Skip navigation
All Places >

General Product Topics

Log in to follow, share, and participate in this community.

Recent Activity

Danny Jung
  This Bash script allows you to run common Check Point CLI tasks without having to crawl for command cheat sheets, bookmarks, google, manuals, knowledge base etc. Moti Sagey's  Top 3 Check Point CLI commands thread inspired me to start this project, allowing everyone to suggest new enhancements, improvements and share their ideas.   To install…
in General Product Topics
Dan Roddy
Found a block action reason:  Blocking request as configured in engine settings of Application Control... Precise Error: Internal system error in HTTPS Inspection due to categorization service timeout...   So I went to Blades/Application Control & URL Filtering Settings/General and changed Fail mode to 'allow all requests (fail-open) and… (Show more)
in General Product Topics
Hiren Bhakta
R77.30 had a binocular icon on top left corner to search objects on MDS level and same icon on policy page to search any item on that page such as comments which was helpful as regular search bar on policy page does not search comments. Is there a way on R80.10 to do same?
in General Product Topics
Markus Marquardt
Hi,   we are still having issues with rules using custom URLs matching for HTTPS requests. It is working *sometimes*, but most often it is not working (rules doesn't match).   We are using HTTPS categorization only, as HTTPS inspection introduced other issues to us (nothing to discuss here).   From my understanding, while having HTTPS… (Show more)
in General Product Topics
KietN NGUYEN
Dear Team,   Is it possible to create mutiple VPN site to site connections between one CheckPoint FW and multiple external gateways ? If yes, Could you please help me on this scenario:   - On HQ, I have a CheckPoint FW with two subnets: 192.168.1.0/24 and 192.168.2.0/24. - Site A: subnet: 192.168.3.0/24 - Site B: subnet: 192.168.4.0/24.  … (Show more)
in General Product Topics
David Herselman
We configured security policy layers to detect users behind proxies:   Some systems use an explicit caching Squid proxy which is configured to send requests to the Check Point security gateway's proxy interface: acl local-servers dst 10.0.0.0/8 100.64.0.0/10 172.16.0.0/12 192.168.0.0/16 always_direct allow local-servers always_direct deny all… (Show more)
in General Product Topics
David Herselman
We don't appear to be able to get a NAT rule to apply on traffic on an internal interface of a Gaia security gateway.   Background: We have been using Squid proxies for over 20 years and have a variety of systems and deployment tools that have the proxy hard coded (cache.lair.co.za:3128). Whilst it is possible to enable a proxy service on… (Show more)
in General Product Topics
aner sagi
up_manager_resume_chain: fwhold_send failed. chain will be dropped by the fwhold API  [up_manager_perform_action: up_manager_resume_chain failed network_classifiers_domain_async_timeout_cb: the 'perform_action' callback function failed up_manager_resume_chain: _chain_packet_id 1 is not held   Customer is using 5200 R80.10 jumbo 103 (full ha) .… (Show more)
in General Product Topics
Vlad Voronko
Hi, I have a question about Advanced settings in ISP link configuration. It reads in the description "If any of the hosts in the list fail to respond, the Link is considered to be down" (see the picture). Is there any way to change this logic from "any of the hosts" to "all of the hosts"? In my opinion, "any of the hosts" logic might lead to… (Show more)
in General Product Topics
Load more items