Support Center > Search Results > SecureKnowledge Details
SAM rules on Security Gateway do not survive a reboot Technical Level
Symptoms
  • SAM rules do not survive reboot, and therefore SAM policy is not enforced.

  • Policy installation after rebooting the Security Gateway fails in SmartDashboard with:
    Error Reason: Load on Module Failed - Failed to Load Security Policy

  • Fetching the policy on Security Gateway under debug ('fw -d fetch -d $FWDIR/state/__tmp/FW1') shows:

    • [ ...]@HostName[Date Time] failed to read type: No such file or directory
      [ ...]@HostName[Date Time] fw_sam_recover_state: failed to read XXX entries
      [ ...]@HostName[Date Time] [Time] [fw_atomic_add_sam_tables] [End]
      [ ...]@HostName[Date Time] fw_atomic_download: unlocking mutex: install_policy_mutex
      ... ...
      [ ...]@HostName[Date Time] [Time] [fw_atomic_download] [End]
      [ ...]@HostName[Date Time] [Time]] [fw_download] [End]
      Failed to Load Security Policy: No such file or directory
      [ ...]@HostName[Date Time] [Time] [filter_load] [End]
      [ ...]@HostName[Date Time] fw_rfetchx_local_ex: failed to load Security Policy


    • [ ...]@HostName[Date Time] [Time] [fw_atomic_add_sam_tables] [Start]
      [ ...]@HostName[Date Time] fw_sam_recover_state called
      ... ...
      [ ...]@HostName[Date Time] fw_sam_recover_state: num of entries=XXX strings length=XXX
      ... ...
      [ ...]@HostName[Date Time] fw_sam_recover_state: failed to read XXX entries
      [ ...]@HostName[Date Time] [Time] [fw_atomic_add_sam_tables] [End]
      ... ...
      [ ...]@HostName[Date Time] [Time] [fw_atomic_download] [End]
      [ ...]@HostName[Date Time] [Time] [fw_download] [End]
      Failed to Load Security Policy: No such file or directory
      [ ...]@HostName[Date Time] [Time] [filter_load] [End]
  • Attempt to reviewing the SAM kernel table with fails:

    [Expert@HostName]# fw tab -t sam_requests -s
    HOST                  NAME                               ID #VALS #PEAK #SLINKS
     Cannot read the formats structure from localhost: No such file or directory
    
Cause
  • [Issue 01404405] $FWDIR/log/sam.dat file on Security Gateway has become corrupted.
  • [Issue 01404405] Number of current SAM rules has reached a certain limit.
  • [Issue 01832521] Incorrect processing of the $FWDIR/log/sam.dat file on Security Gateway after it was purged and Check Point services were restarted (either with "cpstop;cpstart" commands, or with reboot).

Solution
Note: To view this solution you need to Sign In .