On-board NICs used on an open server: Check Point Firewalls Configuration Guide to Alerts.

This is a real life sample alert from the indeni Check Point Firewall Configuration Alert Guide.

Description:

indeni has identified that some of the on-board NICs of this open server are being used. Traffic on these on-board NICs may be unstable and some packets may be dropped or experience errors. Review the list of NICs below.

The recommendation to avoid on-board NICs is based on general feedback provided by customers as well as notes at the bottom of some of the pages on Check Point’s Hardware Compatibility List, such as this one.

Affected NICs:

eth0 (Bandwidth: 1000M/full, MAC Address: 90:E2:BA:3C:00:00, IP Address: 1.11.16.16/22)

Manual Remediation Steps:

Modify the network configuration of the device to avoid using the on-board NICs entirely.

How does this alert work?

indeni uses a series of tools, as well as data previously collected, to determine which NICs on an open server are the on-board ones. As some have noticed this is not straightforward. If you believe indeni has labeled a certain NIC as on-board when it shouldn’t be, please let us know.

Interested in learning more?  Download our guide to help build high availability networks for Check Point. 

Leave a Reply