This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ccsjnw
Contributor
‎2026-01-07 10:09 AM
Jump to solution

Categories: URL Filtering and Application Control


SmartConsole, doesn't differentiate between categories that can be used for both URL Filtering and Application Control and those that can only be used for URL Filtering or can only be used for Application Control. This can be a little confusing as URL Filtering and Application Control are handled by different blades. It would be a nice visual aid if he categories icon could be coloured coded or differentiate in some other way to make this clearer.

There is also a strange oddity: The description for the DDNS- Dynamic DNS category doesn't define it for use in URL Filtering or Application Control. 

 

This page only shows the categories that can be used for URL Filtering:

https://usercenter.checkpoint.com/ucapps/urlcat/categories


And the App Wiki only shows how Applications are categorised:

https://appwiki.checkpoint.com/appwikisdb/public.htm

 

What I struggle with, is trying to find a definitive source of information about when new categories are added. I don't want to know when additional URLs or Applications are added or removed from a category, I just want to know when a new category is added or when a seismic shift in categorisation is made. For example, at some point Marijuana and Illegal drugs were separated, but for many parts of the world Marijuana is still an illegal drug. But I don't know when this re-categorisation happened. 

There are quite a few new categories such as 'Self Harm' - it would be really helpful if there could be a page (like the URL Filtering categories list above), that showed ALL categories, which used a column layout which clearly shows if it is applicable to URL Filtering, Application Control or both, and also shows the date when the category was added. You could also add additional notes to document when large scale re-categorisation events have occurred.

This would be really helpful, and the first place to look when trouble shooting Internet policies.

(please use International date format YYYY-MM-DD - thanks!)

Preview file
12 KB
2 Solutions

Accepted Solutions
the_rock
MVP Diamond
MVP Diamond
‎2026-01-07 10:33 AM
Jump to solution

I actually posted about something similar while back wondering if there was way to get ALL websites belonging to specific category, but not sure thats possible. Actually, seems that no other vendor can really do that either, which makes sense, as those things change constantly.

Best,
Andy
"Have a great day and if its not, change it"

View solution in original post

0 Kudos
PhoneBoy
Admin
Admin
‎2026-01-07 03:20 PM
Jump to solution

We have an SK that discusses deprecated categories in App Control: https://support.checkpoint.com/results/sk/sk106783
There's also advice in there about subscribing to the newsletter to get updates on categories.

Unfortunately, I am not aware of anything similar for URL Filtering, nor have I seen a unified list of both sets of categories.

View solution in original post

12 Replies
the_rock
MVP Diamond
MVP Diamond
‎2026-01-07 10:33 AM
Jump to solution

I actually posted about something similar while back wondering if there was way to get ALL websites belonging to specific category, but not sure thats possible. Actually, seems that no other vendor can really do that either, which makes sense, as those things change constantly.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Pedro_Espindola
Employee
Employee
‎2026-01-07 04:06 PM
In response to the_rock
Jump to solution

It is possible, but no vendor should do that. It takes a huge effort to compile those lists, so making it public would mean giving away intellectual property for free.

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2026-01-07 04:11 PM
In response to Pedro_Espindola
Jump to solution

Well...Im not a lawyer by any means, but in my mind, intellectual property always meant something protected by law, which in this case, most likely would not be, since most vendors would have literally, more less, similar websites covered by any given category.

But, I agree, it would be huge amount of work.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
PhoneBoy
Admin
Admin
‎2026-01-07 03:20 PM
Jump to solution

We have an SK that discusses deprecated categories in App Control: https://support.checkpoint.com/results/sk/sk106783
There's also advice in there about subscribing to the newsletter to get updates on categories.

Unfortunately, I am not aware of anything similar for URL Filtering, nor have I seen a unified list of both sets of categories.

ccsjnw
Contributor
‎2026-01-08 10:29 AM
In response to PhoneBoy
Jump to solution

Could an SK article be maintained which just lists when new Categories are added? 
How can this be requested?

To reiterate, I don't want to know about specific URLs or Applications that have been added to existing Categories, I only want to know when new Categories have been added so I can take action in my Internet Policy and decide whether it's appropriate to allow or block that new category. The approach I use for a general Internet Policy is to allow all, and then block by specific categories. However, I didn't know about the addition of the 'Self Harm' category, so I hadn't added it to my block group.

the_rock
MVP Diamond
MVP Diamond
‎2026-01-08 02:10 PM
In response to ccsjnw
Jump to solution

Real good idea, for sure.

Best,
Andy
"Have a great day and if its not, change it"
the_rock
MVP Diamond
MVP Diamond
‎2026-01-11 08:59 AM
In response to ccsjnw
Jump to solution

I even ran this query through fully licensed MS coilot AI and most it gives for SOME categories is about common 100 sites, thats it.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2026-01-11 09:46 PM
In response to ccsjnw
Jump to solution

I'm not sure if there is a suitable API endpoint for it currently but one could periodically export the list of Categories from SmartConsole and diff it against the previous / earlier one. 

cat.png

CCSM R77/R80/ELITE
PhoneBoy
Admin
Admin
‎2026-01-12 07:09 AM
In response to Chris_Atkinson
Jump to solution

There is: https://sc1.checkpoint.com/documents/latest/APIs/index.html#cli/show-application-site-categories~v2.... 
The following mgmt_cli command extracts the data in the screenshot (trying to do this with CSV format gives an error):

mgmt_cli -r true show application-site-categories details-level full limit 500 --format json | jq '.objects[] | .name, ."meta-info"."last-modify-time"."iso-8601"'

ccsjnw
Contributor
‎2026-01-12 07:56 AM
In response to Chris_Atkinson
Jump to solution

Unfortunately, the last modified date only shows when the Firewall Manager installation / upgrade was performed, and not when the particular Category was added, which is the information I'm seeking. 

0 Kudos
PhoneBoy
Admin
Admin
‎2026-01-12 08:12 AM
In response to ccsjnw
Jump to solution

Right, but it does tell you if one has been added since then as an object would have to be created for it.

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2026-01-07 04:25 PM
Jump to solution

Found a post I had abiyt this almost a year ago, the answer was more less the same...

https://community.checkpoint.com/t5/General-Topics/URL-filtering-query/td-p/242014

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events