This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Jeff_Gao
Advisor
‎2019-12-27 03:18 AM

About new feature update of R80.40

I'm Posting this post in hopes of adding new features. I also want to know if checkpoint will updates new features.

1.About QOS,if checkpoint will add the feature about per ip qos limit in a policy like fortinet;

 

2.Now,others vendor like fortinet/paloalto and so on all support ldap authen when login device,if checkpoint will add ldap authen feature when login smartconsole or web/cli.

 

Others feature are welcome raisied.

0 Kudos
14 Replies
_Val_
Admin
Admin
‎2019-12-27 03:53 AM

You can use Radius or SecurID to authenticate admin users 

0 Kudos
Benedikt_Weissl
Advisor
‎2019-12-27 04:12 AM

What do you mean by "per ip qos limit in a policy like fortinet"?
0 Kudos
Jeff_Gao
Advisor
‎2019-12-27 04:32 AM
In response to Benedikt_Weissl

Fortinet per ip qos.png

0 Kudos
Benedikt_Weissl
Advisor
‎2019-12-27 04:40 AM
In response to Jeff_Gao

I see. You can already limit up/download in the access policy but you want to be able to apply this limit per source ip, right?
0 Kudos
_Val_
Admin
Admin
‎2019-12-27 05:11 AM
In response to Benedikt_Weissl

...which is already possible in any Check Point from 5.0 and up.

Jeff_Gao
Advisor
‎2019-12-27 06:06 AM
In response to Benedikt_Weissl

yes,precisely,when source is B or C class network in a policy ,I want to limit per source ip
0 Kudos
_Val_
Admin
Admin
‎2019-12-27 04:21 AM

Concerning QoS limit per IP, you can also do that in the QoS rulebase.

So why are you calling "new features" something that exists for many years?

 

 

0 Kudos
Jeff_Gao
Advisor
‎2019-12-27 04:25 AM
In response to _Val_

source is a network,how to limit per ip in a policy? According to my test,this network share the total limit bw in a policy
0 Kudos
_Val_
Admin
Admin
‎2019-12-27 04:39 AM
In response to Jeff_Gao

Incorrect. You can create a rule, where source is a host object, or a group of those. 

0 Kudos
Jeff_Gao
Advisor
‎2019-12-27 04:47 AM
In response to _Val_

When there are only a few hosts, source can is a host object,if a c class network and i need shaper traffic for per ip to 1M,how to do it ,need i create 254 rulebase and 254 host objects?
0 Kudos
_Val_
Admin
Admin
‎2019-12-27 05:08 AM
In response to Jeff_Gao

This depends on your needs. If you want a granular policy with limit per IP, then yes. It makes much more sense to use simpler settings in most of the policies, though

0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2019-12-27 06:17 AM

Hi Jeff,

Your question about LDAP was addressed previously here, did you ask your local SE for assistance?

https://community.checkpoint.com/t5/General-Management-Topics/Multi-domain-Admin-user-authentication...

 

CCSM R77/R80/ELITE
Jeff_Gao
Advisor
‎2019-12-29 05:39 AM
In response to Chris_Atkinson

Yaelle_Harel said that we should contact solution center to activate it,how to contact solution center?
0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2019-12-29 05:52 AM
In response to Jeff_Gao

Hi Jeff,
As above your local SE should be able to facilitate.

(Refer also sk145392)

Thanks.

CCSM R77/R80/ELITE
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events