Académique Documents
Professionnel Documents
Culture Documents
This guide was created and meant for configuration between Checkpoint Firewall and LCE Server.
The below screenshot was just only brief example of how its process being made. The actual event
may vary depending on the server configuration it self.
2. Open Smartdashboard and add new Host in Node section by right clicking Node > Node >
Host…
Note 1. Please insert name of the LCE host. (lce_commbank)
Note 2. Please insert IP Address of the LCE Opsec Server.
3. Make sure the new Host has been registered in Network Objects.
4. Now create a new Opsec Application. Open the Server and Opsec tab > right click on OPSEC
Application > New > OPSEC Application…
Note 1. Insert the OPSEC Application name. (lea_commbank)
Note 2. Put “lce_commbank” as the Host.
Note 3. Check only LEA in Client Entities.
6. The Communication now showing certificate for Opsec Client. Copy the value and click OK.
7. In Network Objects, open your Check Point Gateway (“fwdika”).
Note 1. Click button Test SIC Status.
8. In SIC Status, it showing communication between Checkpoint and LCE (host) Server.
12. Before generating Checkpoint certificate, first restart your Checkpoint with cmd “cprestart”.
13. Generate Checkpoint certificate key from LCE Server.
14. In LCE Server, expand to Opsec directory. And run lce_opsecd with cmd “./lce_opsecd”
Note 1. If everything went correctly, the LCE Opsec Server will start grabbing logs (fw.log)
from Checkpoint firewall.
Note 2. And the Host Node (and OPSEC Application) that created before is now gone. This
mean LCE Server and Checkpoint Firewall are successfully communication through OPSEC.