General Topics

CheckMates Fest 2026
Join the Celebration!

AI Security Masters
E1: How AI is Reshaping Our World

MVP 2026: Submissions
Are Now Open!

More details here

What's New in R82.10?

Watch Now

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
R82.10 and Rationalizing Multi Vendor Security Policies

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

inside

Advisor

31099

R80.x - Performance Tuning Tip – User Mode Firewall vs. Kernel Mode Firewall

30900

Solved

inside

Contributor

30699

Eliminating Routing Asymmetry between Two Different Physical Sites Running Check Point Firewalls

30699

Solved

inside

Collaborator

30600

Check Point for Beginners - Typical Config Mistakes

29999

Solved

inside

Advisor

29799

When will R80.30 GA be available?

29700

Solved

inside

Contributor

29699

VPN - Check Point and Fortigate

29699

inside

Participant

29699

What is Check Point's solution for RPC traffic on Internal firewall?

29699

inside

Collaborator

29299

What happens when a license expires?

29099

inside

Advisor

28900

How to recover Gaia Admin password on VMware

28900

Solved

inside

Collaborator

28799

Check Point R80.20 Production and Public EA

27799

inside

Participant

27798

Domain Object when FQDN has multiple DNS results

27798

inside

MVP Platinum

27600

R80.10 User-Mode Firewall and performance impact

27600

inside

Admin

27099

Issue connecting to the management server via smart console

26914

inside

Participant

26900

site to site VPN troubleshooting without monitoring blade

26900

inside

Contributor

26599

Configuring CLuster XL step by step

26400

inside

Collaborator

26399

SecureXL is enabled, but the traffic is not accelerated

26399

Solved

inside

Collaborator

26300

R81 - SNMP does not support SHA1 anymore

25500

Solved

inside

Collaborator

25499

ICMP reply does not match a previous request

25499

Solved

inside

Contributor

25499

High CPU after upgrade from 77.30 to 80.10

25499

inside

Explorer

25399

Stealth rule vs Management Rule

24740

inside

Contributor

24700

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

24499

Solved

inside

Participant

24299

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

24299

inside

Collaborator

24199

How can I find Throughput statistics?

24099

inside

Contributor

23900

R80.10 gateway, can't set sim_clamp_vpn_mss

23900

Solved

inside

Participant

23799

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

23799

inside

Contributor

23599

Aruba Clear Pass Integration - API

23197

Solved

inside

Collaborator

23099

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

22799

inside

Participant

22799

Get all the Gaia version and installed jumb hotfix

22799

inside

MVP Platinum

22791

R80.40 - Dynamic split of CoreXL

22791

inside

Participant

22599

Best practise - How often do you patch/upgrade your gateways?

22499

Solved

inside

Collaborator

22402

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

22402

inside

Collaborator

22400

How to get interface status of particular time slot

22400

inside

Participant

22399

HTTPS inspection with trusted certificate

22399

inside

Admin

22300

R77.30 Take 286: New Jumbo Hotfix GA Release

22300

inside

MVP Platinum

22300

Check Point Site-to-Site VPN Compatibility Matrix

22300

Solved

inside

Collaborator

22299

How to handle core-dumps and crash dumps

22299

Solved

inside

Contributor

22199

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

21800

inside

Participant

21799

CheckPoint redirect to IP address 62.0.58.94

21799

inside

Explorer

21699

how to check VPN phase 1 and phase 2 status?

21699

inside

Advisor

21600

Outbound SSL Inspection: A war story

21600

inside

Contributor

21599

Monitoring standby member in a cluster

21599

inside

Contributor

21500

Discovering changes in topology table

21500

inside

MVP Gold

21399

"Max Power" Book Second Edition Released!

21399

inside

Participant

21299

Both security gateways are active in the Full HA cluster

21299

inside

Admin

21200

Security Gateway Performance Optimization Excerpt

21200

Solved

inside

Contributor

21199

Finding root cause for all the F2F traffic

21199

inside

Explorer

21112

Policy Based Routing and default route / features

21112

inside

Champion

21100

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

21100

Solved

inside

Explorer

20799

How to check ThreatCloud URL Reputation?

20799

Solved

inside

Advisor

20799

RSS feed for checkpoint.com is not working any more

20799

Solved

inside

Advisor

20799

How to see what firewall rules match some traffic

20799

inside

MVP Platinum

20798

HP Server DL360/380 G9 reboot issue!

20798

inside

Advisor

20699

Remote Access VPN in a Load-sharing Cluster Environment

20499

Solved

inside

Collaborator

20299

DNS Resolution failing but ping to IP address is succesful.

20299

inside

Advisor

20103

R80.30 Early Availability Program is started!

20100

inside

MVP Platinum

20099

Which version is better? R80.10 or R77.30

20099

inside

Explorer

20099

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

20099

inside

Participant

20000

Site-to-site vpn Tunnel to a non Checkpoint Gateway

19999

inside

Contributor

19899

static NAT vs hide behind an IP

19899

inside

Collaborator

19899

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

19899

inside

MVP Platinum

19802

Check Point Support Resources - Top 10

19802

inside

Explorer

19800

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

19800

Solved

inside

Advisor

19800

Hide NAT: Simultaneous Connections to the same destination

19800

inside

Admin

19799

All Products and Where To Post About Them

19799

Solved

inside

Contributor

19799

Upgrading form R81.10 to R81.20

19799

Solved

inside

Contributor

19797

Configuring dynamic routing in clustered VSX

19500

Solved

inside

Contributor

19495

How to list arp table and identify network devices with mac under Check Point FWs

19495

inside

Admin

19400

R80.30 Technical Update TechTalk

19400

inside

Admin

19400

Types of NAT used in checkpoint firewall

19399

Solved

inside

Contributor

19399

How to show the active connection to a specific host

19399

Solved

inside

Champion

19399

Gateway behind NAT. What limitations am I to be aware of?

19399

inside

Collaborator

19298

Let's create Check Point Super Cheat Sheet

19298

inside

Contributor

19200

Disable NAT on SIP payload - breaks ICE

19197

inside

Contributor

19100

How can I setup a primary and backup S2S VPN tunnels

19100

Solved

inside

MVP Gold

19099

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

19037

inside

Participant

19000

IPSec Tunnel Failing to establish

19000

Solved

inside

MVP Platinum

19000

JHF 317 breaking sync connection and not coming back up

18999

inside

Contributor

18999

Increasing Fifo Buffers on Firewall Interface

18999

inside

Collaborator

18999

Pulling FW data fron MDS using a script.

18999

Solved

inside

Collaborator

18999

Blocking for specific file types in Check Point Firewall

18999

inside

Admin

18999

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18999

Solved

inside

MVP Platinum

18899

R80.20 Issue : Monitoring standby cluster members via VPN

18899

Solved

inside

Contributor

18898

R80.20 strange behaviour - random TCP session timeout values - fw ctl conntab

18800

Solved

inside

Employee

18800

Tip of the week: Support Center's Upgrade Wizard

18800

inside

Participant

18799

Can you explain the impact of using fwstop and cpstop ?

18799

inside

Advisor

18699

Check Point Clustering between two Datacenters

18699

inside

Participant

18599

syn-ack on every IP address on port tcp_80 during vulnerability scan

18599

inside

Mentor

18595

101

"UDP checksum is incorrect" - 100s of IPv6 DROPs in fw.log - TP/IPS responsible?

18595

101

inside

Employee

18500

Identity Awareness Agents SK with direct links - published!

18500

Solved

inside

Advisor

520

9800 interfaces links down but switchports up

574

inside

Contributor

703

Best Practices for Websites and Applications

703

Solved

inside

Advisor

922

CVE-2025-32728 - permanent solution?

922

inside

MVP Platinum

859

VSX on Check Point 9300/9400 Appliances

859

Solved

inside

Collaborator

955

IPsec VPN between Checkpoint and Remote Server

955

inside

Explorer

381

Management-Server: Addition NIC or VSX-Cluster?

381

inside

Collaborator

1829

Port 19009 on MGMT Server Accessible from Internet via Implied Rule Despite GUI Clients List

1829

inside

Admin

227

Tips and Tricks 2025 #13 - Strategic Cyber Assessments: How to Strengthen Your Security Posture

227

inside

Admin

478

Learn About CheckMates October 2025

478

inside

MVP Platinum

1972

HowTo: Configure a VPN between FortiGate & Check Point

1972

Solved

inside

Explorer

1724

Unable to export Checkpoint firewall rulebase

1724

Solved

inside

MVP Gold

616

Can I configure complex views using smart reporter?

616

Solved

inside

Contributor

239

turning off secureXL resolves mac flapping?

239

Solved

inside

MVP Gold

550

Identifying failed ISP in case of ISP redundancy

550

Solved

inside

Advisor

398

Minimum RAM and CPU requirements for S1C Management

398

Solved

inside

Participant

1196

How are you keeping up with Check Point VPN/SIC Certificates

725

inside

Authority

728

Notification about changes within Support Life Cycle

728

inside

Contributor

1367

SIC not automatically renewing certificate in VSX

414

Solved

inside

Explorer

397

Secondary MDS Migration and IP Change

397

Solved

inside

Advisor

2210

ClusterXL – Should the standby member ever generate traffic with the VIP?

2210

Solved

inside

Advisor

705

R82 - ssl inspection auto bypass question

705

inside

MVP Platinum

383

Tips and Tricks 2025 #12 - Check Point PRO Support Overview & Update

148

Solved

inside

Contributor

745

Are Logs Still Visible If Only the index File Remains?

356

Solved

inside

Participant

55739

Best way to whitelist KnowBe4 Phishing domains?

55739

inside

MVP Platinum

558

Special functions via policy - name field

558

Solved

inside

Collaborator

596

Using Identity Awareness Collector with Cisco FTD Syslogging

596

inside

Participant

539

Firewall is freezing/crashing randomly after upgrade to R82

539

inside

Participant

557

How to allow redirects on Cloudflare

557

inside

Explorer

295

R82 http proxy and dns proxy forwarding domains not working

295

inside

Admin

998

BRICKSTORM: A Stealthy Espionage Campaign Targeting Enterprise Infrastructure (sk184082)

998

inside

MVP Gold

2947

Ongoing issue: high CPU load fw_workers + rad

2947

inside

Advisor

418

How to safely reuse an existing cluster

418

inside

Contributor

492

Policy installation fails with "Error code 2000025" and sk177710

492

inside

Explorer

681

Threat Emulation update failed

681

inside

Advisor

3863

unable to ssh to device after JHF upgrade

3863

Solved

inside

Advisor

913

Difference Between Configuring Proxy on Firewall CLI vs Cluster Object in SmartConsole

913

Solved

inside

Participant

2705

Proxy HTTP/HTTPS - two sessions

2705

Solved

inside

MVP Silver

606

What should be the settings for ingesting logs in SIEM for self managed spark devices

240

Solved

inside

Explorer

1014

Unable to remote save snapshot via SCP.

1014

inside

Advisor

2120

forklifting 5xxx appliances -> 9100 UPPAK observations

2120

inside

Advisor

285

ISP redundancy and VPNs to azure

285

Solved

inside

MVP Platinum

226

An idea from customer about web UI jumbo hotfix install

226

Solved

inside

Collaborator

1464

HTTPS inspection - Create a CSR for an external CA to use for the outbound certificate

1464

inside

Employee

1274

Jumbo Hotfix Accumulator for Quantum Force 3900 Appliances take #22 has been released today

1274

Solved

inside

Contributor

740

Migrate eth interface to a VLAN interface in bond

740

Solved

inside

Participant

742

Strange BGP announcement of a /31 network as /32

742

Solved

inside

Advisor

621

Clarification on “Check Point 6200P” Model

621

Solved

inside

Explorer

536

Memory cache usage on 16200 appliance – expected behavior?

1257

inside

Employee

8800

Announcement: Check Point R82 - Recommended Release

8800

inside

Advisor

291

Global Policy Package - Skip/Goes to Domain Layer action

291

Solved

inside

Collaborator

1093

Question About Default Threat Prevention Profiles

260

Solved

inside

Advisor

406

R81.20 Global Properties Stateful Inspection default settings

406

inside

MVP Silver

691

Common Criteria for Harmony Endpoint Security with compliance to 2 NIAP Protection Profiles

1165

Solved

inside

Admin

9966

IMPORTANT - Action Required For VPN/Remote Access Security Gateways Using DigiCert - by Sep 8, 2025

9966

Solved

inside

Contributor

423

Single VSY within VSX environment wont send logs to dedicated log server

423

inside

Champion

19560

Configuring dynamic routing in clustered VSX

19560

inside

Collaborator

910

Failed login SmartConsole after upgrade Win11

910

Solved

inside

Advisor

1289

Tip: How to deal with RAD errors

899

inside

Explorer

386

Server Error in '/owa' Application

386

inside

Contributor

3739

VPN issue stuck in Phase 1 and sometimes disconnects

3739

Solved

inside

MVP Gold

558

new transciever CPAC-TR-25SR-DM

376

inside

MVP Gold

343

UPDATE - DigiCert Certificate Expiration Mitigated

4166

inside

Advisor

490

idrac - how to create account with admin role

490

inside

Employee

3515

Introducing the New Interactive Ideas Portal – Join the Pilot!

3515

inside

Contributor

1589

Process file types known to contain malware

1589

Solved

inside

Participant

33176

useful debug command in checkpoint

33176

inside

Contributor

561

Route Based VPN Network SA no route

561

inside

MVP Gold

394

Can not access smart console over site-site VPN

394

Solved

inside

Explorer

301

External Certificates for IPSEC VPN

301

inside

Advisor

423

Rewriting internet access policy

423

Solved

inside

Participant

4268

Site to site vpn drops on policy install

4268

inside

Contributor

325

Customer FTP traffic keeps triggering new IPS protections

325

inside

Collaborator

4025

Trusted CA List is missing a lot

4025

inside

Advisor

754

Install Policy pushed but still visible by other admin

236

Solved

inside

Advisor

1156

CPUSE v2606 manual installation failure

888

inside

Employee

264

R82 Jumbo Hotfix Accumulator take 39 has been released

264

inside

Advisor

776

Best Way to Export Policy Package for Reporting

776

Solved

inside

Advisor

2089

Regenerate Token for MaaS Tunnel

2089

inside

Collaborator

442

a third-party certificate on a clustered and centrally managed Appliance 1900

264

Solved

inside

Participant

470

Checkpoint 19000 Supported Transceivers Sync

470

Solved

inside

MVP Gold

670

R82 Take 36 is definitely taking backup of logs as well ended in a huge file size

670

inside

Explorer

388

Testing primary and secondary bond interfaces

388

Solved

inside

Participant

520

Best Practices for Threat Prevention API Calls to Appliance - API repository

520

inside

Advisor

296

HA Firewall Migration: Sync over Dedicated Point-to-Point VLAN

296

Solved

inside

Collaborator

532

What are the new NAT options in SMS and GW for?

532

Solved

inside

Contributor

3843

Traffic initiated from Lan to VPN Endpoint Client Blocked

1295

inside

Participant

1399

best practices for blocking URLs in a scenario where resources have different URLs but the same IP

1399

Solved

inside

Advisor

4573

Quantum Force 9000 Appliance OS version Compatibility

630

inside

MVP Platinum

574

Help Shape the Future of AI at Check Point

347

inside

Collaborator

1573

Brute-Force Attack on Check Point Mobile VPN: Multiple IPs and Fake Usernames

1573

Solved

inside

Collaborator

1285

Firewall - Automating Firewall Rule Cleanup Based on Usage

1285

inside

Employee

1461

CVE-2025-45582 - tar: Tar path traversal

1664

Solved

inside

Advisor

433

Peer certificate verification failed after certificate replacement

433

Solved

inside

Contributor

19540

How to list arp table and identify network devices with mac under Check Point FWs

19540

Solved

inside

Explorer

894

Remote Access VPN – Can specific routes be assigned to particular users?

894

inside

MVP Platinum

1373

R8x - Performance Tuning Tip - Appliance Sizing

1373

inside

Participant

4010

SMS Upgrade from R81 to R82 : Migrate export Warnings, S2S VPN

1731

Solved

inside

Contributor

664

add rule to policy via mgmt_Cli fails

664

inside

Explorer

350

Behaviour after regular contract/subscription expiration

466

Solved

inside

Advisor

808

Log file isn't shown automatically after upgrade to R82

808

Solved

inside

Explorer

614

How to perform manual fail-over between instances of Virtual System in VSX cluster in VSLS mode

614

Solved

inside

Explorer

1675

Migrating from Check Point 3600T to Quantum Spark 1600,Need Help with VPN User Certificate Migration

1675

inside

Participant

907

7000 appliance R81.20 iSO image install

907

inside

Explorer

241

Unable to take ssh for MGMT Port

241

Solved

inside

Advisor

504

Updatable (geo) objects and IP addresses, again

504

Solved

inside

Advisor

1005

Renaming a Gateway Node in a Cluster

1005

Solved

inside

Advisor

591

Best Practices for Upgrading an HA Cluster from R81.10 to R81.20

591

No messages.

General Topics

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

Virtual

Fri 09 Jan 2026 @ 10:00 AM (CET)

CheckMates Live Netherlands - Sessie 42: Looking back & forward

Wed 14 Jan 2026 @ 05:00 PM (CET)

CheckMates Fest 2026

Virtual

Wed 21 Jan 2026 @ 11:00 AM (EST)

TechTalk: Quantum SD-WAN Monitoring

Virtual

Thu 22 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 2: Hacking with AI: The Dark Side of Innovation

Thu 12 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 3: Exposing AI Vulnerabilities: CP<R> Latest Security Findings

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

Virtual

Fri 09 Jan 2026 @ 10:00 AM (CET)

CheckMates Live Netherlands - Sessie 42: Looking back & forward

Virtual

Wed 21 Jan 2026 @ 11:00 AM (EST)

TechTalk: Quantum SD-WAN Monitoring

Virtual

Thu 22 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 2: Hacking with AI: The Dark Side of Innovation

Virtual

Thu 26 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 4: Powering Prevention: The AI Driving Check Point’s ThreatCloud

CheckMates Events

Are you a member of CheckMates?