Good morning,

i have a problem with our CheckPoint Sandblast agent and the Upgrade process of the PRTG Remote Probe. After the Core server ist updated, the Update process for the probe is failing because the AV scanner / Reputation filter ist blocking and deleting the files.

Is there a way that you could communicate with CheckPoint to trust your applications and/or upgrade process?

And, is there a way to manualy repeat that Update process from the Core to the Probe instead of uninstalling the PRTg from the probe and reinstall it after whitelisting the PRTG path in CheckPoint?

Thanks.

Best regards Matt

Article Comments

Unfortunately, the update can't be retriggered. Is there any option to whitelist directories by any chance in the checkpoint agent? Whitelisting C:\ProgramData\Paessler and C:\Program Files (x86)\PRTG Network Monitor should perhaps do the trick then.


Oct, 2020 - Permalink

Yes, i will whitelist it. Somehow the CheckPoint AV is detecting "everything" what PRTG is doing in the upgrad process or reinstall process like it is an attack :D Maybe the emulation blade is more sensitive than other AV's

Ok, then i will uninstall the probe and do a fresh reinstall.

A manual trigger for a probe upgrade would be nice ;) (...feature request :P )


Oct, 2020 - Permalink

There you go :) Let me know if it worked out :)


Oct, 2020 - Permalink

Somehow the Forensic Blade blocked the whole Upgrade process. Now it is whitelistet. Should work for the future ;) I added my feature request, thanks for the link ;)


Oct, 2020 - Permalink

Great, thanks! :) Glad to hear it's working properly now.


Oct, 2020 - Permalink