Skip navigation
All Places > About CheckMates > Blog > 2017 > August
2017

Welcome to "This Week in Checkmates," your weekly highlight reel for all things CheckMates!

Past and future posts will be available here: About CheckMates

If you can't wait for the weekly update, follow our Twitter account where threads are highlighted regularly: @CPCheckMates!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

 

Check Point 1400 Appliance - FAQ

This is a great resource telling you everything you ever wanted to know about the 1400 series of appliances. One of our partners Danny Jung put this together and is continually updating it!

 

Compliance Blade how-to videos

Tomer Sole produced some videos on how to best leverage the Compliances Blade in R80.10. 

 

How to block OpenVPN

It's pretty straightforward if you want to block all use of it, a little bit less so when there is legitimate use you also need to allow. Still, something Application Control has no issue with.

 

Infinity R80.10 "Cool Feature of the Day" - Prevent installing the wrong policy 

One way to achieve this is to Set Installation Target for Policies, which has been an option for quite some time. Another way, introduced as a "beta" feature in R80.10, is described in this article.

 

Unify Policy Migration from R77.30

Some legacy features were not brought forward to R80.x as they have been replaced with newer features. In this thread, legacy user groups need to be replaced with Access Roles (an Identity Awareness feature).

 

Did You Know...

You can respond to the emails you get from CheckMates to update a thread?

I know this is a repeat of last week's tip, but I wanted to repeat it to reiterate the warning that goes with this: make sure if you use this feature, your email response doesn't include any signature information or it will be posted along with your messages! I've edited a few messages to remove this information.

 

Unless you've disabled email notifications on your account, which you can do here, you should get an email for new responses on a given thread or content you have chosen to follow, which you can do from the Actions menu:

 

 

When you get the email, it will look something like this:

 

Simply respond to the email like you would any other:

 

 

Your email will appear in the relevant thread as a reply to the comment you are responding to:

 

 

A word of warning: Make sure to disable your email signature on these emails as they will be included in your post to CheckMates. You may not want that. 

 

 

Upcoming Events

Our upcoming events in September include:

  • Cloud Security Best Practices with Amit Schnitzer on September 6th
  • Ask Me Anything with Dorit Dor and her team on September 18th

 

Feedback

We would be delighted to hear your feedback! Here are a few ways you can share it with us:

Welcome to "This Week in Checkmates," your weekly highlight reel for all things CheckMates!

Past and future posts will be available here: About CheckMates

If you can't wait for the weekly update, follow our Twitter account where threads are highlighted regularly: @CPCheckMates!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

 

Leveraging the R80.10 API to Automate and Streamline Security Operations

Our latest TechTalk was held this week on using the R80.10 API to automate and orchestrate your security. Ryan Darst gave a great demo and there were a lot of questions. Watch the video and access the materials!

 

How-to use Postman with R80 Security Management API

One of the tools used to demonstrate the R80 API was a tool called Postman. We had a "collection" for the R80 API and recently added one for R80.10. And of course, there were some questions!

 

Sending Check Point security logs to 3rd party devices via syslog

In case you haven't seen yet, CPLogToSyslog is now available for R80.10 as it was published for other releases a few weeks back! Improved syslog support (beyond what CPLogToSyslog provides) is planned in the coming months. Watch the Logging, Monitoring, Reporting, and Event Analysis for more details!

 

Unify Policy Migration from R77.30

If you want to leverage the unified policy feature in R80.10, you'll need to stop using some legacy features, which do not support the unified policy.

 

Policy Migration From Standalone to Distributed

There are a couple of options from converting your standalone gateway (with integrated management) to a distributed configuration. 

 

Did You Know...

You can respond to the emails you get from CheckMates to update a thread?

Unless you've disabled email notifications on your account, which you can do here, you should get an email for new responses on a given thread or content you have chosen to follow, which you can do from the Actions menu:

 

 

When you get the email, it will look something like this:

 

Simply respond to the email like you would any other:

 

 

Your email will appear in the relevant thread as a reply to the comment you are responding to:

 

 

A word of warning: Make sure to disable your email signature on these emails as they will be included in your post to CheckMates. You may not want that.

 

 

Upcoming Events

Our upcoming events in September include:

  • Cloud Security Best Practices with Amit Schnitzer on September 6th
  • Ask Me Anything with Dorit Dor and her team on September 18th

 

Feedback

We would be delighted to hear your feedback! Here are a few ways you can share it with us:

Welcome to "This Week in Checkmates," your weekly highlight reel for all things CheckMates!

Past and future posts will be available here: About CheckMates 

If you can't wait for the weekly update, follow our Twitter account where threads are highlighted regularly: @CPCheckMates!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

 

CLI API Example for exporting, importing, and deleting different objects using CSV files (v 00.29.02 and later)

Eric Beasley has been updating his scripts for importing and exporting different types of content from the R80 API. This version can now handle more than 500 objects at a time, which is a limit imposed by the API. There's also a link to his Github repository where you can contribute your own changes!

 

R80 SmartReporter : how to do a report "rule base analysis"?

SmartReporter was retired in the R80 release. One feature it had was the ability to run a report to see when the last time a rule was used. This thread explains how to recreate that functionality in R80.10 with SmartEvent.

 

https Inspection

A good discussion around the challenges with implementing HTTPS Inspection. Have you implemented this? What challenges did you run into and how did you address them?

 

Navigating Between Rules | R80.10 Rulebase

Something we're trying to produce more of for CheckMates is how-to videos. This one shows you some tricks and tips for navigating the rulebase in R80.10, which are particularly handy if you have a rulebase of significant size.

 

Application URL blade - with SmartLog R80.10

This is a great tip from Aaron Pritchard on how to make it easier for administrators to deal with blocked application/URL reports from end users!

 

My Top 3 Check Point CLI commands

This thread has garnered a lot of activity on CheckMates. In addition to more commands, we're now getting to stories of days gone by. Keep following this thread!

 

 

Did You Know...

You can send a Private Message to someone?

For anti-spam purposes, the person you wish to send a Private Message to must "follow" you.

You can choose to follow someone by simply hovering over their name and clicking the Follow button that appears below their avatar.

If they follow you, you will also see the "Message" button.

 

 

 

Upcoming CheckMates Live Events

The next virtual event will be How to use R80.10 API for Automation and Streamlined Security with Ryan Darst on August 15th!

I am also making the rounds to local user group meetings during the month of September.

I'll have some of these to give away: 

 

 

 

Feedback

We would be delighted to hear your feedback! Here are a few ways you can share it with us:

Welcome to "This Week in Checkmates," your weekly highlight reel for all things CheckMates!

Past and future posts will be available here: About CheckMates 

If you can't wait for the weekly update, follow our Twitter account where threads are highlighted regularly: @CPCheckMates!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

 

Share your Check Point Memorabilia for a chance to have it autographed by Gil Shwed!

I know some of you have some old Check Point memorabilia in your closets. Clean it out, snap a picture of it, post it on this thread! Who knows, you might win an opportunity to have Gil Shwed autograph it!

 

R77.30 to R80.10 upgrade issue 

While many upgrades go successfully automatically, some do require help from the TAC. Some potential things to look for when it fails are in this thread. Also, you may want to make sure your CPUSE version is up to date, as suggested in this thread: Upgrade from 77.30 to 80.10 problem 

 

VTI creation in console 

While the API and CLI support has improved quite a bit in R80.10, there are still some things that require SmartConsole. This is one of them...

 

Can we get the routes from R80?

While there is not a specific API for this, there is a way to get the information. Check the thread for details!

 

mgmt_cli without authentication?

There is an equivalent to dbedit -local in R80+, which can be useful in scripts that run on the management and perform automated functions.

 

Did You Know...

What CheckMates Live is? There are two elements to it:

 

 

Feedback

We would be delighted to hear your feedback! Here are a few ways you can share it with us:

Each month, we plan to highlight a specific member of the community. For August, that person is Timothy Hall!

 

Tim Hall is the founder and owner of Shadow Peak Inc., an independently run enterprise started in 2004 that specializes in Check Point training and consulting services. His company has assisted clients from all over the world, including one with firewalls located in Antarctica.

 

Tim has been working with Check Point products since 1997, and as part of his work authored "Max Power: Check Point Firewall Performance Optimization", which centers on the performance intricacies of Check Point products. His newest publication, a second edition focusing on the R80 and R80.10 updates, is currently under development.

 

Although Tim would consider himself an expert in R80.10, he noted, “CheckMates has helped me with learning about the new R80 release, learning about little nooks and crannies in the GUI, and the underlying implementation.”

  

Apart from his love for technology, he also has a passion for collecting. Tim has a basement full of antique pinball machines from the 1970’s to the 1990’s, as well as a collection of arcade video games including Galaga, Tempest, and Pac-Man.

 

In Tim’s words:

"CheckMates is the continuation of spreading knowledge and assisting administrators with various problems.” 

On behalf of CheckMates, we thank Tim for sharing his valuable knowledge with us!

 

Our interview questions and answers are below:

 

Tell us a little about yourself & what you do

I've been working with Check Point products since 1997. I have had my own independently run business since 2004. My business Shadow Peak Incorporated is a one-man corporation that specializes in Check Point training and consulting services.

 

Tell us a little about your experience with Check Point

In 1997, with a company called Evolving Systems, we needed a firewall that could do a VPN, and there was this relatively new kid on the block called Check Point. It was a logical pairing of product to experience based on the Solaris systems experience I had. It's been 20 years this year that I've used a variety of Check Point products.

 

Do you have a unique deployment of a Check Point product?

There's a large defense contractor with firewalls in Antarctica that I did a fair amount of work for that had a pretty large Check Point deployment. I was doing some work with a firewall and I’m like, “Why is this one so slow?” It was because we’re going over a satellite to reach that area and we could only do it at certain times of day.

 

What do you use the CheckMates platform for?

With CheckMates for me, the best thing was learning about the new R80 release, learning about little nooks and crannies in the GUI, and the underlying implementation. Definitely learning about the new R80 and of course R80.10 releases is mainly what I use it for.

 

What do you like to do for fun? (Hobbies)

I collect antique pinball machines and video games. In my basement I have pinball machines ranging from the 1970s to the 1990s. I also have a Galaga, Tempest, Pac-Man – actual full size arcade cabinets. I'm also always reading about different technology or articles on CPUG. I strive to be a pure force of technical knowledge.

 

If you could create any new technology right now, what would it be?

If I could create any new technology, I'd say it would be for an individual's personal data that is bought, bartered, brokered, traded, etc., to notify them every time that data is used or accessed. It would be very scary and I think people would realize how much their personal data is just kind of floating around and being leaked and sold.