Description

Use these commands to configure your system to schedule jobs. The jobs run on the dates and times you specify.

You can define an email address to which the output of the scheduled job will be sent.

Syntax

To add scheduled jobs:

add cron job VALUE command VALUE recurrence daily time VALUE
add cron job VALUE command VALUE recurrence monthly month VALUE days VALUE time VALUE
add cron job VALUE command VALUE recurrence weekly days VALUE time VALUE
add cron job VALUE command VALUE recurrence system-startup
 

To delete scheduled jobs:

delete cron all
delete cron job VALUE
delete cron mailto
 

To change existing scheduled jobs:

set cron job VALUE command VALUE
set cron job VALUE recurrence daily time VALUE
set cron job VALUE recurrence monthly month VALUE days VALUE time VALUE
set cron job VALUE recurrence weekly days VALUE time VALUE
set cron job VALUE recurrence system-startup
set cron mailto VALUE
 

To monitor and troubleshoot the job scheduler configuration:

show cron job VALUE command
show cron job VALUE recurrence
show cron jobs
show cron mailto
 

Parameters

Parameter

Description

 
job

The name of the job.

command

The name of the command.

recurrence daily time

To specify a job for once a day, enter recurrence daily time, and the time of day, in the 24 hour clock format. For example: 14:00

.

recurrence monthly month

To specify a job for once a month, enter recurrence monthly month, and the specific months. Each month by number, and separate by commas. For example: for January through March, enter

1,2,3

recurrence weekly days

To specify a job for once a week, enter recurrence weekly, and the day by number, when 0 is Sunday and 6 is Saturday.

recurrence system-startup

Specify a job that will run at every system startup.

days
  • When the recurrence is weekly: To specify the days, enter the day by number: 0 is Sunday and 6 is Saturday.
  • When the recurrence is monthly: To specify the days, enter the day by number: 1 to 31.

Separate several days with commas. For example: for Monday and Thursday enter 1,4

time

To specify the time, enter the time in the twenty four hour clock format. For example: 14:00.

mailto

To specify a mail recipient, enter the email address. One email address per command. You must also configure a mail server.

 

Comments

Only Show commands provide an output.

Mail Notification

Mail notifications (also known as Mail Relay) allow you to send email from the Security Gateway. You can send email interactively or from a script. The email is relayed to a mail hub that sends the email to the final recipient.

Mail notifications are used as an alerting mechanism when a Firewall rule is triggered. It is also used to email the results of cron jobs to the system administrator.

Gaia supports these mail notification features:

  • Presence of a mail client or Mail User Agent (MUA) that can be used interactively or from a script.
  • Presence of a Sendmail-like replacement that relays mail to a mail hub by using SMTP.
  • Ability to specify the default recipient on the mail hub.

Gaia does not support these mail notification features:

  • Incoming email.
  • Mail transfer protocols other than outbound SMTP.
  • Telnet to port 25.
  • Email accounts other than admin or monitor.

Configuring Mail Notification - WebUI

To configure mail notifications recipient:

  1. In the tree view, click System Management > Mail Notification.
  2. In The Mail Server field, enter the server. For example: mail.example.com
  3. In the User Name field, enter the user name. For example: user@mail.example.com
  4. Click Apply.

Configuring Mail Notification - CLI (mail-notification)

Description

Use this group of commands to configure mail notifications.

Syntax

To configure the mail server and user that receive the mail notifications:

set mail-notification server VALUE
set mail-notification username VALUE
 

To view the mail server and user configurations:

show mail-notification server
show mail-notification username

Parameters

Parameter

Description

server

The IP address or hostname of the mail server to receive mail notifications. For example: mail.company.com

username

The username on the mail server that receives the admin or monitor mail notifications. For example: user@mail.company.com

 

Example

 
show mail-notification server

Output

 
Mail notification server: mail.company.com
 
 
 


Messages


You can configure Gaia to show a Banner Message and a Message of the Day to users when they log in.






 



Banner Message



Message of the Day







Default Message



"This system is for authorized use only"



"You have logged into the system"







When shown in WebUI



Browser login page, before logging in



After logging in to the system







When shown in clish



When logging in, before entering the password



After logging in to the system







Default state



Enabled



Disabled










Configuring Messages - WebUI


To configure messages:


  1. In the tree view, click System Management > Messages.
  2. To enter a Banner message, select Banner message.
  3. To enter a Message of the day, select Message of the day.
  4. Enter the messages.
  5. Click Apply.


Configuring Messages - CLI (message)


Description


Set or show a banner message or a message of the day. 


Syntax and Examples


To define a new banner message or message of the day:


set message banner <on|off> msgvalue <banner>


set message motd <on|off> msgvalue <message>




Examples:


set message banner on msgvalue "This system is private and confidential"


set message motd on msgvalue "Hi all- no changes allowed today"


To enable or disable the banner message:


set message banner on


set message banner off


To enable or disable the message of the day:


set message motd on


set message motd off


To show the messages:


show message all


show message banner


show message motd


To show if the messages are enabled or disabled:


show message all status


show message banner status


show message motd status


To delete the messages:


The delete command deletes the user defined message, not the default message. To prevent a message being shown, turn off the message.


  1. Delete the configured message
    delete message banner
    delete message motd
    

    This deletes the configured messages, and replace them with the default messages. 
    

  2. Disable the default messages:
    set message banner off
    set message motd off
    

To make multi-line banner message or message of the day:


You can add a line to an existing message. If you delete the message, all lines are deleted, and replaced with the default message. To add a line to an existing message:


set message banner on line msgvalue <message> 


set message motd on line msgvalue <message> 


Examples:


set message banner on line msgvalue Welcome


set message motd on line msgvalue "System maintenance today"


Session


Manage inactivity timeout (in minutes) for the command line shell and for the WebUI.


Configuring the Session - WebUI


  1. In the tree view, click System Management > Session. 
  2. Configure the Inactivity Timeout for the Command Line Shell.
  3. Configure the Inactivity Timeout for the WebUI.


Configuring the Session - CLI (inactivity-timeout)






Description



Manage inactivity timeout (in minutes) for the command line shell.







Syntax



set inactivity-timeout VALUE


show inactivity-timeout







Parameters







Parameter 



Description







inactivity-timeout



The inactivity timeout (in minutes) for the command line.









 










Core Dumps


A Gaia core dump consists of the recorded status of the working memory of the Gaia computer at the time that a Gaia process terminated abnormally. 


When a process terminates abnormally, it produces a core file in the /var/log/dump/usermode directory. 


If the /log partition has less than 200 MB, no dumps are created, and all dumps are deleted to create space. This prevents core dumps filling the /log partition.


Configuring Core Dumps - WebUI


To configure core dumps, enable the feature and then configure parameters.


To configure core dumps:


  1. Open the System Management > Core Dumps page.
  2. Configure the Core Dump parameters.
  3. Click Apply.
Core Dump Parameters






Parameter



Description







Total space limit



The maximum amount of space that is used for core dumps. If space is required for a dump, the oldest dump is deleted. The per-process limit is enforced before the space limit.


  • Range: 0-99999 MB
  • Default: 1000 MB






Dumps per process



The maximum number of dumps that are stored for each process executable (program) file. A new dump overwrites the oldest dump. For example, if there are two programs "A" and "B", and the per-process limit is limit is 2. "A" terminates 1 time and "B" terminates 3 times. The dumps that remain are: 1 dump for program "A", and 2 dumps for program "B". Dump 3 for "B" is deleted because of the per-process limit. The per-process limit is enforced before the space limit.


  • Range:  0 - 99999 
  • Default:  2









Configuring Core Dumps -CLI (core-dump)






Description



Configure Gaia core dumps.







Syntax



To enable or disable core dumps:


set core-dump enable


set core-dump disable


 


To set the total space usage limit:


set core-dump total VALUE


 


To set the number of dumps per process:


set core-dump per_process VALUE


 


To show the total space usage limit:


show core-dump total


 


To show the number of dumps per process:


show core-dump per_process


 







Parameters







Parameter 



Description







total VALUE



The maximum amount of space that is used for core dumps. If space is required for a dump, the oldest dump is deleted. The per-process limit is enforced before the space limit.


  • Range: 0-99999 MB
  • Default: 1000 MB






per_process VALUE



The maximum number of dumps that are stored for each process executable (program) file. A new dump overwrites the oldest dump. For example, if there are two programs "A" and "B", and the per-process limit is limit is 2. "A" terminates 1 time and "B" terminates 3 times. The dumps that remain are: 1 dump for program "A", and 2 dumps for program "B". Dump 3 for "B" is deleted because of the per-process limit. The per-process limit is enforced before the space limit.


  • Range:  0 - 99999 
  • Default:  2








  •  









System Configuration


Before you can configure IPv6 addresses and IPv6 static routes on a Gaia Security Management Server or Security Gateway you must: 


  1. Enable IPv6 support for the Gaia operating system and firewall product.
  2. Install an IPv6 license on the Security Management Server and enable it.
  3. Create IPv6 objects in SmartDashboard.
  4. Create IPv6 firewall rules in SmartDashboard.


Configuring the IPv6 Support - WebUI


  1. In the tree view, click System Management > System Configuration.
  2. In the IPv6 Support area, click: On.
  3. Click Apply.



						

						
							
					 
				

			

				
	

	


	
	

		
			

				

					Top of Page
					©2014 Check Point Software Technologies Ltd. All rights reserved.
					
						Download Complete PDF
						
						Send Feedback
						
						Print