Skip navigation
All Places > Threat Prevention

SandBlast Network

Log in to follow, share, and participate in this community.

Recent Activity

Moti Sagey
Upvote if you want WebUI for Sandblast Agent Nicolas McKerrall Dameon Welch AbernathyDaniel Colwell
Amit Sharon
Check Point’s latest Global Threat Impact Index revealed that 28% of organizations globally were affected by the Roughted malvertising campaign during June. A large-scale malvertising campaign, RoughTed is used to deliver links to malicious websites and payloads such as scams, adware, exploit kits and ransomware. It began to spike in late May… (Show more)
in SandBlast Network
David Robinson
hi,   ive been testing R80.10 with all blades enabled and 2 or 3 days ago I noticed high cpu usage on a 'cat' process in top, to the point where I'm now unable to push policy.   i used pstree to identify the parent process being scrubd, which after a little research found it related to threat extraction.   I dad manage to successfully push… (Show more)
in SandBlast Network
Moti Sagey
Check Point Security Gateway Architecture and Packet Flow AbstractThis document describes the packet flow in a Check Point Next Generation Threat Prevention gateway. Stateful inspection, network and port address translation (NAT), Virtual Private Network (VPN) functions and forwarding are applied per-packet on the inbound and outbound interfaces… (Show more)
in SandBlast Network
Libin Thomas
Hi Checkmates,   we have checkpoint firewall in cluster and on permise sandblast device and we were trying to do HTTP emulation . it seems the firewall is not sending the file to sandblast , the port 18194 is opened between the FW and sandblast . the internal interface of the IP has reachability to the sandblast object IP but still the files… (Show more)
in SandBlast Network
Libin Thomas
Hi Folks,   we are facing issue on TE 2000x Device , the emulation is not happening please find below the debug logs and we installed the latest JHF 226 TED.ELG{608B7BA6-62D2-3E49-811E-0F6596F800EA} VM 807: Terminating the VM due to increase number of VM errors (3)[ 23840 4086475456][13 Jun 11:57:57] [TE_TRACE]: VM 807 KeyPoint: Terminating VM… (Show more)
in SandBlast Network
Blason R
Hi Team,   I believe if emote agents needs to communicate with Management server I guess I need to use FQDN right? Or how agents will come to know the public IP address which is natted IP for EPM server over the internet? And which is best method to be used FQDN or Public IP?
in SandBlast Network
Julio Rugel
I need to enable https emulation but all users are browsing through a proxy server (websense). The proxy server also has ssl inspection enabled and the websense certificate is deployed on all my computers.   What is the best option to integrate the websense and chekpoint certificate for Emulation HTTPS?   I upload the certificate proxy server as… (Show more)
in SandBlast Network
Kaushal Varshney
Spain was one of the first countries known to have been affected by WannaCry ransomware. This was due to the transparency of Telefónica, the Spanish telecoms giant, which confirmed the ransomware attack. “The impact was tremendous, because this cyber attack was designed to spread across companies. The bigger [the company], the worse [the impact],”… (Show more)
in SandBlast Network
Load more items