- Products
- Learn
- Local User Groups
- Partners
- More
What's New in R82.10?
Watch HereWhen the Agents Attack
A Live Look at Agentic Exposure Validation
AI Security Masters E8:
Claude Mythos: New Era in Cyber Security
CheckMates Go:
CheckMates Fest
Hi Everyone.
Im looking for some specific applicattion that they works like a Rule Analyzer.
We have a 64000 Chassis and 1600 rules. All of them are not logging exept the "Clean UP" rule.
We found the following applications but we need to know which of those are the best with that scenary
1. Firemon
2. Tuffin
3. Algo Sec
4. Skybox
PD: Please remember that we are not loggin rules! So we need to find some application that works without that.
Thanks a lot!
Thanks for reply.
Can you explain me how can i work with the "Hitcounts"?
We need some application that he can clean and optimize the security policy.
Note that as a best practice, most of your rules should be logged.
The fact most of your rules are not logged is problematic for many reasons, including this specific exercise.
Regardless of whether you log a rule or not, every rule should log the number of hits against that rule.
It doesn't show by default in R80.x SmartConsole, but it's easy enough to see by right-clicking on the rule headers and ticking the box for hits:
If a rule has a low number of hits against it, that's a target for a rule that could potentially be removed.
In pre R80 releases for Check Point gateways, it was considered best practice to move rules that were hit a lot to the top of the rulebase to improve gateway performance.
With column-based matching added from R80.10, this is less needed, though there are still a few corner cases where it might help.
As far as potentially simplifying rulebase logic, that's something a tool or a human would have to address.
We also offer, via Check Point Professional Services, a service called SmartOptimize that can assist with this task as well.
I thought you were referring to another tool with the "hitcounts".
Thanks for the answer and from your time but its not a good solution for a Firewall with 1700 rules. We need something more easy to the day work.
Someone know something from those applications?
1. Firemon
2. Tuffin
3. Algo Sec
4. Skybox
You could use netflow with some netflow analyzer, but it costs performance on the gateways. Better be careful when using it on heavy load gateways.
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
| User | Count |
|---|---|
| 66 | |
| 22 | |
| 7 | |
| 6 | |
| 5 | |
| 4 | |
| 4 | |
| 3 | |
| 2 | |
| 2 |
Thu 09 Jul 2026 @ 10:00 AM (CEST)
Schutz souveräner Workloads: Check Point & die AWS European Sovereign CloudThu 09 Jul 2026 @ 11:00 AM (CEST)
The Cloud Architects Series: Check Point Edge Protection SD-WAN & SASEThu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 20 Aug 2026 @ 10:00 AM (PDT)
AI Security Masters E13: READY OR NOT: Securing the AI Ent 5/5 - AI Research & Threat LandscapeAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY