General Topics

CPX 2025 Re-Cap
Most Important Highlights and More!

Detecting Threats Across the Open, Deep
and Dark Web With Infinity ERM

Watch Now

It's Here!
CPX 2025 Content

Get It Now

Remote Access VPN – User Experience
Help us with the Short-Term Roadmap

Take the Survey

CheckMates Go:
What is UPPAK?

LISTEN NOW

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

Solved

inside

Champion

28600

R80.x - Performance Tuning Tip – User Mode Firewall vs. Kernel Mode Firewall

28600

inside

Advisor

28399

Gateway Cluster Hardware Upgrade

28399

Solved

inside

Contributor

28072

Eliminating Routing Asymmetry between Two Different Physical Sites Running Check Point Firewalls

27899

inside

Participant

27801

What is Check Point's solution for RPC traffic on Internal firewall?

27801

Solved

inside

Advisor

27599

Most URLs categorized as X-VPN this morning

27599

inside

Collaborator

27400

How to recover Gaia Admin password on VMware

27000

inside

Champion

26899

Check Point for Beginners - Typical Config Mistakes

26899

Solved

inside

Contributor

26800

VPN - Check Point and Fortigate

26800

inside

Participant

26601

Issue connecting to the management server via smart console

26399

inside

Explorer

26199

What happens when a license expires?

26199

inside

Champion

26199

When will R80.30 GA be available?

26199

inside

Champion

26099

R80.10 User-Mode Firewall and performance impact

26099

inside

Participant

25999

site to site VPN troubleshooting without monitoring blade

25999

inside

Advisor

25999

Check Point R80.20 Production and Public EA

25499

inside

Contributor

25399

Configuring CLuster XL step by step

25399

inside

Employee

25299

New documentation format for Jumbo SK

25299

inside

Advisor

25099

SecureXL is enabled, but the traffic is not accelerated

24499

Solved

inside

Contributor

24200

High CPU after upgrade from 77.30 to 80.10

24200

inside

Explorer

23999

Domain Object when FQDN has multiple DNS results

23999

Solved

inside

Collaborator

23900

ICMP reply does not match a previous request

23900

Solved

inside

Explorer

23799

Stealth rule vs Management Rule

23799

Solved

inside

Contributor

23599

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

23099

Solved

inside

Advisor

22599

R81 - SNMP does not support SHA1 anymore

22599

Solved

inside

Explorer

22399

Website to check latest IPS update version number

22399

inside

Participant

22299

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

22199

inside

Participant

22100

How can I find Throughput statistics?

22100

inside

Champion

21900

Get all the Gaia version and installed jumb hotfix

21799

inside

Contributor

21599

R80.10 gateway, can't set sim_clamp_vpn_mss

21599

Solved

inside

Participant

21400

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

21400

inside

Participant

21399

HTTPS inspection with trusted certificate

21399

inside

Admin

21199

Best practise - How often do you patch/upgrade your gateways?

21000

Solved

inside

Collaborator

20999

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

20999

inside

Contributor

20999

How to get interface status of particular time slot

20999

Solved

inside

Collaborator

20699

Monitoring standby member in a cluster

20699

inside

Explorer

20600

how to check VPN phase 1 and phase 2 status?

20600

Solved

inside

Contributor

20599

R77.30 Take 286: New Jumbo Hotfix GA Release

20499

inside

Contributor

20499

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

20400

inside

Champion

20400

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

20400

Solved

inside

Collaborator

20398

How to handle core-dumps and crash dumps

20398

inside

Collaborator

20300

Aruba Clear Pass Integration - API

20300

inside

Champion

20299

Check Point Site-to-Site VPN Compatibility Matrix

20299

inside

Champion

20100

R80.40 - Dynamic split of CoreXL

20100

inside

Explorer

19999

Policy Based Routing and default route / features

19999

inside

Contributor

19599

Discovering changes in topology table

19599

inside

Participant

19400

CheckPoint redirect to IP address 62.0.58.94

19400

inside

Legend

19300

"Max Power" Book Second Edition Released!

19300

inside

Explorer

19299

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

19299

inside

Champion

19199

HP Server DL360/380 G9 reboot issue!

19199

inside

Contributor

19099

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

19099

Solved

inside

Contributor

19099

Finding root cause for all the F2F traffic

19099

inside

Participant

19099

Check Point Support Resources - Top 10

18900

inside

Admin

18900

All Products and Where To Post About Them

18900

Solved

inside

Advisor

18899

How to see what firewall rules match some traffic

18899

Solved

inside

Explorer

18800

Site-to-site vpn Tunnel to a non Checkpoint Gateway

18800

inside

Collaborator

18799

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

18799

inside

Participant

18700

Both security gateways are active in the Full HA cluster

18700

Solved

inside

Participant

18699

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

18699

inside

Advisor

18699

Outbound SSL Inspection: A war story

18699

inside

Admin

18699

Security Gateway Performance Optimization Excerpt

18699

inside

Collaborator

18697

Pulling FW data fron MDS using a script.

18697

inside

Contributor

18499

Which version is better? R80.10 or R77.30

18399

inside

Admin

18399

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18399

inside

Collaborator

18398

Let's create Check Point Super Cheat Sheet

18398

inside

Contributor

18300

static NAT vs hide behind an IP

18300

Solved

inside

Contributor

18199

How to show the active connection to a specific host

18199

inside

Admin

18199

R80.30 Early Availability Program is started!

18199

Solved

inside

Contributor

18199

How to list arp table and identify network devices with mac under Check Point FWs

18199

inside

Advisor

18100

Remote Access VPN in a Load-sharing Cluster Environment

18100

inside

Explorer

17999

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

17999

inside

Contributor

17899

How can I setup a primary and backup S2S VPN tunnels

17899

inside

Admin

17800

R80.30 Technical Update TechTalk

17800

inside

Admin

17800

Types of NAT used in checkpoint firewall

17700

Solved

inside

Advisor

17699

How to check ThreatCloud URL Reputation?

17699

Solved

inside

Advisor

17699

Hide NAT: Simultaneous Connections to the same destination

17699

Solved

inside

Contributor

17600

Disable NAT on SIP payload - breaks ICE

17599

inside

Collaborator

17599

Check Point Clustering between two Datacenters

17400

inside

Advisor

17400

Activating Identity Awareness to Intergrate AD

17400

Solved

inside

Champion

17399

R80.20 Issue : Monitoring standby cluster members via VPN

17399

inside

Participant

17396

IPSec Tunnel Failing to establish

17396

Solved

inside

Contributor

17299

Custom URL matching with HTTPS categorization

17299

Solved

inside

Champion

17299

Gateway behind NAT. What limitations am I to be aware of?

17299

inside

Explorer

17298

What is route and how to configure route?

17298

inside

Participant

17200

Can you explain the impact of using fwstop and cpstop ?

17200

inside

Champion

17100

Check Point Support Tools - Top 10

17100

inside

Collaborator

17099

Check Point Deployment Shell internal error

17099

inside

Explorer

17099

Domain object is not working in R80.10 properly

17099

Solved

inside

Champion

17000

Stateful Inspection on Gateways

16900

inside

Contributor

16805

Increasing Fifo Buffers on Firewall Interface

16805

inside

Advisor

16801

Do any Checkpoint appliances offer SSL offload?

16801

inside

Explorer

16799

Verify Enabled Cipher Suites in HTTPS Inspection

16799

inside

Explorer

16799

ISP Redundancy (load sharing) issue in R80.10

16799

inside

Employee

16696

Open Server - HCL for multi queue network cards

16500

Solved

inside

Advisor

16499

smarconsole changes (former workflow)

942

inside

Admin

217

Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - Americas recording

217

inside

Contributor

171

Space on management server for snapshots

171

inside

Admin

4126

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

4126

inside

Participant

186

migrate SMS and gateways to new management IP network

1352

inside

Advisor

528

change management's ip of cluster

528

inside

Advisor

708

SIP dropped by fw_post_vm_chain_handler Reason: Handler 'sip_manager' drop

708

Solved

inside

Contributor

823

Remote Access VPN and EntraID Group Authorization

823

inside

Explorer

966

Questions about User Mode and Kernel Mode

966

inside

Contributor

416

Status of cluster stuck in warning - sk178304

600

inside

Contributor

578

[SOLVED] Identity Agent - The Check Point Managed Asset Detection service is not responding

269

inside

Admin

1285

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

1285

inside

Explorer

3450

Abnormality in pattern matching of APP CONTRL BLADE

3450

Solved

inside

Collaborator

400

Improving IPSEC Encryption settings

400

Solved

inside

Advisor

286

r81.20 -> r82: what happens to https inspection policy

286

Solved

inside

Advisor

200

ClearPass / Checkpoint Integration

584

Solved

inside

Mentor

5518

cpsho_user config pushed from Check Point?

5518

Solved

inside

Explorer

261

Threat Emulation Appliances - Support for Windows 11 OS

261

inside

Advisor

570

The policy package is not visible in SmartConsole on R81.10.

788

inside

Employee

357

TME Under The Hood: VSNext - Now On Video!

357

Solved

inside

Explorer

358

Snapshot operation fails in CLI but works in WEB partially

358

inside

Advisor

326

Test via snmpwalk or cli if IPS Bypass is set to track via SNMP alert

798

Solved

inside

Champion

1467

cpisp_update script does not work on R81.10?

3759

Solved

inside

Champion

28816

Enterprise and Hybrid Mesh Firewall 2025: 3rd-Party Lab Insights - Recording

324

Solved

inside

Contributor

401

Question about transceiver compatibility.

401

inside

Participant

182

Identity awareness with Hybrid IDP

182

inside

Advisor

308

Change VPN client authentication option

308

inside

Contributor

3202

CP Identity Awareness with IDC Users Failed Login Error FW Not Able to Detect Certain Users

284

inside

Explorer

283

Failed login alerts because of TACACS+ authentication failure

283

inside

Explorer

416

Smartconsole doesn't show any task statuses | R82

416

inside

Advisor

418

How to change my usercenter account email address

418

inside

Admin

28776

How to Request an Evaluation License for Security Gateways and Management, Endpoint Security

31864

inside

Admin

343

AI-Powered Cyber Risk & Compliance Management - Americas

343

Solved

inside

Explorer

296

Migration from On-Prem checkpoint management server to checkpoint management server in VM

296

inside

Admin

473

AI-Powered Cyber Risk & Compliance Management - EMEA

473

Solved

inside

Explorer

9480

Ikev2 Phase2 is not getting up

9480

Solved

inside

Advisor

689

Pricing intance checkpoint AWS

181

inside

Explorer

312

A simple question on Anti-spoofing ?

312

inside

Advisor

674

Fix Checkpoint Logs Confusion: 'Drop' to 'Warning' for URG Flags – New Insights on Ports 1524 & 1525

674

inside

Contributor

329

RTP traffic doesn't show in the logs

329

Solved

inside

Explorer

7323

Retrieving Policy from Firewall

7323

inside

Explorer

380

R82 Site to Site VPN with third party Router

1542

inside

Authority

353

Gateway secure log - Can these be seen in Smart Console

309

inside

Advisor

248

Deploying Mobile Access for Windows to unmanaged hosts

248

inside

Collaborator

294

How to calculate VSX CoreXL instance for network traffic load

294

inside

Explorer

285

Logging of FW rules on newly created VSX vFW no thowing up in central logging in Smart console

285

Solved

inside

Participant

484

Site to Site VPN issue during cluster failover

718

inside

Advisor

344

permission profiles - modifying reports - view settings missing

344

inside

Advisor

250

Switching Capsule client from HTTPS to IPSEC

250

inside

Explorer

430

Blocking Cloud Providers Private Tunnel

430

inside

Champion

12224

R80.20 - SYN Defender on SecureXL Level

12224

Solved

inside

Collaborator

23291

internet access through firewall

115

inside

Participant

535

smartConsole unauthorized client

535

inside

Contributor

522

New Command After Clean Install

522

Solved

inside

Explorer

782

How layered policies are matched | FW, APP, URL

782

Solved

inside

Advisor

750

How to migrate a policy package between Security Management servers

750

Solved

inside

Explorer

1163

not able to access advanced level of SK

1163

inside

Explorer

5429

Lots of message about Alert on Connection Type

5429

Solved

inside

Advisor

602

Difference between show system disk usage and df -H

602

Solved

inside

Contributor

427

Remove manual link speed and MTU configuration

1175

inside

Contributor

309

Estimated R82 release recommended date?

291

Solved

inside

Legend

245

Are CP Products with 81.x and 82 safe from CVE-2025-26465 and CVE-2025-26466

976

inside

Collaborator

270

Unable to access new checkpoint gateway using WebUI

7760

Solved

inside

Collaborator

8658

How to enable history on cli gaia?

8658

Solved

inside

Explorer

324

Upgrade R80.20 cluster to R81.20

324

Solved

inside

Leader

1156

Upgrade is failing from R81.10 to R82

1156

inside

Contributor

1920

R82 US Government IPv6 certification - USGv6R1

238

Solved

inside

Explorer

313

Is Secure Domain Login and SAML authentication compatible for VPN

313

inside

Advisor

805

Problemas restoring the 2nd node of a VSX cluster

834

inside

Admin

1503

Updatable blocklists from web-server

416

Solved

inside

Contributor

692

Is it possible to make a local backup of a cloud based smart-1 cloud management?

692

Solved

inside

Participant

878

Send logs to additional Syslog Server directly from Security Gateways managed by Smart-1 Cloud

878

inside

Employee

973

Important Announcement: Upcoming Change to Zero Touch API Login Procedure

973

inside

Advisor

808

Question about permission profiles regarding Inspection settings

324

inside

Advisor

622

Monitor user / read user with permissions to execute troubleshooting commands

257

inside

Explorer

327

Site to Site VPN between Quantum Spark and 3rd party Juniper SRX

415

Solved

inside

Mentor

546

VPN Routing between Domain Based and Route Based VPN

3042

inside

Participant

711

Site2Site vpn comunication issue

711

inside

Participant

5647

Anti-Spoofing option "Don't check packets from" is greyed out

816

Solved

inside

Advisor

806

ESP packets are sourced from wrong interface

4789

inside

Advisor

387

clusterXL - show VIP - show prio

387

Solved

inside

Explorer

388

BACKUP OF ALL "SMS" CONFIGURATION TO IMPORT IT TO A NEW VIRTUAL MACHINE

388

inside

Collaborator

2230

Lots of First packet isn't SYN

2230

inside

Collaborator

242

Migrate OnPremise Mangement To AWS

242

Solved

inside

Collaborator

3511

R82: ElasticXL - Now on Video!

388

inside

Contributor

254

3rd Party Proxy with deep instpection

437

Solved

inside

Collaborator

736

State: Connection with 'fw-vsx-n01' is lost

736

inside

Collaborator

394

Using Broadcast or IGMP mode in OSPF

394

No messages.

General Topics

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Virtual

Wed 28 May 2025 @ 03:00 PM (CEST)

Harnessing AI to Prevent Cyber Attacks and Enhance Defense - EMEA

Virtual

Wed 28 May 2025 @ 02:00 PM (EDT)

Harnessing AI to Prevent Cyber Attacks and Enhance Defense - Americas

Virtual

Thu 29 May 2025 @ 03:00 PM (CEST)

The Hybrid Security Revolution: The SASE Advantage - EMEA

Virtual

Thu 29 May 2025 @ 02:00 PM (EDT)

The Hybrid Security Revolution: The SASE Advantage - AMER

Virtual

Thu 29 May 2025 @ 02:00 PM (EDT)

Americas: Remote Access and SASE Best Practices

In-Person

Tue 03 Jun 2025 @ 09:00 AM (CEST)

CheckMates LIve France - Workshop Check Point Quantum

Virtual

Wed 28 May 2025 @ 03:00 PM (CEST)

Harnessing AI to Prevent Cyber Attacks and Enhance Defense - EMEA

Virtual

Wed 28 May 2025 @ 02:00 PM (EDT)

Harnessing AI to Prevent Cyber Attacks and Enhance Defense - Americas

Virtual

Thu 29 May 2025 @ 03:00 PM (CEST)

The Hybrid Security Revolution: The SASE Advantage - EMEA

Virtual

Thu 29 May 2025 @ 02:00 PM (EDT)

The Hybrid Security Revolution: The SASE Advantage - AMER

Virtual

Thu 29 May 2025 @ 02:00 PM (EDT)

Americas: Remote Access and SASE Best Practices

Virtual

Tue 03 Jun 2025 @ 03:00 PM (CEST)

Maestro Masters EMEA: Maestro Migration and Upgrade Best Practices

In-Person

Tue 03 Jun 2025 @ 09:00 AM (CEST)

CheckMates LIve France - Workshop Check Point Quantum

In-Person

Tue 03 Jun 2025 @ 06:00 PM (EDT)

Montreal: CPX Recap

In-Person

Tue 10 Jun 2025 @ 06:00 PM (EDT)

Quebec City: CPX Recap

In-Person

Tue 17 Jun 2025 @ 06:00 PM (COT)

Panama: CheckMates SASE Night: Seguridad y Rendimiento en la era Cloud

CheckMates Events

Are you a member of CheckMates?