Hi Chris,

Yes, I also installed 82.5, but it does exact thing. Blocks all incoming connections right after it finishes installing without happening any connection set up.

This is weird and it happens even if I kill all checkpoint services, remove it's launch/start daemons and restart the computer afterwards.

And I have no idea where it installs the service or policy that blocks the connections. 

Thanks for the information.

But why is this happening? Why was "feature" implemented?

It only causes issues. I have dozens of VPN connections on dozes of computers. I run various network software on my computers and I need to have inbound traffic.

The admins of those VPNs (my clients) will not set such policies so there is no other solution for me then to use another VPN solution.

This is a crazy idea to block all inbound traffic by default.

Nobody thought that there are people that just need a simple VPN that does NOT block lan traffic?

The previous version didn't block traffic.

This is crazy!

The Mac VPN client has never been "just" a VPN client the same way that, say, Check Point Mobile on Windows is.
It has always included a firewall and it's not something the end user can disable.
These are long-standing limitations documented here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 
Note: this says Endpoint, but it also applies to the standalone VPN client as well, which requires Endpoint licensing (or at least CPEP-ACCESS or legacy SecureClient licensing).

Creating a Desktop Policy is actually pretty simple and doesn't require Endpoint management to do it.
You do have to enable Policy Server on the relevant gateways, which will allow you to add a Desktop policy to existing policy packages.
That will allow you to create a granular firewall policy for the desktop.

However, you don't even have to go that far.
You can simply make the default policy "allow all" in Global Properties and install policy to the gateway: