Here is the CLI process I went through to add a HFA to a few boxes to fix a memory leak in the IOS.
[CheckPointBox]# expert
Enter expert password:
Wrong password, exiting.
[CheckPointBox]# expert
Enter expert password:
You are in expert mode now.
[Expert@CheckPointBox]# cd /var/log
[Expert@CheckPointBox]# ftp
ftp> open 192.168.15.11
Connected to 192.168.15.11 (192.168.15.11).
220-GuildFTPd FTP Server (c) 1997-2002
220-Version 0.999.13
220 Please enter your name:
Name (192.168.15.11:admin): shane
331 User name okay, Need password.
Password:
230 User logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> bi
200 Type set to I.
ftp> get fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz
local: fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz remote: fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz
227 Entering Passive Mode (10,15,15,11,13,15)
150 Opening binary mode data connection for /fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz (31788005 bytes).
226 Transfer complete. 31788005 bytes in 5 sec. (6357.60 Kb/s).
31788005 bytes received in 4.54 secs (6.8e+03 Kbytes/sec)
ftp> bye
221 Goodbye. Control connection closed.
[Expert@CheckPointBox]# ls
CPbackup image routing_messages
CPbackup.elg ksyms.0 secure
auth ksyms.1 spinstall.log
boot.log ksyms.2 spool
cpupgrade lastlog spooler
cron maillog upgrade_auto_revert_error.txt
dlp messages upgrade_auto_revert_output.txt
dmesg messages.1 wtmp
dump opt
fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz routing
[Expert@CheckPointBox]# ls -l
total 31412
drwxr-xr-x 4 root root 4096 Jul 26 22:13 CPbackup
-rw-r--r-- 1 root root 0 Jul 26 22:13 CPbackup.elg
-rw------- 1 root root 1254 Jul 27 13:22 auth
-rw------- 1 root root 15739 Jul 27 11:15 boot.log
drwxrwx--- 4 root root 4096 Jul 27 10:28 cpupgrade
-rw------- 1 root root 307 Jul 27 11:15 cron
drwxrwx--- 8 root root 4096 Jul 26 22:15 dlp
-rw-r--r-- 1 root root 22333 Jul 27 11:14 dmesg
drwxr-xr-x 3 root root 4096 Jul 26 22:13 dump
-rw-rw---- 1 root root 31788005 Jul 27 13:23 fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz
drwxr-xr-x 2 root root 4096 Jul 27 11:08 image
-rw------- 1 root root 3352 Jul 27 11:14 ksyms.0
-rw------- 1 root root 3352 Jul 27 10:48 ksyms.1
-rw------- 1 root root 3354 Jul 27 09:39 ksyms.2
-rw-r--r-- 1 root root 22776 Jul 27 13:22 lastlog
-rw------- 1 root root 0 Jul 27 09:39 maillog
-rw------- 1 root root 54588 Jul 27 13:23 messages
-rw-rw---- 1 root root 83225 Jul 27 10:48 messages.1
drwxrwx--- 4 root root 4096 Jul 26 22:15 opt
drwxrwx--- 2 root root 4096 Jul 26 22:18 routing
-rw------- 1 root root 48301 Jul 27 13:23 routing_messages
-rw------- 1 root root 913 Jul 27 13:22 secure
-rw-r--r-- 1 root root 1713 Jul 27 09:53 spinstall.log
drwxrwx--- 4 root root 4096 Jul 26 22:15 spool
-rw------- 1 root root 0 Jul 26 22:13 spooler
-rw-r--r-- 1 root root 0 Jul 27 10:37 upgrade_auto_revert_error.txt
-rw-r--r-- 1 root root 0 Jul 27 10:37 upgrade_auto_revert_output.txt
-rw-rw-r-- 1 root utmp 27648 Jul 27 13:22 wtmp
[Expert@CheckPointBox]# gunzip fw1_wrapper_HOTFIX_FOXX_HF_019_003.tgz
[Expert@CheckPointBox]# ls -l
total 36904
drwxr-xr-x 4 root root 4096 Jul 26 22:13 CPbackup
-rw-r--r-- 1 root root 0 Jul 26 22:13 CPbackup.elg
-rw------- 1 root root 1254 Jul 27 13:22 auth
-rw------- 1 root root 15739 Jul 27 11:15 boot.log
drwxrwx--- 4 root root 4096 Jul 27 10:28 cpupgrade
-rw------- 1 root root 307 Jul 27 11:15 cron
drwxrwx--- 8 root root 4096 Jul 26 22:15 dlp
-rw-r--r-- 1 root root 22333 Jul 27 11:14 dmesg
drwxr-xr-x 3 root root 4096 Jul 26 22:13 dump
-rw-rw---- 1 root root 37406720 Jul 27 13:23 fw1_wrapper_HOTFIX_FOXX_HF_019_003.tar
drwxr-xr-x 2 root root 4096 Jul 27 11:08 image
-rw------- 1 root root 3352 Jul 27 11:14 ksyms.0
-rw------- 1 root root 3352 Jul 27 10:48 ksyms.1
-rw------- 1 root root 3354 Jul 27 09:39 ksyms.2
-rw-r--r-- 1 root root 22776 Jul 27 13:22 lastlog
-rw------- 1 root root 0 Jul 27 09:39 maillog
-rw------- 1 root root 54949 Jul 27 13:26 messages
-rw-rw---- 1 root root 83225 Jul 27 10:48 messages.1
drwxrwx--- 4 root root 4096 Jul 26 22:15 opt
drwxrwx--- 2 root root 4096 Jul 26 22:18 routing
-rw------- 1 root root 48895 Jul 27 13:26 routing_messages
-rw------- 1 root root 913 Jul 27 13:22 secure
-rw-r--r-- 1 root root 1713 Jul 27 09:53 spinstall.log
drwxrwx--- 4 root root 4096 Jul 26 22:15 spool
-rw------- 1 root root 0 Jul 26 22:13 spooler
-rw-r--r-- 1 root root 0 Jul 27 10:37 upgrade_auto_revert_error.txt
-rw-r--r-- 1 root root 0 Jul 27 10:37 upgrade_auto_revert_output.txt
-rw-rw-r-- 1 root utmp 27648 Jul 27 13:22 wtmp
[Expert@CheckPointBox]# tar -xvf fw1_wrapper_HOTFIX_FOXX_HF_019_003.tar
fw1_wrapper_HOTFIX_FOXX_HF_019_003_983003002_2
SU/
SU/content.txt
SU/cpms
pkginfo
dependencies.C
crs.xml
[Expert@CheckPointBox]# ./fw1_wrapper_HOTFIX_FOXX_HF_019_003_983003002_2
Do you want to proceed with installation of Check Point fw1_wrapper R75.30 Support FOXX_HF_019_003 for Check Point Security Gateway Power/UTM R75.20 on this machine?
If you choose to proceed, installation will perform CPSTOP.
(y-yes, else no):yes
Updating of persistant storage failed
Advanced Routing Suite is now stopped
Portal stopped
Mobile Access: Successfully stopped Mobile Access services
Stopping SmartView Monitor daemon ...
SmartView Monitor daemon is not running
Stopping SmartView Monitor kernel ...
Driver 0 is already down
Driver 1 is already down
Driver 2 is already down
SmartView Monitor kernel stopped
rtmstop: SmartView Monitor kernel is not loaded
FloodGate-1 is already stopped.
FireWall-1: UserCheck server is not running
VPN-1/FW-1 stopped
SVN Foundation: cpd stopped
Multiportal daemon: mpdaemon stopped
SVN Foundation: cpWatchDog stopped
SVN Foundation stopped
***************************************************************************
Check Point Security Gateway Power/UTM R75.20
Check Point fw1_wrapper R75.30 Support FOXX_HF_019_003
Installation completed successfully.
***************************************************************************
***********************************************************
Don't forget to reboot the machine!!
***********************************************************
Installation was successful.
[Expert@CheckPointBox]#
