While FSM connects to the Check Point management server or Provider1 CMA, it does not display the install target, and the import process cannot be completed.
FSM is trying to check for a license based on the install target IP address.
Use the file-based import method:
- Copy the configuration files from the remote Check Point management server to the local FSM server:
- Connect to the Check Point SmartCenter server using SSH or Telnet.
Note: This is not the Smart Dashboard client GUI. Connect to the server directly.
- Find the directory on the server where the Check Point management server software is installed. This may be defined by the
$FWDIR environment variable.
- Copy the file
$FWDIR/conf/objects_5_0.C to your local file system.
Note: There is also a file called
objects.C. This is not the correct file.
- Copy the file
$FWDIR/conf/rulebases_5_0.fws to your local file system.
- Extract the routing table with the
- Connect to the Check Point management console.
- If you are connecting to a Provider1 system, connect to the Customer Management Add-on (CMA) that manages the firewall.
cpstat os -f routing -h ipAddress > route.txt, where ipAddress is the IP address of the firewall module.
- Import these three files into FSM:
- In the Import Firewall dialog, select Import from FileSystem as the Import Method and Check Point as the Firewall Type.
- Click Next.
- In the Configuration Files section, browse to the three files you obtained previously in the corresponding fields.
- Click Finish.
For additional information on how to collect these files from a Check Point firewall, see the Check Point Firewalls section of the Data Collection help topic.