Demo web interface created to demostrate the integration for Check Point R80 API and a web interface the idea is shown to the customers how Checkpoint API Works.

This Web interface was created using Django a python framework for Web development

https://www.djangoproject.com/

And a basic Json Class to communicate between the web server and the Smart Center Server

What can I do

This Web interface can create:

1.- Layers and rules

2.- Create host objects with Nat Hide, Static Nat

3.- Create Networks objects with Nat Hide, Static Nat.

The app is divide in several files following the django development model

Vies.py - The backend and the way how the web server analyze the get and post requests, we call the Check Point API from this side.

Tasks.py - The R80 API is represented in this file.

This app is designet to run using docker, the first step to deploy it is using Docker.

1.- Install Docker following the instructions for your Linux Distro

2.- Download this repository using GIT.

for development version git clone https://github.com/cadgo/django-chkp.git

or use the relased tested (recomended) https://github.com/cadgo/django-chkp/archive/1.1.tar.gz

3.- Use the Dockerfile inside the created folder

Using docker-compose

#sudo docker-compose up

First steps using the web interface.

NOTE: CREATE AT LEAST 4 NETWORK AND HOST OBJECTS INSIDE THE SMART CENTER SERVER TO PERFORM A BETTER DEMO OR USE THE WEB INTERFACE TO DO IT!!

1.- Create an API user in our Smart Center Server

2.- Enable the API for all IPs

We need to add the smart center server inside our database using this URL http://IPADDRESS:8000/admin/

By default the dockerfile create an user admin/zubur1

1.- Create a user for our web interface

2 .- Add a User filling the form

3.- Add a Mgmt Server

We need to add the form

MgmtR80Name: A name for our MGMT Server in our web interface

ServerIP: IP address

Description: a brief description

MgmtR80VersionsSupported: leave as default, there are future plans

MGMTR80IsAlive: leave as default

MgmtFingerPrintAPI: leave as default

MgmtPort: Port used by the API

LastPublishSession: Leave as default this a version control for the database between the SMS and the DB

4.- Create a Mgmt server Objectss

Add a Mgmt Server Objects

MGMTServerObjectsID: Select the Mgmt Server added

And just save by default, this is going to create a path to save the DB in a txt files inside our docker

5 .- Create a Mgmt Server User, this is the previous user created inside the Smart Center Server

UsersID: Select the previous added Mgmt Server

R80User: the username for example api_user

R80password: The username password

We are ready to use our web interface, we can follow the next link http://IPADDRESS:8000/r80api/extends

The new Server appears in the extends pages if the servers redirect to the login page, just login with the user created in step number 1.

The ansible section maybe comes later

After choose the Smart Center Server you can create a rulebase

LayerAppend: It's create a new Layer.

Rule Name: Rule Name

Dst Origin: hosts and networks inside the Console

Dst Dir: hosts and networks inside the Console

Ports: TCP and UDP Ports

Action: Accept

Log: :)

it will create a new Layer like