Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

R80.x Ports Used for Communication by Various Check Point Modules

Introduction

This drawing should give you an overview of the used R80 and R77 ports respectively communication flows. It should give you an overview of how different Check Point modules communicate with each other. Furthermore, services that are used for firewall operation are also considered. These firewall services are also partially mapped as implied rules in the set on the firewall.

Overview

Ports_1.6a.JPG

Download

Download: R80.x Ports Used for Communication PDF (new R80.30 version)

Chapter

More interesting articles:

- R80.x Architecture and Performance Tuning - Link Collection
- Article list (Heiko Ankenbrand)

References

Support Center: Ports used by Check Point software 

Versions

 

Version 1.7:
+ v1.7a R81 EA update 17.07.2020
+ v1.7b bug fix 20.08.2020

old Version 1.6:
+ v1.6a add Azure ports 05.05.2020
+ v1.6b add all cloud ports 15.06.2020

old Version 1.5:
+ v1.5a typos corrected 18.09.2019
+ v1.5b port update 26.01.2020

old version 1.4:
+ v1.4a bug fix, update port 1701 udp L2TP 09.04.2018
+ v1.4b bug fix 15.04.2018
+ v1.4c CPUSE update 17.04.2018
+ v1.4d legend fixed 17.04.2018
+ v1.4e add SmartLog and SmartView on port 443 20.04.2018
+ v1.4f bug fix 21.05.2018
+ v1.4g bug fix 25.05.2018
+ v1.4h add Backup ports 21, 22, 69 UDP and ClusterXL full sync port 256  30.05.2018
+ v1.4i add port 259 udp VPN link probeing 12.06.2018
+ v1.4j bug fix 17.06.2018
+ v1.4k add  OSPF/BGP route Sync 25.06.2018
+ v1.4l bug fix routed 29.06.2018
+ v1.4m bug fix tcp/udp ports 03.07.2018
+ v1.4n add port 256 13.07.2018
+ v1.4o bug fix / add TE ports 27.11.2018
+ v1.4p bug fix routed port 2010 23.01.2019
+ v1.4q change to new forum format 16.03.2019

old version 1.3:
+ v1.3a new designe (blue, gray), bug fix, add netflow, new names 27.03.2018
+ v1.3b add routing ports, bug fix designe 28.03.2018
+ v1.3c bug fix, rename ports (old) 29.03.2018
+ v1.3d bug fix 30.03.2018
+ v1.3e fix issue L2TP UDP port 1701

old version 1.1:
+ v1.1a - added r80.xx ports 16.03.2018
+ v1.1b - bug in drawing fixed 17.03.2018
+ v1.1c - add RSA, TACACS, Radius 19.03.2018
+ v1.1d - add 900, 259 Client-auth - deleted od 4.0 ports 20.03.2018
+ v1.1e - add OPSEC -delete R55 ports 21.03.2018
+ v1.1f - bug fix 22.03.2018
+ v1.1g - bug fix - add mail smtp -add dhcp - add snmp 25.03.2018

 

 

254 Replies
Highlighted

Hi Sven,

is added in version 1.4o.

Regards,

Heiko

Highlighted

Hi Dameon.

is added in version 1.4o.

Regards

Heiko

Highlighted
Contributor

Hi Heiko Ankenbrand‌,

is it possible to put here also the Port HTTP(80), because with HTTPS you have connection to Check Point Update Server but it is not possible to download Images.

We have for our SMS a Third Party Firewall and we can't download Images till we put the HTTP Port in the Policy for SMS.

Great stuff, I like this collection of CP Ports.

Thanks!!

Participant

nice info

0 Kudos
Highlighted
Participant

Intresting document.

0 Kudos
Highlighted
Explorer

Top document.

0 Kudos
Highlighted
Participant

Please  add  the  LOM Ports.

0 Kudos
Highlighted

I'm currently working on an A2 version. At the moment it is an A3 version and I have no more space on the drawing.

Highlighted
Participant

+1 from me for adding port 18264, since it is an essential service

0 Kudos
Highlighted
Participant

As far as I know, Identity Collector only uses TCP port 389 for LDAP communication. The gateways use either LDAP or LDAPS (port 636).

Highlighted

I will check this.

I add port 80 in the next version.

Highlighted

LOM, it's done.

0 Kudos
Highlighted

Thank you Post 4500, it's done.

0 Kudos
Highlighted

Port 2100 it's done.

0 Kudos
Highlighted

PORT 443, it's done.

Highlighted

ClusterXL Post update, it's done.

Highlighted

Port are  added, it's done.

0 Kudos
Highlighted

Thank you, it's done.

Highlighted

Correction, it's done.

Highlighted

It's done.

0 Kudos
Highlighted

It's done. Blue is better!

0 Kudos
Highlighted

Only R80.10+

0 Kudos
Highlighted

snmp and ntp is added.

0 Kudos
Highlighted

It's done.

0 Kudos
Highlighted

Thank you, it's done.

0 Kudos
Highlighted

done

0 Kudos
Highlighted

It's done. THX

0 Kudos
Highlighted

Now it it is correct! THX

0 Kudos
Highlighted

It is done!

0 Kudos
Highlighted

Thank you, it's done.

0 Kudos