fw ctl leak
Description
Generates leak detection report
Summary of network activity and Security Policy enforcement that is generated by Check Point products, such as SmartEvent.. This report is for Check Point use only.
|
|
Important - This command save the report into the active |
Syntax
|
|
Parameters
|
Parameter |
Description |
||
|---|---|---|---|
|
|
Runs the command in debug mode. Use only if you troubleshoot the command itself.
|
||
|
|
Shows the built-in help. |
||
|
|
Specifies to perform leak detection for potential leaks. This parameter is mutually exclusive with the parameter " |
||
|
|
Specifies to perform leak detection for all leaks. This parameter is mutually exclusive with the parameter " |
||
|
|
Dumps object data. This parameter is mutually exclusive with the parameter " |
||
|
|
Prints the action log. This parameter is mutually exclusive with the parameter " |
||
|
|
Specifies to perform leak detection for the specified internal object ID. |
||
|
|
Purges the internal objects from the lists. This parameter is mutually exclusive with the parameter " |
||
|
|
Shows summary only. This parameter is mutually exclusive with the parameters " |
||
|
|
Specifies the internal object types, for which to perform leak detection. Available internal object types are:
If you do not specify the internal object type explicitly, the command performs leak detection for all internal object types. |
Procedure
|
Step |
Instructions |
||
|---|---|---|---|
|
1 |
Connect to the command line on the Security Gateway |
||
|
2 |
Log in to the Expert mode. |
||
|
3 |
Back up the current /var/log/messages file:
|
||
|
4 |
Delete the information from the current /var/log/messages file:
|
||
|
5 |
Delete the information from the current dmesg buffer:
|
||
|
6 |
Generate the leak detection report (see the Syntax section above):
|
||
|
7 |
Make sure the command generated the leak detection report:
|
||
|
8 |
Collect the leak detection report:
|
||
|
9 |
Analyze the leak detection report:
|
Example
[Expert@MyGW:0]# cp -v /var/log/messages{,_BKP}`/var/log/messages' -> `/var/log/messages_BKP' [Expert@MyGW:0]# [Expert@MyGW:0]# echo '' > /var/log/messages [Expert@MyGW:0]# [Expert@MyGW:0]# dmesg -c [Expert@MyGW:0]# [Expert@MyGW:0]# fw ctl leak -s [Expert@MyGW:0]# [Expert@MyGW:0]# dmesg [fw4_0];fwleak_report: type chain - 0 objects [fw4_0];fwleak_report: type cookie - 0 objects [fw4_0];fwleak_report: type kbuf - 0 objects [fw4_0];fwleak_report: type connh - 0 objects [fw4_1];fwleak_report: type chain - 0 objects [fw4_1];fwleak_report: type cookie - 0 objects [fw4_1];fwleak_report: type kbuf - 0 objects [fw4_1];fwleak_report: type connh - 0 objects [fw4_2];fwleak_report: type chain - 0 objects [fw4_2];fwleak_report: type cookie - 0 objects [fw4_2];fwleak_report: type kbuf - 0 objects [fw4_2];fwleak_report: type connh - 0 objects [Expert@MyGW:0]# [Expert@MyGW:0]# cat /var/log/messages Sep 12 16:09:50 2019 MyGW kernel: [fw4_0];fwleak_report: type chain - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_0];fwleak_report: type cookie - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_0];fwleak_report: type kbuf - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_0];fwleak_report: type connh - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_1];fwleak_report: type chain - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_1];fwleak_report: type cookie - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_1];fwleak_report: type kbuf - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_1];fwleak_report: type connh - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_2];fwleak_report: type chain - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_2];fwleak_report: type cookie - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_2];fwleak_report: type kbuf - 0 objects Sep 12 16:09:50 2019 MyGW kernel: [fw4_2];fwleak_report: type connh - 0 objects [Expert@MyGW:0] [Expert@MyGW:0]# cp -v /var/log/messages{,_LEAK_DETECTION}`/var/log/messages' -> `/var/log/messages_LEAK_DETECTION' [Expert@MyGW:0]# |