News | CheckMates

Andres Cuestas in General Product Topics10 hours ago

404 error only by one internet conection

For some url only by one internet connection always have 404 error, if try directly from the internet router all is fine in both ISP, but after the Checkpoint appliance only works by one connection, only happen with one website, what can be??

Like Show 0 Likes0 1

Daniel Karlsson in Threat Prevention12 hours ago

Microsoft Exchange Online Protection and TCP segment out of maximum allowed sequence. Packet dropped.

We have recently seen an increasing amount of drops due to "TCP segment out of maximum allowed sequence." After contact with support we are provided sk66576. The issue is thus related to tcp window size and the firewall will drop a session after not seeing the expected ACK after 16384 bytes by default. The recommendation as per

Like Show 1 Like1 0

Recent Posts

Stefan Seiler in Installation, Maintenance, and Upgrades10 hours ago

DHCP server configuration on GAIA R80.20

Hi Mates, I configured two CheckPoint appliances (3200) in a high availability cluster. I tried to configure a DHCP server on one of the firewalls. On the GAIA everything seems fine but the Firewall doesn't answer any DHCP packages. DHCP section of the config: add dhcp server subnet 10.10.10.48 netmask 28

Like Show 2 Likes2 1

Developer Network

Simon Taylor in Developers (Code Hub)22 hours ago

Python Classes for Check Point objects

Hi, has anyone published Python Classes for all the different object/rule types? The GitHub - CheckPointSW/cp_mgmt_api_python_sdk: Check Point API Python Development Kit does not include these. Obviously the information is available in the Check Point - Management API reference but thought I'd

Like Show 0 Likes0 0

Top & Trending

Leandro Nicoletti in Installation, Maintenance, and Upgrades18 hours ago

Disabling 'out of state' checks between certain hosts

I've read that it's possible to disabled 'out of state' check between subnets and certain hosts using the use.def.X using something like the example below. I'm ok with the version of the user.def file I should be using, but my challenge is I have 5 source ip's of which any could be used to communicate with 10 destination ip's. Not sure how

Like Show 1 Like1 17

Recent Posts

Igor Simovski in Policy Management13 hours ago

Application and URL filtering unknown traffic issue

Hello all, I have a question regarding Application and URL filtering blade. After we define specific rules for the traffic/sites that we know must go to the internet and place the rule for blocking known malicious applications per categories, unknown traffic is left per ports 80 and 443 (we dont have an info on apps inside that

Like Show 1 Like1 2

Top & Trending

Dameon Welch-Abernathy

in Management1 year ago

R80.x Training Videos

These videos were recorded originally for our partners by Jim Oqvist, but CheckMates members can now access this exclusive content! Introduction Duration R80 Management Training Introduction Please note that Ravello blueprints have been discontinued and are no longer available. Most of the labs can be done with the Cloud Demo

Like Show 118 Likes118 31

Recent Posts

amith rao in General Product Topics13 hours ago

Permanent Tunnel with inter-operable Device

There is a requirement to Establish a Permanent Tunnel between CheckPoint and Interoperable device(AWS). To do so does the configuration only involve enabling DPD from Guidbedit or also it is required to enable the "permanent tunnel" option in the VPN community? Thanks in Advance.

Like Show 2 Likes2 2

Top & Trending

Valeri Loukine

in SecureKnowledge2 weeks ago

Tip of the Week - fw monitor

Arguably, the most popular tool to troubleshoot traffic crossing a Security Gateway is fw monitor. However, not all security engineers and administrators are familiar with the full potential of fw monitor. The tool is extremely powerful, flexible and versatile. To unleash its full potential, please look into the article of the

Like Show 18 Likes18 4

Top & Trending

Ilmo Anttonen in Logging, Monitoring, Reporting, and Event Analysis17 hours ago

Why does IPS protections set to Prevent show Detect in log?

IPS logs show only detect on protections which have action prevent on newly activated IPS blade. The Access control policy drops this traffic destined to the external IF of the gateway, is this the reason for detect only action? I thought IPS policy was read before the access control policy. Am I missing something here?

Like Show 0 Likes0 3

Top & Trending

Heiko Ankenbrand

in General Product Topics2 days ago

CLISH Commands in Expert Mode easier

Clish commands can only be used in expert mode with the following command for example 'clish -c "show route"'. To make this a bit easier, I wrote a simple script to simplify that. Now you can use the new command "c" to execute clish commands. You only have to write the c before each clish command in expert mode. For example, if you want

Like Show 22 Likes22 11

Top & Trending

Shahar Grober in SandBlast Network1 day ago

SandBlast and links inside email

I have an ongoing case with TAC about emulation of links inside emails R80.10 with MTA take 25 Issue: TE doesn't block Links with PDF inside emails Scenario: I took a malicious PDF from the Threat Emulation POC (http://poc-files.threat-cloud.com/demo/poc/) Test

Like Show 2 Likes2 7