Requirements

1. Only CheckPoint Firewall is supported in this document.

2. Must activate the Access SN for Third party Correlated Application.

   

3. The zip file application must be imported into the CC to support.

Configuration on CheckPoint Firewall

It is required to Enable the API feature on the CheckPoint firewall, as shown below.

Configuration on Cyber Command

Navigate to System > Devices > Response Apps > CheckPoint to configure the CheckPoint Firewall.

Below is an example. The device IP is the CheckPoint firewall IP address; the device port is the CheckPoint firewall’s web console listening port (by default is 443). Then, input the RESTFUL API admin and password.

Function Supported in CheckPoint Response Apps

The supported functions are as below:

1. Configuring the Add Reject Access Rule can block the Source and Destination.

   

2. Delete Access Rule support to remove the Rule UID push from CC to CheckPoint.

   

Result

The newly added Rule will be added to the checkpoint’s list.