News | CheckMates

in Threat Prevention7 hours ago (Show more)

This Week in Threats: Week of 21st August 2017

More than 4,000 corporates were attacked, with at least 14 known successful infections, Chicago's entire voter database was left in the cloud and exposed to everyone for months, yet more malicious apps found in Google Play, and WannaCry appears to have impacted multiple service centers of LG Electronics. Details on these items and more can be… (Show more)

Justin Hickey in Management (R80.10)1 week ago (Show more)

R80.10 - Set snapshot export command

I'm trying to automate the regular export of snapshots. I always run into an issue with the 'path'. I don't understand, if this is an export, how else would the path be formatted ? set snapshot export CPMGT_Snapshot_01 path ftp://admin:thepassword@10.1.1.11/ name CPMGT_Snapshot_01 NMSNAP0042 Bad Path input Thanks, Your CheckMate, Justin

11 repliesShow more activity

Justin Hickey marked Declan McGill's answer correct

Raj Khatri in Logging, Monitoring, & Event Analysis10 months ago (Show more)

Log indexes not deleting

Has anyone run into log indexes not deleting on Log Server? On the log server under Logs | Storage | Index Files, the "delete index files older than x" days is checked, however they are not clearing. Logs indexes are stored here: /var/log/opt/CPrt-R80/log_indexes We have set to 30 days but there are 90 days of log indexes which caused… (Show more)

10 repliesShow more activity

Robert Yohn (to Raj Khatri) 8 hours ago (Show more Show less)

as per the SK115872, it says it is a new feature in R80.10. We are running R80.10 build 187 and I have attached the screen shot of our MDS that the logs are currently going to. The last line of the SK "delete index files older than" options removed from domain options and be managed in MDS level only. We do not seem to have that option.

Actions

Sagar Manandhar in Policy Management12 hours ago (Show more)

Application and Url filtering not working

Hi, i am using 5600 appliance and there i have written different application and url filtering policy in which pornography and media stream(category) is at top and is block. But all the client are being able to access the porn site and media. when i see the log of application and url it show allow but when i click to "Go to policy" tab there… (Show more)

1 replyShow more activity

Daniel Taney (to Sagar Manandhar) 8 hours ago (Show more Show less)

What happens if you copy + paste that access rule into the policy as a new rule, delete the original, and push policy? That should create the rule with a new Rule ID. Maybe something just got corrupt with that rule in the database?

Actions

Eric Speake in General Product Topics11 hours ago (Show more)

How can I block or disable google cache pages?

We have R80.10 and I am looking to block the ability to view cached google pages. Any ideas or thoughts? Thanks, Eric

1 replyShow more activity

Moti Sagey marked Dameon Welch Abernathy's reply as helpful

Danny Jung in SMB and SMP15 hours ago (Show more)

Check Point 1400 Appliance - FAQ

Author: Danny Jung Want more Check Point info? Read our tech blog! Q: What's the official product site ? A: Check Point 1400 Appliance | Datasheet | Support Center Q: What's the 1400 Appliance's SecureKnowledge article ? A: sk110985 | Release Notes | Known Limitations Q: Where can I find Getting Started Guides ? A: Centrally…

3 commentsShow more activity

Dameon Welch Abernathy

(to Bob Bent)9 hours ago (Show more Show less)

One correction to your correction Load Sharing is only supported with Central Management. With local management, only HA is supported.

Actions

Danny Jung in Installation, Maintenance, and Upgrades16 hours ago (Show more)

HowTo Set Up Certificate Based VPNs with Check Point Appliances - R77 edition

PrefaceSecuring virtual private networks (VPNs) in enterprise Site-to-Site environments is an important task for keeping the trusted network and data protected. Also it's critical to avoid any loss of data sovereignty. When it comes to VPN security many security experts first think of encryption algorithms, perfect forward secrecy (PFS),…

Moti Sagey marked this document as helpful

ATC Email Alias

in General Product Topics11 months ago (Show more)

R80 CCSA Certification Training and Exam Update

Check Point Education Services has released the new R80 Security Administrator (CCSA) course to the Authorized Training Centers Partners. ATC Partners are your best source for training and certification exam preparation. Locate an ATC in your area. The certification exam for R80 CCSA (156-215.80) is now available at PearsonVUE. Exam cost is… (Show more)

4 repliesShow more activity

f.buccaf6b703-2ce8-4484-9226-21645db51c51 (to ATC Email Alias) 13 hours ago (Show more Show less)

Hi, could someone give feedback about 156-215.80 exam? Thank

Actions

Ronen Zel

in General Product Topics15 hours ago (Show more)

Support Center Tip of the Week: Security Expert Technical Newsletter

If you’re a security professional, systems administrator, or a network engineer, the Security Expert Technical Newsletter brings you essential, useful information you need, direct to your inbox. Our newsletter includes the latest information, tips, news, and critical information you need. To learn how to register, to view previous Newsletter… (Show more)

Andreas Falk in General Product Topics17 hours ago (Show more)

Threatwiki timout

Anyone having having problem with threatwiki today? Gateway Timeout The proxy server did not receive a timely response from the upstream server. Reference #1.xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Or is it only over here? -- Regards Falk

1 replyShow more activity

Kumardip Dutta (to Andreas Falk) 17 hours ago (Show more Show less)

hii Andreas :-) Can you help out in troubleshooting one problem

Actions

Dameon Welch Abernathy

in Management (R80.10)1 month ago (Show more)

What Version of Check Point Management are You Using?

68 total votes

34 commentsShow more activity

Norbert Bohusch (to Daniel Ndiba) 19 hours ago (Show more Show less)

No, the Smart-1 205 has not enough memory for this. Even without the SmartEvent part it would be a pain if you want to have Log-Indexing enabled! That's why Check Point recently release Smart-1 405 and 410, as the predecessors (205/210) were undersized for R80.x.

Moti Sagey

in General Product Topics1 month ago (Show more)

My Top 3 Check Point CLI commands

Just had a fun geeky conversation with Dameon Welch Abernathy (AKA Phoneboy) Jony Fischbein , Jeff Schwartz and Michael Poublon (over 100 accumulated years of experience in Check Point products) , on what are our favorite & most useful commands in a Check Point environment. Below are my 3 , plz add yours in the comments (we will do a poll for the… (Show more)

105 repliesShow more activity

Dameon Welch Abernathy

(to Sven Glock) 19 hours ago (Show more Show less)

I'm 100% sure on this. In fact, there was a bug that I personally experienced around this that was fixed in Take 17 of the R77.30 jumbo: Jumbo Hotfix Accumulator for R77.30 (R77_30_jumbo_hf) If you're on a recent jumbo and you're still seeing this, I recommend opening a TAC ticket.

Actions

Sagar Manandhar in Installation, Maintenance, and Upgrades22 hours ago (Show more)

Licensing Issues

hi, One of our customer is using standalone firewall (5600 appliance) and has the license for the same. But due to maximum resource utilization of the 5600 appliance they are requesting to go for distributed environment. So, they got the license for the standalone, is it possible that they can go for distributed environment with same license.… (Show more)