Dear Mates I have currently migrated our VPN solution to Check Point. However, I have been experiencing some issues when it comes to restricting access to specific machines. For example, if I set the VPN domain on the Gateway to 10.10.0.0/24 which is a network behind the gateway. And then create a firewall policy for remote users to
Hi There, My customer has 3 remote servers the work with; Oracle(12.2.139.2), Citrix Xenapp(12.5.123.2) and Sharepoint(12.2.252.3.4). I've been able to connect to the Oracle and Citrix Servers by Creating a Route(At this point I can ping the servers), Policy and NAT rule. The current challenge is that i cant even Ping the
Hi guys, I'm currently facing with this error "URL Filtering - Internal system error in RAD process (91)" in my installation. I'm using a Checkpoint 3100 in R80.20 version, latest take available. When a user is matching a rule with URL filtering, a high latency is coming. Anyone has already experiencing this ?
I am using "show-access-rulebase" API to get rule details, but the JSON output not contains rule vs Zone/Interface mapping details, but in the syslog contains accessed rule and interface details. Is there any way to find out corresponding rule interface/zone? Regards Veera
R80.20 fw monitor traffic accelerated with SecureXL Tip 1 SecureXL has been significantly revised in R80.20. It now works in user space. This has also led to some changes in "fw monitor". From R80.20 the "fw monitor" is able to show the traffic accelerated with SecureXL. Thus it is possible to see SecureXL
SMT (Hyper Threading) Hyper Threading Technology is a form of Simultaneous Multithreading Technology (SMT) introduced by Intel. Architecturally, a processor with Hyper-Threading technology consists of two logical processors per core, each of which has its own processor architectural state.Each logical processor can be individually halted,
Version R80.10 I want to do the following function: Only permit computer that already join AD connect vpn.Computer that don't join AD deny connect vpn by Endpoint Security. If this function can be done,thanks!
As our environment grows, I become more and more interested in the different Scalable Platform / chassis options that Checkpoint offers. The idea intrigues me a bit for quickly and easily growing as we need more processing power. I love the idea of running VSX on a pair of chassis and just spinning up VSs for each FW use case I have in
There are new fw monitor inspection points available for "fw monitor": Inspection point Name of fw monitor inspection point Relation to firewall VM Available since version i Pre-Inbound Before the inbound FireWall VM (for example, eth1:i) always I Post-Inbound After
Hi Checkmates, One of the greatest thing with Check Point products is that you can deeply adapt and customize configuration to fit your needs. Once, someone from Check Point told me "Check Point, it is a car with manual gear, you really decide how the gateway behaves". Ok why not, but let's stop here this automotive metaphore. One
