General Topics

CheckMates Fest 2026
Join the Celebration!

AI Security Masters
E1: How AI is Reshaping Our World

MVP 2026: Submissions
Are Now Open!

More details here

What's New in R82.10?

Watch Now

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
Maestro Madness

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

inside

Participant

26914

Issue connecting to the management server via smart console

26914

inside

Participant

26900

site to site VPN troubleshooting without monitoring blade

26900

inside

Contributor

26501

Configuring CLuster XL step by step

26400

inside

Advisor

26299

SecureXL is enabled, but the traffic is not accelerated

26299

Solved

inside

Collaborator

26099

ICMP reply does not match a previous request

25499

Solved

inside

Contributor

25499

High CPU after upgrade from 77.30 to 80.10

25499

Solved

inside

Advisor

25399

R81 - SNMP does not support SHA1 anymore

25399

inside

Explorer

25300

Stealth rule vs Management Rule

24740

inside

Contributor

24700

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

24499

inside

Collaborator

24199

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

24199

inside

Participant

24099

How can I find Throughput statistics?

24099

inside

Contributor

23981

R80.10 gateway, can't set sim_clamp_vpn_mss

23799

Solved

inside

Participant

23700

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

23700

Solved

inside

Advisor

23507

Aruba Clear Pass Integration - API

23197

inside

Admin

23000

Get all the Gaia version and installed jumb hotfix

22722

inside

MVP Platinum

22700

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

22700

inside

MVP Platinum

22699

R80.40 - Dynamic split of CoreXL

22699

inside

Advisor

22499

Best practise - How often do you patch/upgrade your gateways?

22499

inside

Participant

22499

How to get interface status of particular time slot

22400

inside

Participant

22399

HTTPS inspection with trusted certificate

22399

Solved

inside

Collaborator

22299

How to handle core-dumps and crash dumps

22299

Solved

inside

Collaborator

22299

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

22299

inside

MVP Platinum

22146

Check Point Site-to-Site VPN Compatibility Matrix

22146

inside

Admin

22137

R77.30 Take 286: New Jumbo Hotfix GA Release

22137

Solved

inside

Contributor

22109

CheckPoint redirect to IP address 62.0.58.94

21799

inside

Explorer

21620

how to check VPN phase 1 and phase 2 status?

21620

inside

Participant

21599

Monitoring standby member in a cluster

21599

inside

Advisor

21500

Outbound SSL Inspection: A war story

21500

inside

Contributor

21499

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

21499

inside

Contributor

21499

Discovering changes in topology table

21400

inside

MVP Gold

21399

"Max Power" Book Second Edition Released!

21399

inside

Participant

21200

Both security gateways are active in the Full HA cluster

21200

Solved

inside

Contributor

21112

Finding root cause for all the F2F traffic

21112

inside

Explorer

21112

Policy Based Routing and default route / features

21112

inside

Champion

21100

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

21100

inside

Admin

21000

Security Gateway Performance Optimization Excerpt

21000

Solved

inside

Explorer

20799

How to check ThreatCloud URL Reputation?

20799

Solved

inside

Advisor

20799

How to see what firewall rules match some traffic

20799

inside

MVP Platinum

20700

HP Server DL360/380 G9 reboot issue!

20700

inside

Advisor

20699

RSS feed for checkpoint.com is not working any more

20600

inside

Advisor

20403

Remote Access VPN in a Load-sharing Cluster Environment

20403

inside

Collaborator

20399

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

20099

Solved

inside

Collaborator

20099

DNS Resolution failing but ping to IP address is succesful.

20099

inside

Participant

20000

Site-to-site vpn Tunnel to a non Checkpoint Gateway

19900

inside

Collaborator

19899

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

19899

inside

Admin

19899

R80.30 Early Availability Program is started!

19899

inside

MVP Platinum

19897

Which version is better? R80.10 or R77.30

19897

inside

Contributor

19820

static NAT vs hide behind an IP

19820

inside

MVP Platinum

19802

Check Point Support Resources - Top 10

19802

inside

Explorer

19800

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

19800

Solved

inside

Advisor

19800

Hide NAT: Simultaneous Connections to the same destination

19800

inside

Admin

19799

All Products and Where To Post About Them

19799

Solved

inside

Contributor

19700

Upgrading form R81.10 to R81.20

19700

Solved

inside

Contributor

19700

How to list arp table and identify network devices with mac under Check Point FWs

19401

Solved

inside

Contributor

19399

How to show the active connection to a specific host

19399

inside

Champion

19399

Configuring dynamic routing in clustered VSX

19399

inside

Participant

19300

Types of NAT used in checkpoint firewall

19300

Solved

inside

Champion

19299

Gateway behind NAT. What limitations am I to be aware of?

19299

inside

Admin

19276

R80.30 Technical Update TechTalk

19276

inside

Collaborator

19244

Let's create Check Point Super Cheat Sheet

19244

inside

Contributor

19200

Disable NAT on SIP payload - breaks ICE

19197

inside

Admin

19145

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

19037

inside

Contributor

19013

How can I setup a primary and backup S2S VPN tunnels

19013

Solved

inside

MVP Platinum

19000

Pulling FW data fron MDS using a script.

18999

inside

Admin

18999

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18999

inside

Participant

18899

IPSec Tunnel Failing to establish

18899

inside

Contributor

18899

Increasing Fifo Buffers on Firewall Interface

18899

Solved

inside

Collaborator

18899

Blocking for specific file types in Check Point Firewall

18899

Solved

inside

Contributor

18898

Tip of the week: Support Center's Upgrade Wizard

18800

Solved

inside

MVP Platinum

18798

R80.20 Issue : Monitoring standby cluster members via VPN

18798

inside

Collaborator

18795

JHF 317 breaking sync connection and not coming back up

18795

Solved

inside

Participant

18702

R80.20 strange behaviour - random TCP session timeout values - fw ctl conntab

18702

inside

Advisor

18699

Check Point Clustering between two Datacenters

18699

inside

Participant

18699

Can you explain the impact of using fwstop and cpstop ?

18699

inside

Participant

18460

syn-ack on every IP address on port tcp_80 during vulnerability scan

18460

inside

Champion

18400

Identity Awareness getting DC Name only

18400

inside

Employee

18399

Identity Awareness Agents SK with direct links - published!

18399

Solved

inside

Contributor

18399

Custom URL matching with HTTPS categorization

18399

inside

Advisor

18399

Activating Identity Awareness to Intergrate AD

18399

inside

Explorer

18299

ISP Redundancy (load sharing) issue in R80.10

18299

inside

Explorer

18201

Verify Enabled Cipher Suites in HTTPS Inspection

18201

inside

Mentor

18200

101

"UDP checksum is incorrect" - 100s of IPv6 DROPs in fw.log - TP/IPS responsible?

18200

101

inside

Explorer

18100

What is route and how to configure route?

18100

Solved

inside

Participant

18099

Https inspection Validation error

18097

inside

Advisor

18001

Check Point Support Tools - Top 10

17999

inside

Collaborator

17999

SecureXL R80.20 - Issue on ALL High TCP Ports

17999

inside

Contributor

17999

Do any Checkpoint appliances offer SSL offload?

17999

inside

Advisor

17999

Stateful Inspection on Gateways

17999

inside

Collaborator

17903

Check Point Deployment Shell internal error

17903

inside

Participant

17833

Untrusted TLS/SSL server X.509 certificate

17833

inside

MVP Platinum

17799

Open Server - HCL for multi queue network cards

17799

Solved

inside

Contributor

17700

Report show spam category with "accept" actions but not blocking

17699

inside

Explorer

17548

Domain object is not working in R80.10 properly

17548

Solved

inside

Advisor

17400

CheckPoint TLS 1.3 support: When?

17400

inside

Participant

17400

Physical memory vs FW memory. Explanation needed!

17400

Solved

inside

Participant

17400

Combine VLAN and physical interface, which already has an assigned IP

17399

inside

Explorer

17299

What does high si mean on a FW Worker core?

17299

inside

Contributor

17299

LDAP Authentication failed in SSL VPN

17298

inside

Advisor

17210

Showing logs "Missing OS Route" when place new CP Appliance (Suspect ARP issue)

17210

Solved

inside

Contributor

17199

upgarde to R80.30 using CPUSE failing

17199

inside

Participant

17199

Application database update failed

17099

inside

MVP Gold

17099

Performance of a single connection ?

17099

inside

Admin

17099

Delete a specific connection entry in Checkpoint Gateway

17011

Solved

inside

Contributor

17000

NAT Exhaustion - Hide NAT failures

17000

Solved

inside

Participant

16900

URL Filtering and Application Control in my R80.20 not dropping categories

16899

inside

Employee

16800

sk164752 - Installing DOOM on Gaia

16800

inside

Advisor

16800

Custom Intelligence Feed Exceptions Not Working

16800

inside

Participant

16800

Best Practices for Identity Collector Architecture

16800

Solved

inside

MVP Platinum

16799

R8x - Gateway Performance Metrics

16799

Solved

inside

Collaborator

16715

Unable to open URL Categorization link

16715

inside

Participant

16700

Request for VSX training Videos R80.10 or R77.X

16700

Solved

inside

Collaborator

347

Are Logs Still Visible If Only the index File Remains?

347

Solved

inside

Participant

55635

Best way to whitelist KnowBe4 Phishing domains?

55635

inside

MVP Platinum

550

Special functions via policy - name field

550

Solved

inside

Collaborator

580

Using Identity Awareness Collector with Cisco FTD Syslogging

580

inside

Participant

527

Firewall is freezing/crashing randomly after upgrade to R82

527

inside

Participant

545

How to allow redirects on Cloudflare

545

inside

Explorer

278

R82 http proxy and dns proxy forwarding domains not working

278

inside

Admin

962

BRICKSTORM: A Stealthy Espionage Campaign Targeting Enterprise Infrastructure (sk184082)

962

inside

MVP Gold

2926

Ongoing issue: high CPU load fw_workers + rad

2926

inside

Advisor

408

How to safely reuse an existing cluster

408

inside

Contributor

465

Policy installation fails with "Error code 2000025" and sk177710

465

inside

Explorer

658

Threat Emulation update failed

658

inside

Advisor

3778

unable to ssh to device after JHF upgrade

3778

Solved

inside

Advisor

872

Difference Between Configuring Proxy on Firewall CLI vs Cluster Object in SmartConsole

872

Solved

inside

Participant

2682

Proxy HTTP/HTTPS - two sessions

2682

Solved

inside

MVP Silver

583

What should be the settings for ingesting logs in SIEM for self managed spark devices

235

Solved

inside

Explorer

1000

Unable to remote save snapshot via SCP.

1000

inside

Advisor

2083

forklifting 5xxx appliances -> 9100 UPPAK observations

2083

inside

Advisor

271

ISP redundancy and VPNs to azure

271

Solved

inside

MVP Platinum

218

An idea from customer about web UI jumbo hotfix install

218

Solved

inside

Collaborator

1430

HTTPS inspection - Create a CSR for an external CA to use for the outbound certificate

1430

inside

Employee

1264

Jumbo Hotfix Accumulator for Quantum Force 3900 Appliances take #22 has been released today

1264

Solved

inside

Contributor

733

Migrate eth interface to a VLAN interface in bond

733

Solved

inside

Participant

729

Strange BGP announcement of a /31 network as /32

729

Solved

inside

Advisor

604

Clarification on “Check Point 6200P” Model

604

Solved

inside

Explorer

522

Memory cache usage on 16200 appliance – expected behavior?

1222

inside

Employee

8695

Announcement: Check Point R82 - Recommended Release

8695

inside

Advisor

278

Global Policy Package - Skip/Goes to Domain Layer action

278

Solved

inside

Collaborator

1081

Question About Default Threat Prevention Profiles

259

Solved

inside

Advisor

401

R81.20 Global Properties Stateful Inspection default settings

401

inside

MVP Silver

669

Common Criteria for Harmony Endpoint Security with compliance to 2 NIAP Protection Profiles

1152

Solved

inside

Admin

9601

IMPORTANT - Action Required For VPN/Remote Access Security Gateways Using DigiCert - by Sep 8, 2025

9601

Solved

inside

Contributor

404

Single VSY within VSX environment wont send logs to dedicated log server

404

inside

Champion

19478

Configuring dynamic routing in clustered VSX

19478

inside

Collaborator

891

Failed login SmartConsole after upgrade Win11

891

Solved

inside

Advisor

1254

Tip: How to deal with RAD errors

877

inside

Explorer

370

Server Error in '/owa' Application

370

inside

Contributor

3665

VPN issue stuck in Phase 1 and sometimes disconnects

3665

Solved

inside

MVP Gold

541

new transciever CPAC-TR-25SR-DM

360

inside

MVP Gold

335

UPDATE - DigiCert Certificate Expiration Mitigated

4104

inside

Advisor

476

idrac - how to create account with admin role

476

inside

Employee

3468

Introducing the New Interactive Ideas Portal – Join the Pilot!

3468

inside

Contributor

1571

Process file types known to contain malware

1571

Solved

inside

Participant

33095

useful debug command in checkpoint

33095

inside

Contributor

550

Route Based VPN Network SA no route

550

inside

MVP Gold

367

Can not access smart console over site-site VPN

367

Solved

inside

Explorer

297

External Certificates for IPSEC VPN

297

inside

Advisor

416

Rewriting internet access policy

416

Solved

inside

Participant

4246

Site to site vpn drops on policy install

4246

inside

Contributor

306

Customer FTP traffic keeps triggering new IPS protections

306

inside

Collaborator

3996

Trusted CA List is missing a lot

3996

inside

Advisor

734

Install Policy pushed but still visible by other admin

231

Solved

inside

Advisor

1140

CPUSE v2606 manual installation failure

886

inside

Employee

259

R82 Jumbo Hotfix Accumulator take 39 has been released

259

inside

Advisor

764

Best Way to Export Policy Package for Reporting

764

Solved

inside

Advisor

2010

Regenerate Token for MaaS Tunnel

2010

inside

Collaborator

419

a third-party certificate on a clustered and centrally managed Appliance 1900

258

Solved

inside

Participant

459

Checkpoint 19000 Supported Transceivers Sync

459

Solved

inside

MVP Gold

657

R82 Take 36 is definitely taking backup of logs as well ended in a huge file size

657

inside

Explorer

374

Testing primary and secondary bond interfaces

374

Solved

inside

Participant

511

Best Practices for Threat Prevention API Calls to Appliance - API repository

511

inside

Advisor

282

HA Firewall Migration: Sync over Dedicated Point-to-Point VLAN

282

Solved

inside

Collaborator

521

What are the new NAT options in SMS and GW for?

521

Solved

inside

Contributor

3743

Traffic initiated from Lan to VPN Endpoint Client Blocked

1265

inside

Participant

1386

best practices for blocking URLs in a scenario where resources have different URLs but the same IP

1386

Solved

inside

Advisor

4344

Quantum Force 9000 Appliance OS version Compatibility

612

inside

MVP Platinum

564

Help Shape the Future of AI at Check Point

339

inside

Collaborator

1529

Brute-Force Attack on Check Point Mobile VPN: Multiple IPs and Fake Usernames

1529

Solved

inside

Collaborator

1257

Firewall - Automating Firewall Rule Cleanup Based on Usage

1257

inside

Employee

1428

CVE-2025-45582 - tar: Tar path traversal

1643

Solved

inside

Advisor

424

Peer certificate verification failed after certificate replacement

424

Solved

inside

Contributor

19484

How to list arp table and identify network devices with mac under Check Point FWs

19484

Solved

inside

Explorer

852

Remote Access VPN – Can specific routes be assigned to particular users?

852

inside

MVP Platinum

1349

R8x - Performance Tuning Tip - Appliance Sizing

1349

inside

Participant

3973

SMS Upgrade from R81 to R82 : Migrate export Warnings, S2S VPN

1695

Solved

inside

Contributor

651

add rule to policy via mgmt_Cli fails

651

inside

Explorer

336

Behaviour after regular contract/subscription expiration

447

Solved

inside

Advisor

795

Log file isn't shown automatically after upgrade to R82

795

Solved

inside

Explorer

585

How to perform manual fail-over between instances of Virtual System in VSX cluster in VSLS mode

585

Solved

inside

Explorer

1646

Migrating from Check Point 3600T to Quantum Spark 1600,Need Help with VPN User Certificate Migration

1646

inside

Participant

879

7000 appliance R81.20 iSO image install

879

inside

Explorer

234

Unable to take ssh for MGMT Port

234

Solved

inside

Advisor

498

Updatable (geo) objects and IP addresses, again

498

Solved

inside

Advisor

986

Renaming a Gateway Node in a Cluster

986

Solved

inside

Advisor

578

Best Practices for Upgrading an HA Cluster from R81.10 to R81.20

578

inside

MVP Platinum

379

R82.10 - Hardware Security Module (HSM) for TLS 1.3

379

Solved

inside

Advisor

3273

How do you keep track of the latest FW/OS updates?

3273

Solved

inside

Advisor

2330

Manual FTP transfers are always corrupted while scheduled backups are not

736

inside

Employee

245

Estimated R82 release recommended date?

4331

inside

Collaborator

4065

Anti-bot Update failed. Contract entitlement check failed. Gateway can not access internet

4065

Solved

inside

Explorer

470

Monitord process consume high cpu, does it safe to terminate the process during production hour?

470

inside

Collaborator

1002

We want to upgrade our management station from R81.20 to R82 and followed by the upgrade of Gateways

1218

Solved

inside

Contributor

1233

Zero-downtime migration/upgrade to new hardware (ClusterXL Active/Standby)

1233

inside

MVP Platinum

4608

'fw ctl conntab -x' issue in R81.10

4608

Solved

inside

Advisor

1446

How to view the connections of the dynamic dispatcher's table

1446

Solved

inside

Collaborator

507

Check Point Management Server - insufficient space in the /opt/cpdabackup/backup directory.

507

inside

Explorer

2043

A suspicious traffic log was observed during monitoring

464

inside

Admin

7177

Inside the SharePoint Zero-Day (CVE-2025-53770): What It Means and How to Stay Protected - Materials

7177

inside

Explorer

277

I need Check_Point_R81.20_T631_ScalablePlatform

613

inside

Participant

3710

Questions about User Mode and Kernel Mode

3710

inside

Explorer

846

Cannot start Mobile Access Portal Agent

846

inside

Advisor

451

Openserver Dell R660xs, anyone ever tried this machine?

451

inside

Explorer

1024

SharePoint Zero-Day CVE-2025-53770 Actively Exploited - Take actions!

2150

Solved

inside

Collaborator

28863

Unable to establish the SIC(Outgoing Policy)

382

inside

Employee

1022

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

7207

inside

Admin

3051

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

3051

inside

MVP Gold

468

RA clients not able to access external cluster interface

468

inside

Explorer

479

Microsegmentation with Firewall Hardware

479

inside

Explorer

448

the new subnets are unable to communicate through the existing VPN tunnel

448

inside

Participant

775

SMS migration from XCP-NG to ProxMox

775

inside

Advisor

4573

Take logging out of the implied rules

1058

inside

MVP Platinum

1889

SmartConsole Shortcuts - cheat sheet

1889

inside

Explorer

679

I can't find how my dns host is used within the FW object.

679

inside

Explorer

4340

Checkpoint Gateway sending DNS requests to DNS server for malicious URLs

4340

Solved

inside

Explorer

753

BGP route on Maestro Active/Active are showing as inactive/unusable

753

inside

Employee

384

Introducing Managed SmartAwareness: Cyber Training, Fully Guided by Experts

384

Solved

inside

Contributor

1037

LOM interface - Console Session

1037

Solved

inside

Collaborator

1007

Reducing /var/log partition size on Gaia OS

1007

Solved

inside

Collaborator

14564

https inspection tip/feedback/suggestion

840

inside

Explorer

437

Disable Camelia Cipher on the firewall

437

inside

Collaborator

596

always-connect for standalone vpn client

596

Solved

inside

Collaborator

1518

Policy Installation Failed(Time out)-SMB Appliance

1518

Solved

inside

Admin

3618

New Products Introduction July 2025: Video, Slides, and Q&A

3618

Solved

inside

Advisor

627

Export all gateways IPs MDS + VSX

627

inside

Collaborator

967

Unable to access Site(CPNotEnoughDataForRuleMatch)

967

No messages.

General Topics

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

Wed 14 Jan 2026 @ 05:00 PM (CET)

CheckMates Fest 2026

Virtual

Thu 22 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 2: Hacking with AI: The Dark Side of Innovation

Thu 12 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 3: Exposing AI Vulnerabilities: CP<R> Latest Security Findings

Virtual

Thu 26 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 4: Powering Prevention: The AI Driving Check Point’s ThreatCloud

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

Virtual

Thu 22 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 2: Hacking with AI: The Dark Side of Innovation

Virtual

Thu 26 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 4: Powering Prevention: The AI Driving Check Point’s ThreatCloud

CheckMates Events

Are you a member of CheckMates?