CheckPoint / SNX
Instructions for 32bit and 64bit Debian and Ubuntu based distributions: Last updated 2012-04
64bit:
Info:
installed to -
/usr/bin/snx
/etc/snx
library info:
linux-gate.so.1 => (0xf7737000)
libX11.so.6 => /usr/lib32/libX11.so.6 (0xf75fd000)
libpthread.so.0 => /lib32/libpthread.so.0 (0xf75e4000)
libresolv.so.2 => /lib32/libresolv.so.2 (0xf75d0000)
libdl.so.2 => /lib32/libdl.so.2 (0xf75cc000)
libpam.so.0 => /lib32/libpam.so.0 (0xf75c0000)
libnsl.so.1 => /lib32/libnsl.so.1 (0xf75a9000)
libstdc++.so.5 => /usr/lib32/libstdc++.so.5 (0xf74ee000)
libc.so.6 => /lib32/libc.so.6 (0xf7392000)
libxcb.so.1 => /usr/lib32/libxcb.so.1 (0xf7379000)
/lib/ld-linux.so.2 (0xf7738000)
libcrypt.so.1 => /lib32/libcrypt.so.1 (0xf7347000)
libm.so.6 => /lib32/libm.so.6 (0xf7321000)
libgcc_s.so.1 => /usr/lib32/libgcc_s.so.1 (0xf7303000)
libXau.so.6 => /usr/lib32/libXau.so.6 (0xf7300000)
libXdmcp.so.6 => /usr/lib32/libXdmcp.so.6 (0xf72fb000)
/etc/snx
library info:
linux-gate.so.1 => (0xf7737000)
libX11.so.6 => /usr/lib32/libX11.so.6 (0xf75fd000)
libpthread.so.0 => /lib32/libpthread.so.0 (0xf75e4000)
libresolv.so.2 => /lib32/libresolv.so.2 (0xf75d0000)
libdl.so.2 => /lib32/libdl.so.2 (0xf75cc000)
libpam.so.0 => /lib32/libpam.so.0 (0xf75c0000)
libnsl.so.1 => /lib32/libnsl.so.1 (0xf75a9000)
libstdc++.so.5 => /usr/lib32/libstdc++.so.5 (0xf74ee000)
libc.so.6 => /lib32/libc.so.6 (0xf7392000)
libxcb.so.1 => /usr/lib32/libxcb.so.1 (0xf7379000)
/lib/ld-linux.so.2 (0xf7738000)
libcrypt.so.1 => /lib32/libcrypt.so.1 (0xf7347000)
libm.so.6 => /lib32/libm.so.6 (0xf7321000)
libgcc_s.so.1 => /usr/lib32/libgcc_s.so.1 (0xf7303000)
libXau.so.6 => /usr/lib32/libXau.so.6 (0xf7300000)
libXdmcp.so.6 => /usr/lib32/libXdmcp.so.6 (0xf72fb000)
install CheckPoint SNX:
sudo ./Check_Point_SNX_R66_HFA_01_For_Linux_800004013.sh
Create the following ~/.snxrc:
server <IP>
username <email>
username <email>
TIP - If you get the following error on starting:
/usr/bin/snx: symbol lookup error: /usr/bin/snx: undefined symbol: cerr
if required (should not be necessary on modern Debian / Ubuntu)
install libstdc++5_3.3.6
sudo dpkg -i libstdc++5_3.3.6-17ubuntu1_i386.deb
Starting:
(LD_PRELOAD=/usr/lib/libstdc++-libc6.2-2.so.3 not necessary on modern Debian / Ubuntu)
LD_PRELOAD=/usr/lib/libstdc++-libc6.2-2.so.3 snx -H
Check Point'S Linux SNX
build 600000013
use: snx -S <server> {-U <user>|-c <certfile>} [-L <ca dir>] [-p <port>] [-R] [-G] [-E <cipher>]
run SNX using given arguments
snx -F <cf> run the snx using configuration slips by
snx run the snx using the ~/.snxrc
snx -D disconnect has running SNX daemon
-S <server> connect to server <server>
-U <user> uses the username <user>
-C <certfile> uses the certificate file <certfile>
-L <ca dir> get trusted ca' S from <ca dir>
-p <port> connect using port <port>
-G enable debugging
-E <cipher> SSL cipher to uses: RC4 gold 3DES
Check Point'S Linux SNX
build 600000013
use: snx -S <server> {-U <user>|-c <certfile>} [-L <ca dir>] [-p <port>] [-R] [-G] [-E <cipher>]
run SNX using given arguments
snx -F <cf> run the snx using configuration slips by
snx run the snx using the ~/.snxrc
snx -D disconnect has running SNX daemon
-S <server> connect to server <server>
-U <user> uses the username <user>
-C <certfile> uses the certificate file <certfile>
-L <ca dir> get trusted ca' S from <ca dir>
-p <port> connect using port <port>
-G enable debugging
-E <cipher> SSL cipher to uses: RC4 gold 3DES
Usually I never comment on blogs but your article is so convincing that I never stop myself to say something about it. You’re doing a great job Man,Keep it up. Bin lookup
ReplyDeleteThis comment has been removed by the author.
ReplyDeleteUnfortunately, SNX command line tools have not worked for a couple of years. See this links for details and an alternate setup. https://github.com/ruyrybeyro/chrootvpn
ReplyDelete