Exporting Security Management Server Into Readable Format R80x

I wanted to tell everyone about how you can export your policy to plain text files. (sk120342)


  • Enter command line as expert
  • $MDS_FWDIR/scripts/web_api_show_package.sh ($FWDIR for smartcenter)
  • Copy the file over to laptop/desktop
  • Extract all files
  • Launch index.dat file









  • Open SmartConsole and view the rulebase you wish to export. From the rulebase’s toolbar select: ‘Action > Export’.

Check Point vSEC and securing the public/private cloud part 1

Hey everyone I wanted to talk about Check Points public/private cloud security solution called vSEC. I am going to make this a series of blog posts as the public/private cloud space is vast. So I will go through them one at a time.

The vSEC product is an exciting product that allows you to secure the East-West traffic while at the same time dynamically updating the physical gateways controlling the north-south traffic for a total holistic security solution. This allows the dynamic nature of the Software Defined Data Center (SDDC) and it’s agility and elasticity of an ever changing network that meets your needs, to apply equally to the security world. Gone are the days of non-stop change controls and a static security system that does not change without manual intervention. Now we have dynamic security in physical devices that keeps pace with dynamic virtual ones. This creates a new era in Data Center security.

Check Point vSEC leverages VMware NSX security automation for dynamic distribution and orchestration of vSEC for protecting East-West traffic. All while maintaining information sharing of the network to the physical world. If Check Point vSEC detects malware-infected VMs, it tags and automatically updates VMware NSX.

Meanwhile as the SDDC changes in location (IP’s etc) the Check Point infrastructure both virtual and physical are updated to reflect naming conventions as well IP address directly from vCENTER and the NSX controller.

I am currently working with my sales partner Jared Keesling and on occasion with Deanna Conrad. Both of which are rock star account managers here at Check Point. Together we are building a framework for the region that encompasses both security and the dynamic nature of today’s ever changing and growing network. Jared has helped build some amazing relationships in the Arizona, Las Vegas and New Mexico regions. Deanna has helped build some fantastic relationships in Education, Health Care and Government, here in this same region. Both of these superstar account managers have customers taking advantage of this great opportunity of security, automation, and elasticity of the vSEC product in their networks. I have been privileged to work with both of them as an SE.

Check Point Software realizes the importance of the virtual network both public and private cloud. In fact a recent forecast from predicted that a large portion of enterprise workloads will run in the cloud by mid-2018 either public or private.

It all adds up to an enlarged, complex and blurred attack surface for organizations, so they need a comprehensive solution to bridge security gaps and extend protections, visibility and control from data centers to the cloud in a way that works with the cloud’s elasticity and automation.

The use of cloud technologies both public and private such as VMware creates both a flexible and cost efficient landscape. However the new model of the hybrid datacenter can be more complex and requires a new approach to security. To stay ahead of threats, you need a modern security infrastructure designed for today’s dynamic networks. Check Point’s vSEC is a leap forward in security architecture, providing a modular, agile infrastructure that most importantly, is secure.