This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
SecdetKrypton
Contributor
‎2026-04-21 12:41 AM
Jump to solution

How to add 'Internet' object to a policy.

I want to create a policy and use as destination the cloud 'Internet', but not the object 'all_Internet' — I want the cloud Internet.

0 Kudos
2 Solutions

Accepted Solutions
TurgutKaplanogl
MVP
MVP
‎2026-04-21 01:06 AM
Jump to solution

More details are needed regarding your question but my assumption is that you want to use the Internet object coming from the App & URL blade. For that you need to enable the Application & URL feature in the policy.

In addition you also need to enable Application Control and if you have the license URL Filtering on the Cluster/Gateway object. Depending on the usage scenario, either both of them or only one of them may be sufficient.

Alternatively if there is a licensing limitation instead of using the Internet object you can assign a Zone to the external interface and use that Zone as the Internet object.

View solution in original post

0 Kudos
(1)
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2026-04-21 02:13 AM
Jump to solution

Which object(s) you can use depends on the enabled blades.

The Internet object as described would usually require AppC / URLF blades.

CCSM R77/R80/ELITE

View solution in original post

9 Replies
Vincent_Bacher
MVP Silver
MVP Silver
‎2026-04-21 12:58 AM
Jump to solution

I'm a bit lost. Could you please explain exactly what you mean by “cloud internet”?

and now to something completely different - CCVS, CCAS, CCTE, CCCS, CCSM elite
0 Kudos
Danny
MVP Platinum
MVP Platinum
‎2026-04-21 01:01 AM
Jump to solution

Properly defining the Internet within a security policy

TurgutKaplanogl
MVP
MVP
‎2026-04-21 01:06 AM
Jump to solution

More details are needed regarding your question but my assumption is that you want to use the Internet object coming from the App & URL blade. For that you need to enable the Application & URL feature in the policy.

In addition you also need to enable Application Control and if you have the license URL Filtering on the Cluster/Gateway object. Depending on the usage scenario, either both of them or only one of them may be sufficient.

Alternatively if there is a licensing limitation instead of using the Internet object you can assign a Zone to the external interface and use that Zone as the Internet object.

0 Kudos
(1)
SecdetKrypton
Contributor
a month ago
In response to TurgutKaplanogl
Jump to solution

Thanks to everyone, indeed the cloud symbol used to represent the internet—I managed to obtain it by enabling URL filtering and app control directly in the rule base policy configurations I had. Thanks.

0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2026-04-21 02:13 AM
Jump to solution

Which object(s) you can use depends on the enabled blades.

The Internet object as described would usually require AppC / URLF blades.

CCSM R77/R80/ELITE
the_rock
MVP Diamond
MVP Diamond
‎2026-04-21 06:15 AM
Jump to solution

Chris is 100% correct...you need urlf/appc blades enabled for that.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Vincent_Bacher
MVP Silver
MVP Silver
‎2026-04-21 06:20 AM
In response to the_rock
Jump to solution

One thing that still puzzles me is that SK specifically refers to the ‘cloud internet’ rather than simply the ‘internet’.

and now to something completely different - CCVS, CCAS, CCTE, CCCS, CCSM elite
the_rock
MVP Diamond
MVP Diamond
‎2026-04-21 06:24 AM
In response to Vincent_Bacher
Jump to solution

I find that interesting as well.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Bob_Zimmerman
MVP Gold
MVP Gold
‎2026-04-21 11:20 AM
In response to Vincent_Bacher
Jump to solution

Presumably talking about the object which has a cloud as its icon. This is the object which requires App Control/URL Filtering to be enabled.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events