This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Parabol
Collaborator
a week ago

IPS Blade contract grace period hasn't started?

Hi all,

Licensing expired today on our threat prevention blades, however we were under the impression that a 90-day grace period would start, as per sk - https://support.checkpoint.com/results/sk/sk44175

  1. IPS Software Blade Grace Period

Grace periods are periods after the IPS Software Blade license expires, in which the IPS protections will still be active and no restrictions are made, but warnings are issued regarding the missing contracts. The grace period is set for 60 days for R77.x versions and 90 days for R8x versions, starting from the latest contract expiration date on that Security Gateway. The grace periods are calculated per Security Gateway individually.

However checking the blades license status in SmartConsole seems to show only Application Control and URL Filtering have this 90-day grace period active (see screenshot).

Is this definitely the case? If this has reduced our IPS, Anti-Virus and Anti-Bot capability then I need to be chasing management for these renewals pronto

Thanks

 

Preview file
38 KB
0 Kudos
3 Replies
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
a week ago

What warning if any do you see when attempting to install threat prevention policy?

Ideally you should be proactively chasing this prior to the annual renewal due date not afterwards...

Some relevant commands:
cat $FWDIR/ips/update/ips_status.C
cpstat ips -f subscription_status
ips stat
cplic print

CCSM R77/R80/ELITE
Lesley
MVP Gold
MVP Gold
a week ago
In response to Chris_Atkinson

What Chris said will help to see if it is a cosmetic issues described in https://support.checkpoint.com/results/sk/sk183287

Check also logs if you still see ips working: blade:IPS 

-------
Please press "Accept as Solution" if my post solved it 🙂
the_rock
MVP Diamond
MVP Diamond
a week ago

Cplic print -x output would definitely help us.

Best,
Andy
"Have a great day and if its not, change it"

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    In-Person

    Tue 19 May 2026 @ 08:00 AM (EDT)

    Montreal: P’tits déj Cyber! | Cyber Breakfasts!
    In-Person

    Tue 02 Jun 2026 @ 09:00 AM (CEST)

    CheckMates Live Denmark - Aarhus
    In-Person

    Wed 03 Jun 2026 @ 09:00 AM (CEST)

    CheckMates Live Denmark - Copenhagen
    CheckMates Events