fw fetch
Description
Fetches the Security Policy Collection of rules that control network traffic and enforce organization guidelines for data protection and access to resources with packet inspection. from the specified host and installs it to the kernel.
Syntax
-
To fetch the policy from the Management Server
Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server.:
fw [-d] fetch -f [-i] [-n] [-r]
-
To fetch the policy from a peer Cluster Member
Security Gateway that is part of a cluster., and, if it fails, then from the Management Server:
fw [-d] fetch -f -c [-i] [-n] [-r]
-
To fetch the policy from the specified Check Point computer(s):
fw [-d] fetch [-i] [-n] [-r] <Master 1> [<Master 2> ...]
-
To fetch the policy stored locally on the Security Gateway
Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. in the default directory
$FWDIR/state/
:fw [-d] fetch local [-nu]
fw [-d] fetch localhost [-nu]
-
To fetch the policy stored locally on the Security Gateway in the specified directory:
fw [-d] fetchlocal -d <Full Path to Directory>
Parameters
Parameter |
Description |
||
---|---|---|---|
|
Runs the command in debug mode. Use only if you troubleshoot the command itself.
|
||
|
Specifies that you fetch the policy from a peer Cluster
|
||
|
Specifies that you fetch the policy from a Management Server listed in the |
||
|
On a Security Gateway with dynamically assigned IP address (DAIP), specifies to ignore the SIC |
||
|
Specifies not to load the fetched policy, if it is the same as the policy already located on the Security Gateway. |
||
|
Specifies not to update the currently installed policy. |
||
|
On a Cluster Member, specifies to ignore this option in SmartConsole For gateway clusters, if installation on a cluster member fails, do not install on that cluster
|
||
|
Specifies the Check Point computer(s), from which to fetch the policy. You can fetch the policy from the Management Server, or a peer Cluster Member.
|
||
|
Specifies the local directory on the Security Gateway, from which to fetch the policy files. |