Information Security and Network Awareness

Hurricane Labs

Subscribe to Hurricane Labs: eMailAlertsEmail Alerts
Get Hurricane Labs: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Related Topics: PC Security Journal, Security Journal, Haiti EarthQuake

Blog Feed Post

Check Point Appliance LCD Configuration

Many of the mid to high-end Check Point appliances feature a built in LCD display and control panel. When an appliance is booted up, the display will show the appliance model and the Check Point logo, as pictured.

Check Point LCD Default Screen

The LCD and control panel buttons allow a user with physical access to an appliance to perform basic configuration tasks, such as changing the management interface IP address and default gateway, or reboot the appliance. In many cases, this may not be desirable. To restrict this access on an appliance running Check Point’s GAiA operating system, run the following command from the clish shell:

my­-firewall> set lcd access none

This will prevent any configuration changes from the LCD screen. There is also an option available which requires a numeric passcode to unlock the LCD display.

Check Point also offers various screensaver options for the LCD display. I’ve found that the most useful option is to display the time and hostname of the appliance on the LCD. This can be accomplished with the following command:

my-firewall> set lcd screensaver mode hostname

The screensaver change will not be displayed until the screensaver is reloaded or the appliance is rebooted. To allow this change to take effect quickly, you may adjust the screensaver timeout to a shorter timeframe, specified in seconds.

my-firewall> set lcd screensaver timeout 15

Then, press any button on the front panel (assuming LCD access is allowed), and then wait for the timeout to complete. Your Check Point appliance will now display the hostname and time as pictured:

Check Point Customized LCD Screen

The post Check Point Appliance LCD Configuration appeared first on Hurricane Labs.

Read the original blog entry...

More Stories By Hurricane Labs

Christina O’Neill has been working in the information security field for 3 years. She is a board member for the Northern Ohio InfraGard Members Alliance and a committee member for the Information Security Summit, a conference held once a year for information security and physical security professionals.