Super Seven Performance Assessment Commands (s7pac)
I am proud to announce a new script called s7pac which stands for Super Seven Performance Assessment Commands. The script is based on the excellent TechTalk ‘Security Gateway Performance Optimization presented by Timothy Hall, author of the book ‘Max Power: Check Point Firewall Performance Optimization’. Timothy Hall described 7 commands you need to know as a firewall admin to quickly check a Security Gateway in stress. This script automates that job and executes the 7 commands.
You can watch the TechTalk video on Check Mates here and the slides can be downloaded here. Please note, that you need to log in to Check Mates.
To install s7pac on a Security Gateway, simply run the following command in Expert mode:
curl_cli -o /usr/bin/s7pac tools.checkpoint.engineer/s7pac && chmod +x /usr/bin/s7pac
Or download s7pac here, copy it to your Security Gateway and make it executable.
s7pac is mentioned in the third edtion of Max Power 2020: Check Point Firewall Performance Optimization.
s7pac is also made available as a SmartConsole extension, created by Danny Jung. See this thread on Check Mates.
Changelog
0.1 First version
0.2 – Added check to make sure script is started on a Security Gateway
– Output to file in home-directory (format is s7pac_$(hostname)_$(date +%Y-%m-%d-%H%M).log)
– Include page numbers of the book Max Power: Check Point Firewall Performance Optimization – Second Edition
0.3 Added RX-DRP check (thanks to Ofir Shikolski for the code)
0.4 Updated with R80.30 references to the book Max Power 2020
0.5 Added ethtool -S output (thanks to Andreas Zentsch for the tip)
You can add comments in the s7pac topic on Check Mates.