General Topics

AI Security Masters
E1: How AI is Reshaping Our World

MVP 2026: Submissions
Are Now Open!

More details here

What's New in R82.10?

Watch Now

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
Maestro Madness

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

inside

Participant

26914

Issue connecting to the management server via smart console

26914

inside

Participant

26864

site to site VPN troubleshooting without monitoring blade

26864

inside

Contributor

26501

Configuring CLuster XL step by step

26369

inside

Advisor

26299

SecureXL is enabled, but the traffic is not accelerated

26299

Solved

inside

Collaborator

26099

ICMP reply does not match a previous request

25429

Solved

inside

Contributor

25409

High CPU after upgrade from 77.30 to 80.10

25409

inside

Explorer

25300

R81 - SNMP does not support SHA1 anymore

25299

Solved

inside

Contributor

25241

Stealth rule vs Management Rule

24740

inside

Contributor

24603

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

24399

Solved

inside

Participant

24199

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

24199

inside

Collaborator

24113

How can I find Throughput statistics?

24022

inside

Contributor

23899

R80.10 gateway, can't set sim_clamp_vpn_mss

23726

Solved

inside

Participant

23660

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

23660

Solved

inside

Advisor

23507

Aruba Clear Pass Integration - API

23008

Solved

inside

Collaborator

22914

Get all the Gaia version and installed jumb hotfix

22722

inside

MVP Platinum

22634

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

22634

inside

MVP Platinum

22583

R80.40 - Dynamic split of CoreXL

22583

inside

Participant

22441

Best practise - How often do you patch/upgrade your gateways?

22399

inside

Collaborator

22354

How to get interface status of particular time slot

22354

inside

Participant

22348

HTTPS inspection with trusted certificate

22348

Solved

inside

Collaborator

22299

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

22299

Solved

inside

Collaborator

22216

How to handle core-dumps and crash dumps

22216

inside

MVP Platinum

22146

Check Point Site-to-Site VPN Compatibility Matrix

22146

inside

Admin

22137

R77.30 Take 286: New Jumbo Hotfix GA Release

22137

Solved

inside

Contributor

22109

CheckPoint redirect to IP address 62.0.58.94

21739

inside

Explorer

21620

how to check VPN phase 1 and phase 2 status?

21620

inside

Participant

21550

Monitoring standby member in a cluster

21550

inside

Contributor

21499

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

21432

inside

MVP Gold

21303

"Max Power" Book Second Edition Released!

21303

inside

Advisor

21296

Outbound SSL Inspection: A war story

21296

inside

Contributor

21267

Discovering changes in topology table

21267

Solved

inside

Contributor

21112

Finding root cause for all the F2F traffic

21112

inside

Explorer

21112

Policy Based Routing and default route / features

21112

inside

Champion

21100

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

21100

inside

Participant

21099

Both security gateways are active in the Full HA cluster

21099

inside

Admin

21000

Security Gateway Performance Optimization Excerpt

21000

Solved

inside

Advisor

20737

How to see what firewall rules match some traffic

20737

Solved

inside

Explorer

20705

How to check ThreatCloud URL Reputation?

20699

inside

Advisor

20598

HP Server DL360/380 G9 reboot issue!

20556

Solved

inside

Participant

20399

Remote Access VPN in a Load-sharing Cluster Environment

20244

Solved

inside

Advisor

20197

RSS feed for checkpoint.com is not working any more

20197

inside

Advisor

20103

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

20099

Solved

inside

Collaborator

20099

DNS Resolution failing but ping to IP address is succesful.

20099

inside

Participant

19964

Site-to-site vpn Tunnel to a non Checkpoint Gateway

19900

inside

Collaborator

19899

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

19899

inside

Admin

19899

R80.30 Early Availability Program is started!

19899

inside

Contributor

19820

static NAT vs hide behind an IP

19820

inside

MVP Platinum

19813

Which version is better? R80.10 or R77.30

19813

inside

MVP Platinum

19802

Check Point Support Resources - Top 10

19802

inside

Explorer

19800

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

19800

inside

Admin

19776

All Products and Where To Post About Them

19776

Solved

inside

Advisor

19605

Hide NAT: Simultaneous Connections to the same destination

19605

Solved

inside

Contributor

19500

Upgrading form R81.10 to R81.20

19497

Solved

inside

Contributor

19401

How to list arp table and identify network devices with mac under Check Point FWs

19401

Solved

inside

Contributor

19303

How to show the active connection to a specific host

19303

inside

Participant

19300

Types of NAT used in checkpoint firewall

19300

Solved

inside

Champion

19299

Gateway behind NAT. What limitations am I to be aware of?

19299

inside

Admin

19276

R80.30 Technical Update TechTalk

19276

inside

Collaborator

19244

Let's create Check Point Super Cheat Sheet

19244

inside

Contributor

19200

Configuring dynamic routing in clustered VSX

19199

inside

Admin

19145

Disable NAT on SIP payload - breaks ICE

19113

inside

Explorer

19037

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

19037

inside

Contributor

19013

How can I setup a primary and backup S2S VPN tunnels

19013

inside

Collaborator

18999

Pulling FW data fron MDS using a script.

18999

inside

Admin

18966

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18966

Solved

inside

MVP Gold

18899

IPSec Tunnel Failing to establish

18884

inside

Contributor

18833

Increasing Fifo Buffers on Firewall Interface

18833

Solved

inside

Contributor

18821

Tip of the week: Support Center's Upgrade Wizard

18800

Solved

inside

MVP Platinum

18798

R80.20 Issue : Monitoring standby cluster members via VPN

18798

inside

Participant

18699

Can you explain the impact of using fwstop and cpstop ?

18699

Solved

inside

Collaborator

18699

Blocking for specific file types in Check Point Firewall

18699

inside

Advisor

18599

Check Point Clustering between two Datacenters

18599

inside

Collaborator

18545

JHF 317 breaking sync connection and not coming back up

18545

Solved

inside

Participant

18399

R80.20 strange behaviour - random TCP session timeout values - fw ctl conntab

18399

inside

Employee

18399

Identity Awareness Agents SK with direct links - published!

18399

Solved

inside

Contributor

18340

Custom URL matching with HTTPS categorization

18340

inside

Advisor

18338

Activating Identity Awareness to Intergrate AD

18338

inside

Explorer

18249

ISP Redundancy (load sharing) issue in R80.10

18249

inside

Champion

18242

Identity Awareness getting DC Name only

18242

inside

Explorer

18201

Verify Enabled Cipher Suites in HTTPS Inspection

18201

inside

Participant

18199

syn-ack on every IP address on port tcp_80 during vulnerability scan

18199

inside

Explorer

18100

What is route and how to configure route?

18100

Solved

inside

Participant

18099

Https inspection Validation error

18001

inside

MVP Platinum

17999

Check Point Support Tools - Top 10

17999

inside

Advisor

17976

Stateful Inspection on Gateways

17976

inside

Advisor

17939

Do any Checkpoint appliances offer SSL offload?

17939

inside

Collaborator

17891

SecureXL R80.20 - Issue on ALL High TCP Ports

17891

inside

Contributor

17890

Check Point Deployment Shell internal error

17852

inside

Contributor

17851

Untrusted TLS/SSL server X.509 certificate

17833

inside

Advisor

17801

"UDP checksum is incorrect" - 100s of IPv6 DROPs in fw.log - TP/IPS responsible?

17799

101

inside

MVP Platinum

17705

Open Server - HCL for multi queue network cards

17705

Solved

inside

Contributor

17606

Report show spam category with "accept" actions but not blocking

17600

inside

Explorer

17548

Domain object is not working in R80.10 properly

17548

Solved

inside

Advisor

17400

CheckPoint TLS 1.3 support: When?

17400

inside

Participant

17345

Combine VLAN and physical interface, which already has an assigned IP

17345

inside

Employee

17331

LDAP Authentication failed in SSL VPN

17244

inside

Advisor

17210

Showing logs "Missing OS Route" when place new CP Appliance (Suspect ARP issue)

17210

inside

Advisor

17200

What does high si mean on a FW Worker core?

17200

Solved

inside

Contributor

17199

upgarde to R80.30 using CPUSE failing

17199

inside

Participant

17199

Physical memory vs FW memory. Explanation needed!

17198

inside

MVP Gold

17099

Performance of a single connection ?

17099

inside

Participant

17018

Application database update failed

17018

inside

Explorer

17011

Delete a specific connection entry in Checkpoint Gateway

17011

Solved

inside

Contributor

17000

NAT Exhaustion - Hide NAT failures

17000

inside

Admin

16999

URL Filtering and Application Control in my R80.20 not dropping categories

16801

Solved

inside

Participant

16800

Unable to open URL Categorization link

16715

Solved

inside

MVP Platinum

16699

R8x - Gateway Performance Metrics

16699

inside

Participant

16699

Best Practices for Identity Collector Architecture

16699

inside

Employee

16693

sk164752 - Installing DOOM on Gaia

16693

inside

Participant

16650

Request for VSX training Videos R80.10 or R77.X

16650

inside

Collaborator

16602

ISP Redundancy & Policy Based Routing

16602

inside

Advisor

394

How to safely reuse an existing cluster

394

inside

Contributor

455

Policy installation fails with "Error code 2000025" and sk177710

455

inside

Explorer

631

Threat Emulation update failed

631

inside

Advisor

3548

unable to ssh to device after JHF upgrade

3548

Solved

inside

Advisor

811

Difference Between Configuring Proxy on Firewall CLI vs Cluster Object in SmartConsole

811

Solved

inside

Participant

2645

Proxy HTTP/HTTPS - two sessions

2645

Solved

inside

MVP Silver

557

What should be the settings for ingesting logs in SIEM for self managed spark devices

224

Solved

inside

Explorer

953

Unable to remote save snapshot via SCP.

953

inside

Advisor

2046

forklifting 5xxx appliances -> 9100 UPPAK observations

2046

inside

Advisor

257

ISP redundancy and VPNs to azure

257

Solved

inside

MVP Platinum

213

An idea from customer about web UI jumbo hotfix install

213

Solved

inside

Collaborator

1386

HTTPS inspection - Create a CSR for an external CA to use for the outbound certificate

1386

inside

Employee

1232

Jumbo Hotfix Accumulator for Quantum Force 3900 Appliances take #22 has been released today

1232

Solved

inside

Contributor

715

Migrate eth interface to a VLAN interface in bond

715

Solved

inside

Participant

710

Strange BGP announcement of a /31 network as /32

710

Solved

inside

Advisor

587

Clarification on “Check Point 6200P” Model

587

Solved

inside

Explorer

501

Memory cache usage on 16200 appliance – expected behavior?

1177

inside

Employee

8503

Announcement: Check Point R82 - Recommended Release

8503

inside

Advisor

269

Global Policy Package - Skip/Goes to Domain Layer action

269

Solved

inside

Collaborator

1032

Question About Default Threat Prevention Profiles

252

Solved

inside

Advisor

391

R81.20 Global Properties Stateful Inspection default settings

391

inside

MVP Silver

658

Common Criteria for Harmony Endpoint Security with compliance to 2 NIAP Protection Profiles

1136

Solved

inside

Admin

9280

IMPORTANT - Action Required For VPN/Remote Access Security Gateways Using DigiCert - by Sep 8, 2025

9280

Solved

inside

Contributor

394

Single VSY within VSX environment wont send logs to dedicated log server

394

inside

Champion

19311

Configuring dynamic routing in clustered VSX

19311

inside

Collaborator

869

Failed login SmartConsole after upgrade Win11

869

Solved

inside

Advisor

1225

Tip: How to deal with RAD errors

856

inside

Explorer

358

Server Error in '/owa' Application

358

inside

Contributor

3565

VPN issue stuck in Phase 1 and sometimes disconnects

3565

Solved

inside

MVP Gold

520

new transciever CPAC-TR-25SR-DM

353

inside

MVP Gold

332

UPDATE - DigiCert Certificate Expiration Mitigated

4011

inside

Advisor

464

idrac - how to create account with admin role

464

inside

Employee

3396

Introducing the New Interactive Ideas Portal – Join the Pilot!

3396

inside

Contributor

1544

Process file types known to contain malware

1544

Solved

inside

Participant

33004

useful debug command in checkpoint

33004

inside

Contributor

531

Route Based VPN Network SA no route

531

inside

MVP Gold

343

Can not access smart console over site-site VPN

343

Solved

inside

Explorer

289

External Certificates for IPSEC VPN

289

inside

Advisor

397

Rewriting internet access policy

397

Solved

inside

Participant

4237

Site to site vpn drops on policy install

4237

inside

Contributor

286

Customer FTP traffic keeps triggering new IPS protections

286

inside

Collaborator

3936

Trusted CA List is missing a lot

3936

inside

Advisor

730

Install Policy pushed but still visible by other admin

225

Solved

inside

Advisor

1108

CPUSE v2606 manual installation failure

868

inside

Employee

253

R82 Jumbo Hotfix Accumulator take 39 has been released

253

inside

Advisor

741

Best Way to Export Policy Package for Reporting

741

Solved

inside

Advisor

1962

Regenerate Token for MaaS Tunnel

1962

inside

Collaborator

399

a third-party certificate on a clustered and centrally managed Appliance 1900

254

Solved

inside

Participant

447

Checkpoint 19000 Supported Transceivers Sync

447

Solved

inside

MVP Gold

649

R82 Take 36 is definitely taking backup of logs as well ended in a huge file size

649

inside

Explorer

365

Testing primary and secondary bond interfaces

365

Solved

inside

Participant

500

Best Practices for Threat Prevention API Calls to Appliance - API repository

500

inside

Advisor

275

HA Firewall Migration: Sync over Dedicated Point-to-Point VLAN

275

Solved

inside

Collaborator

504

What are the new NAT options in SMS and GW for?

504

Solved

inside

Contributor

3619

Traffic initiated from Lan to VPN Endpoint Client Blocked

1217

inside

Participant

1346

best practices for blocking URLs in a scenario where resources have different URLs but the same IP

1346

Solved

inside

Advisor

4240

Quantum Force 9000 Appliance OS version Compatibility

597

inside

MVP Platinum

550

Help Shape the Future of AI at Check Point

327

inside

Collaborator

1483

Brute-Force Attack on Check Point Mobile VPN: Multiple IPs and Fake Usernames

1483

Solved

inside

Collaborator

1236

Firewall - Automating Firewall Rule Cleanup Based on Usage

1236

inside

Employee

1351

CVE-2025-45582 - tar: Tar path traversal

1592

Solved

inside

Advisor

399

Peer certificate verification failed after certificate replacement

399

Solved

inside

Contributor

19434

How to list arp table and identify network devices with mac under Check Point FWs

19434

Solved

inside

Explorer

829

Remote Access VPN – Can specific routes be assigned to particular users?

829

inside

MVP Platinum

1333

R8x - Performance Tuning Tip - Appliance Sizing

1333

inside

Participant

3943

SMS Upgrade from R81 to R82 : Migrate export Warnings, S2S VPN

1614

Solved

inside

Contributor

632

add rule to policy via mgmt_Cli fails

632

inside

Explorer

323

Behaviour after regular contract/subscription expiration

431

Solved

inside

Advisor

780

Log file isn't shown automatically after upgrade to R82

780

Solved

inside

Explorer

578

How to perform manual fail-over between instances of Virtual System in VSX cluster in VSLS mode

578

Solved

inside

Explorer

1599

Migrating from Check Point 3600T to Quantum Spark 1600,Need Help with VPN User Certificate Migration

1599

inside

Participant

864

7000 appliance R81.20 iSO image install

864

inside

Explorer

222

Unable to take ssh for MGMT Port

222

Solved

inside

Advisor

485

Updatable (geo) objects and IP addresses, again

485

Solved

inside

Advisor

980

Renaming a Gateway Node in a Cluster

980

Solved

inside

Advisor

560

Best Practices for Upgrading an HA Cluster from R81.10 to R81.20

560

inside

MVP Platinum

366

R82.10 - Hardware Security Module (HSM) for TLS 1.3

366

Solved

inside

Advisor

3226

How do you keep track of the latest FW/OS updates?

3226

Solved

inside

Advisor

2272

Manual FTP transfers are always corrupted while scheduled backups are not

689

inside

Employee

238

Estimated R82 release recommended date?

4206

inside

Collaborator

4008

Anti-bot Update failed. Contract entitlement check failed. Gateway can not access internet

4008

Solved

inside

Explorer

461

Monitord process consume high cpu, does it safe to terminate the process during production hour?

461

inside

Collaborator

981

We want to upgrade our management station from R81.20 to R82 and followed by the upgrade of Gateways

1190

Solved

inside

Contributor

1200

Zero-downtime migration/upgrade to new hardware (ClusterXL Active/Standby)

1200

inside

MVP Platinum

4566

'fw ctl conntab -x' issue in R81.10

4566

Solved

inside

Advisor

1434

How to view the connections of the dynamic dispatcher's table

1434

Solved

inside

Collaborator

498

Check Point Management Server - insufficient space in the /opt/cpdabackup/backup directory.

498

inside

Explorer

1940

A suspicious traffic log was observed during monitoring

454

inside

Admin

7119

Inside the SharePoint Zero-Day (CVE-2025-53770): What It Means and How to Stay Protected - Materials

7119

inside

Explorer

266

I need Check_Point_R81.20_T631_ScalablePlatform

575

inside

Participant

3601

Questions about User Mode and Kernel Mode

3601

inside

Explorer

821

Cannot start Mobile Access Portal Agent

821

inside

Advisor

445

Openserver Dell R660xs, anyone ever tried this machine?

445

inside

Explorer

979

SharePoint Zero-Day CVE-2025-53770 Actively Exploited - Take actions!

2118

Solved

inside

Collaborator

28783

Unable to establish the SIC(Outgoing Policy)

366

inside

Employee

1010

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

6969

inside

Admin

3015

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

3015

inside

MVP Gold

461

RA clients not able to access external cluster interface

461

inside

Explorer

461

Microsegmentation with Firewall Hardware

461

inside

Explorer

430

the new subnets are unable to communicate through the existing VPN tunnel

430

inside

Participant

742

SMS migration from XCP-NG to ProxMox

742

inside

Advisor

4534

Take logging out of the implied rules

1039

inside

MVP Platinum

1871

SmartConsole Shortcuts - cheat sheet

1871

inside

Explorer

663

I can't find how my dns host is used within the FW object.

663

inside

Explorer

4286

Checkpoint Gateway sending DNS requests to DNS server for malicious URLs

4286

Solved

inside

Explorer

728

BGP route on Maestro Active/Active are showing as inactive/unusable

728

inside

Employee

374

Introducing Managed SmartAwareness: Cyber Training, Fully Guided by Experts

374

Solved

inside

Contributor

991

LOM interface - Console Session

991

Solved

inside

Collaborator

975

Reducing /var/log partition size on Gaia OS

975

Solved

inside

Collaborator

14347

https inspection tip/feedback/suggestion

816

inside

Explorer

418

Disable Camelia Cipher on the firewall

418

inside

Collaborator

565

always-connect for standalone vpn client

565

Solved

inside

Collaborator

1469

Policy Installation Failed(Time out)-SMB Appliance

1469

Solved

inside

Admin

3549

New Products Introduction July 2025: Video, Slides, and Q&A

3549

Solved

inside

Advisor

604

Export all gateways IPs MDS + VSX

604

inside

Collaborator

937

Unable to access Site(CPNotEnoughDataForRuleMatch)

937

inside

Employee

412

Big News: Check Point Services Now Live on AWS Marketplace - Let’s Get the Word Out!

412

Solved

inside

Advisor

2816

Clarification Needed on fwaccel stat

2816

Solved

inside

Explorer

562

How to renew GAIA web certificate.

562

Solved

inside

Advisor

1257

Deleting a Checkpoint host object from smart console

459

Solved

inside

Contributor

1005

Netflow Export with Physical Ip in cluster environment

243

Solved

inside

Advisor

622

Moving a Gateway from One CMA to Another

622

inside

Explorer

353

Logs not showing up in SmartConsole after policy install

353

No messages.

General Topics

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Virtual

Thu 18 Dec 2025 @ 10:00 AM (CET)

Cloud Architect Series - Building a Hybrid Mesh Security Strategy across clouds

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

Wed 14 Jan 2026 @ 05:00 PM (CET)

CheckMates Fest 2026

Virtual

Thu 18 Dec 2025 @ 10:00 AM (CET)

Cloud Architect Series - Building a Hybrid Mesh Security Strategy across clouds

Virtual

Thu 08 Jan 2026 @ 05:00 PM (CET)

AI Security Masters Session 1: How AI is Reshaping Our World

CheckMates Events

Are you a member of CheckMates?