My Check Point Blog

The Edge gets its policy from the SmartCenter server over the SofaWare Management Server process (sms).

The interval of pulling the policy is defined over Global Properties -> UTM-1 Edge Gateway -> Update configuration settings every XX minutes

If you want to update an Edge immideately, you can do this be using the WebUI (access your SmartCenter over http://:9283/) or you can use the command line.

The directory /opt/CPEdgecmp-R7x/bin contains the tool swcmd which can be used to issue commands directly to the Edge appliance.

swcmd UpdateNowAll will tell the Edges to update their policy immediately.

swcmd Reboot will reboot the gateway.

Tobias Lachmann

Check Point released a new firmware for the UTM-1 Edge appliance series.

As the release notes show, modifications were made for the new N-series appliances, along with some bug fixing.

The most interesting details:

- support for Endpoint Connect clients
- support for new USB modems
- times based rules are now supported

In the release notes some more features are listed, but with a reference that they will only work with hardware version 1.4.
I guess that is the hardware version of the new N-series appliances.

Nice features supporting hardware version 1.4

- 802.11n support
- GigabitEthernet support
- ore firewall throughput
- more VPN tunnels
- support for some more USB modems

Tobias Lachmann

This is an old one, but still valid:
When you use the build-in ADSL modem in an UTM-1 Edge, it will disconnect approx. after one hour.
To avoid this, connect to the command line of the appliance and issue set port adsl auto-sra mode disabled.

Tobias Lachmann

The UTM-1 Edge appliance may show the error that the Internet connections is continuously disconnected after about an hour when the embedded DSL modem is used.

There’s an easy way to solve this problem. Just issue the command set port adsl auto-sra mode disable on the CLI or over the WebUI following Setup->Tools->Command.

BTW: after updating the DSL firmware, it is recommended to totally disconnect the appliance from power instead of just rebooting.

Tobias Lachmann

A nice feature that comes with the UTM-1 Edge Appliances is the ability to establish an internet connection trough an USB modem.

I bought a used Huawei E220 from eBay and connected it the the box.

Then you go to the WebUI and choose Network -> Ports. There you can see that a USB device is connected to the UTM-1 Edge Appliance.

Click on Edit.

Now you can verify that the modem is recognized.

Click on Edit again to get to the properties of the USB modem.

Choose the right modem type from the Drop-Down menu. A list of all supported modem can be found here.

The APN is specific for the telecom provider you’re using, in this example it’s Deutsche Telekom T-D1 and the value is “internet.t-d1.de”

The PIN is specific for the SIM card that you’re using.

After applying the settings to the USB modem, you configure the device as primary Internet Connection.

The username for T-D1 is “t-d1″.

The password is also “t-d1″.

The number to be dialed is *99#

After a few seconds the box has logged into the internet through the USB modem and you can use the connection like any other internet access.

I find this very useful, for example for temporay access on an exhibition or for home users where no DSL is available.