lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <vd1JNbzpv1bI-BVv7ZV3qCNH7CQ8AcKmMC1P4yGCJuu1AZIh9toXC0cJwhLHv9l1Anhrwm0RKgQdUrJ64uVStVyqdKlJktD6Lvpfc4QZ_8c=@protonmail.com>
Date: Wed, 09 Apr 2025 15:37:46 +0000
From: Turritopsis Dohrnii Teo En Ming <teo.en.ming@...tonmail.com>
To: Linux Networking <netdev@...r.kernel.org>
Cc: "ceo@...-en-ming-corp.com" <ceo@...-en-ming-corp.com>
Subject: [NOTES] Installing Check Point Firewall R80.10 in EVE-NG CE 6.2.0-4 (based on Ubuntu Server 22.04.4 LTS)

Subject: [NOTES] Installing Check Point Firewall R80.10 in EVE-NG CE 6.2.0-4 (based on Ubuntu Server 22.04.4 LTS)

Author: Mr. Turritopsis Dohrnii Teo En Ming
Country: Singapore
Date: 9 Apr 2025 Wednesday

DETAILED INSTRUCTIONS
======================

EVE-NG Community Edition 6.2.0-4 is based on Ubuntu Server 22.04.4 LTS.

EVE-NG stands for Emulated Virtual Environment - Next Generation.

Below is the YouTube video guide I am following.

Reference YouTube video: How to download Checkpoint Firewall for free and add in EVE-NG
Link: https://www.youtube.com/watch?v=dxx6xgGcbNw

Download and install EVE-NG Community Edition 6.2.0-4, which is based on Ubuntu Server 22.04.4 LTS, on a bare metal physical machine with at least 1 NIC.

Upload Check Point Firewall ISO filename Check_Point_R80.10_T479_Gaia.iso to EVE-NG using WinSCP.

mkdir /opt/unetlab/addons/qemu/cpsg-R80-10

mv Check_Point_R80.10_T479_Gaia.iso /opt/unetlab/addons/qemu/cpsg-R80-10/cdrom.iso

cd /opt/unetlab/addons/qemu/cpsg-R80-10

/opt/qemu/bin/qemu-img create -f qcow2 hda.qcow2 20G

Login to EVE-NG Web-UI.

Create new lab add your newly created Checkpoint image, connect it to Cloud0 network.

Click on Add new lab.

Name: Checkpoint

Version: 1

Click Save.

unl_wrapper -a fixpermissions

Right click, select Node.

Select CheckPoint Security Gateway VE.

Console: choose vnc

Click Save.

Right click on Check Point Firewall (CP) icon and click Start.

Double click on the Check Point Firewall icon and click Open ultravnc_wrapper.bat

You will see "Welcome to Check Point Gaia R80.10"

Click Install Gaia on this system

Do you wish to proceed with the installation? Click OK

Keyboard Selection: US

Click OK

Partitions Configuration: Click OK

Enter your password and confirm it.

Click OK

Choose eth0 for the Management Port.

Click OK.

Management Interface (eth0)
=============================

IP address: 192.168.1.99
Netmask: 255.255.255.0
Default gateway: 192.168.1.1

Click OK

Confirmation: Click OK

Installation complete: Click Reboot

After rebooting, try to login at the Check Point Firewall console.

Login was successful.

Right click the Check Point Firewall icon and click Stop.

Right click the Check Point Firewall icon and click Edit.

Change the CPU from 4 to 2.

RAM (MB): 6144

Ethernets: 4

QEMU Version: 2.4.0

QEMU Arch: x86_64

QEMU Nic: tpl(e1000)

Console: telnet

Click Save.

Right click and select Network.

Type: Management(Cloud0)

Click Save.

Drag a connection from the Net icon to the CP icon.

Right click the Check Point Firewall icon and click Start.

Double click the Check Point Firewall icon and click Open SSH, Telnet and Rlogin client.

Access the Check Point Firewall web UI at https://192.168.1.99/ using your favorite web browser.

Enter your username and password and click LOGIN.

Run the "top" Linux command.

The qemu-system-x86 process frequently consumes 200% to 300% of CPU usage on Ubuntu Server 22.04.4 LTS. 
As a result, the Ubuntu Server is frequently unresponsive and extremely slow. 
How do I solve this problem?

The Check Point First Time Configuration Wizard takes FOREVER to load.

I have decided that I will not go through the Check Point First Time Configuration Wizard.

Right click the Check Point Firewall icon and click Stop.

cd /opt/unetlab/tmp/0/

Click on the Lab details on the left hand side menu.

Copy the UUID.

cd deba7f1a-1699-401c-9cf8-74ef69e34d8e

Right click on the Check Point Firewall icon. You will see 1.

cd 1

Commit the QCOW2 image.

/opt/qemu/bin/qemu-img commit hda.qcow2
Image committed.

cd /opt/unetlab/addons/qemu/cpsg-R80-10/

root@...-ng:/opt/unetlab/addons/qemu/cpsg-R80-10# du -h hda.qcow2
6.1G    hda.qcow2

root@...-ng:/opt/unetlab/addons/qemu/cpsg-R80-10# du hda.qcow2
6304264 hda.qcow2

Additional learning resources
==============================

[1] How to Add Check Point Firewall Images to EVE-NG
Link: https://networkhunt.com/how-to-add-check-point-firewall-images-to-eve-ng/

[2] How to add Checkpoint R81 Image in Eve-ng
Link: https://www.youtube.com/watch?v=KTRD67xGixQ

[3] How to create Check Point images 
Link: https://www.eve-ng.net/index.php/documentation/howtos/howto-add-checkpoint/

Next / Upcoming project: I will be installing Check Point Firewall QCOW2 image in Ubuntu Linux KVM host in the next few weeks. 
Today's work is just a preparation and to lay the ground work for my next project.

Regards,

Mr. Turritopsis Dohrnii Teo En Ming
Singapore
9 Apr 2025 Wednesday 11.30 PM

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ