Infinity CHECK POINT 1100 Administration Manual page 65

6. Click New.
7. Enter the network IP address.
8. Enter the subnet. An internal network can be a 255.255.255.255 subnet, for one host. For
example, to monitor the traffic after the router, enter the IP address of the Default Gateway
and the 255.255.255.255 subnet.
9. Click Apply.
The Internal network you defined (with Monitor Mode in the name) shows in the list of
interfaces.
Note - You can configure multiple local networks to be in monitor mode at the same time
(1200R and 1400 appliances only).
After you configure monitor mode:
1. Go to Device > Advanced Settings.
2. Turn off Anti-Spoofing.
To configure monitor mode in CLI:
1. To define a port for Monitor Mode:
> set interface
2. To configure Monitor Mode Automatic Learning, disable user-defined networks:
> set monitor-mode-configuration use-defined-networks false
3. To configure Monitor Mode with user-defined networks:
> add monitor-mode-network ipv4-address
monitor-mode-configuration use-defined-networks true
4. To see user-defined Internal networks:
> show monitor-mode-network
5. To disable Anti-Spoofing:
> set antispoofing advanced-settings global-activation false
If you do not see the Monitor Mode option:
1. Run this CLI command:
set monitor-mode-configuration allow-monitor-mode true
2. Select an interface and click Edit.
Monitor Mode is now added to the options list.
For more information on monitor mode, see sk112572
http://supportcontent.checkpoint.com/solutions?id=sk112572.
Check Point 1100/1200R/1400 Appliances Centrally Managed Administration Guide R77.20.70
<portName>
monitor-mode
Appliance Configuration
<IP>
subnet-mask <mask> > set
| 65