General Topics

What's New in R82.10?
10 December @ 5pm CET / 11am ET

Improve Your Security Posture with
Threat Prevention and Policy Insights

Watch Here

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
Maestro Madness

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

inside

Participant

26800

site to site VPN troubleshooting without monitoring blade

26800

inside

Admin

26799

Configuring CLuster XL step by step

26300

inside

Advisor

26199

SecureXL is enabled, but the traffic is not accelerated

26100

inside

Advisor

25999

High CPU after upgrade from 77.30 to 80.10

25299

Solved

inside

Collaborator

25199

ICMP reply does not match a previous request

25199

inside

Explorer

25099

R81 - SNMP does not support SHA1 anymore

24899

Solved

inside

Explorer

24608

Stealth rule vs Management Rule

24608

inside

Contributor

24400

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

24201

Solved

inside

Participant

24099

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

24099

inside

Collaborator

24000

How can I find Throughput statistics?

23899

inside

Contributor

23600

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

23500

inside

Contributor

23499

R80.10 gateway, can't set sim_clamp_vpn_mss

23499

Solved

inside

Advisor

23399

Aruba Clear Pass Integration - API

22799

Solved

inside

Collaborator

22699

Get all the Gaia version and installed jumb hotfix

22599

inside

MVP Platinum

22501

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

22501

inside

MVP Platinum

22399

R80.40 - Dynamic split of CoreXL

22399

inside

Participant

22299

How to get interface status of particular time slot

22199

inside

Participant

22187

HTTPS inspection with trusted certificate

22187

inside

Advisor

22099

Best practise - How often do you patch/upgrade your gateways?

22099

Solved

inside

Collaborator

22099

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

22099

inside

MVP Platinum

22000

Check Point Site-to-Site VPN Compatibility Matrix

22000

inside

Admin

21999

R77.30 Take 286: New Jumbo Hotfix GA Release

21999

Solved

inside

Collaborator

21999

How to handle core-dumps and crash dumps

21999

Solved

inside

Contributor

21999

CheckPoint redirect to IP address 62.0.58.94

21500

inside

Explorer

21499

how to check VPN phase 1 and phase 2 status?

21499

inside

Contributor

21399

Monitoring standby member in a cluster

21399

inside

Contributor

21199

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

21199

inside

MVP Gold

21100

"Max Power" Book Second Edition Released!

21100

inside

Contributor

21099

Discovering changes in topology table

21099

Solved

inside

Contributor

21001

Finding root cause for all the F2F traffic

21001

inside

Champion

21001

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

21001

inside

Advisor

21000

Outbound SSL Inspection: A war story

21000

inside

Explorer

20999

Policy Based Routing and default route / features

20999

inside

Participant

20898

Both security gateways are active in the Full HA cluster

20898

inside

Admin

20699

Security Gateway Performance Optimization Excerpt

20699

Solved

inside

Explorer

20599

How to see what firewall rules match some traffic

20495

inside

MVP Platinum

20402

HP Server DL360/380 G9 reboot issue!

20402

Solved

inside

Advisor

20399

How to check ThreatCloud URL Reputation?

20399

inside

Advisor

20399

Remote Access VPN in a Load-sharing Cluster Environment

20000

inside

Explorer

19999

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

19999

inside

Participant

19900

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

19799

inside

Participant

19799

Site-to-site vpn Tunnel to a non Checkpoint Gateway

19799

inside

MVP Platinum

19700

Which version is better? R80.10 or R77.30

19700

inside

Admin

19700

R80.30 Early Availability Program is started!

19700

inside

MVP Platinum

19699

Check Point Support Resources - Top 10

19699

inside

Admin

19699

All Products and Where To Post About Them

19699

inside

Contributor

19699

static NAT vs hide behind an IP

19699

inside

Explorer

19600

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

19600

Solved

inside

Advisor

19600

RSS feed for checkpoint.com is not working any more

19600

Solved

inside

Collaborator

19599

DNS Resolution failing but ping to IP address is succesful.

19599

Solved

inside

Advisor

19404

Hide NAT: Simultaneous Connections to the same destination

19404

Solved

inside

Contributor

19199

How to show the active connection to a specific host

19199

Solved

inside

Contributor

19199

Upgrading form R81.10 to R81.20

19199

Solved

inside

Contributor

19199

How to list arp table and identify network devices with mac under Check Point FWs

19199

inside

Collaborator

19104

Let's create Check Point Super Cheat Sheet

19104

inside

Contributor

19103

R80.30 Technical Update TechTalk

19100

inside

Participant

19099

Types of NAT used in checkpoint firewall

19099

Solved

inside

Champion

19099

Gateway behind NAT. What limitations am I to be aware of?

19099

inside

Explorer

18999

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

18999

Solved

inside

Contributor

18999

Pulling FW data fron MDS using a script.

18957

inside

Admin

18918

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18918

Solved

inside

Advisor

18899

Disable NAT on SIP payload - breaks ICE

18899

inside

Admin

18899

Configuring dynamic routing in clustered VSX

18899

inside

Contributor

18899

How can I setup a primary and backup S2S VPN tunnels

18899

Solved

inside

MVP Platinum

18699

R80.20 Issue : Monitoring standby cluster members via VPN

18699

Solved

inside

Contributor

18699

IPSec Tunnel Failing to establish

18698

Solved

inside

MVP Gold

18599

Increasing Fifo Buffers on Firewall Interface

18599

inside

Advisor

18499

Check Point Clustering between two Datacenters

18499

Solved

inside

Employee

18499

Tip of the week: Support Center's Upgrade Wizard

18499

inside

Participant

18425

Can you explain the impact of using fwstop and cpstop ?

18425

Solved

inside

Collaborator

18399

Blocking for specific file types in Check Point Firewall

18399

inside

Collaborator

18199

JHF 317 breaking sync connection and not coming back up

18199

inside

Employee

18199

Identity Awareness Agents SK with direct links - published!

18199

Solved

inside

Contributor

18199

Custom URL matching with HTTPS categorization

18199

inside

Advisor

18188

Activating Identity Awareness to Intergrate AD

18188

Solved

inside

Participant

18099

R80.20 strange behaviour - random TCP session timeout values - fw ctl conntab

18099

inside

Explorer

18099

ISP Redundancy (load sharing) issue in R80.10

18099

inside

Explorer

18000

What is route and how to configure route?

18000

inside

Explorer

17999

Verify Enabled Cipher Suites in HTTPS Inspection

17999

inside

Champion

17999

Identity Awareness getting DC Name only

17999

inside

Explorer

17999

Check Point Support Tools - Top 10

17899

Solved

inside

Participant

17899

Stateful Inspection on Gateways

17898

inside

Contributor

17800

Https inspection Validation error

17800

inside

Advisor

17799

Do any Checkpoint appliances offer SSL offload?

17799

inside

Participant

17799

syn-ack on every IP address on port tcp_80 during vulnerability scan

17799

inside

Collaborator

17733

Check Point Deployment Shell internal error

17733

inside

Participant

17699

Untrusted TLS/SSL server X.509 certificate

17699

inside

Collaborator

17699

SecureXL R80.20 - Issue on ALL High TCP Ports

17699

inside

Contributor

17699

Open Server - HCL for multi queue network cards

17609

inside

Explorer

17500

Domain object is not working in R80.10 properly

17500

inside

Advisor

17499

Report show spam category with "accept" actions but not blocking

17400

Solved

inside

Contributor

17398

Combine VLAN and physical interface, which already has an assigned IP

17199

Solved

inside

Participant

17199

LDAP Authentication failed in SSL VPN

17101

inside

Explorer

17100

Showing logs "Missing OS Route" when place new CP Appliance (Suspect ARP issue)

17100

Solved

inside

Advisor

17099

CheckPoint TLS 1.3 support: When?

17099

inside

Participant

17099

"UDP checksum is incorrect" - 100s of IPv6 DROPs in fw.log - TP/IPS responsible?

17000

101

Solved

inside

Contributor

16999

upgarde to R80.30 using CPUSE failing

16999

inside

Contributor

16999

Delete a specific connection entry in Checkpoint Gateway

16931

inside

Participant

16900

Application database update failed

16900

inside

MVP Gold

16899

Performance of a single connection ?

16899

inside

Advisor

16899

What does high si mean on a FW Worker core?

16899

Solved

inside

Contributor

16799

NAT Exhaustion - Hide NAT failures

16799

Solved

inside

Participant

16700

Physical memory vs FW memory. Explanation needed!

16698

Solved

inside

Collaborator

16659

Unable to open URL Categorization link

16659

inside

Advisor

16599

URL Filtering and Application Control in my R80.20 not dropping categories

16599

inside

Admin

16599

R8x - Gateway Performance Metrics

16500

inside

Participant

16499

Request for VSX training Videos R80.10 or R77.X

16499

inside

Employee

16400

sk164752 - Installing DOOM on Gaia

16400

inside

Collaborator

16399

ISP Redundancy & Policy Based Routing

16399

inside

Participant

16399

Best Practices for Identity Collector Architecture

16399

Solved

inside

Contributor

30116

Common Criteria for Harmony Endpoint Security with compliance to 2 NIAP Protection Profiles

1104

Solved

inside

Admin

8531

IMPORTANT - Action Required For VPN/Remote Access Security Gateways Using DigiCert - by Sep 8, 2025

8531

Solved

inside

Contributor

342

Single VSY within VSX environment wont send logs to dedicated log server

342

inside

Champion

18945

Configuring dynamic routing in clustered VSX

18945

inside

Collaborator

798

Failed login SmartConsole after upgrade Win11

798

Solved

inside

Advisor

1126

Tip: How to deal with RAD errors

761

inside

Explorer

316

Server Error in '/owa' Application

316

inside

Contributor

3162

VPN issue stuck in Phase 1 and sometimes disconnects

3162

Solved

inside

MVP Gold

468

new transciever CPAC-TR-25SR-DM

310

inside

MVP Gold

293

UPDATE - DigiCert Certificate Expiration Mitigated

3869

inside

Advisor

411

idrac - how to create account with admin role

411

inside

Employee

3301

Introducing the New Interactive Ideas Portal – Join the Pilot!

3301

inside

Contributor

1485

Process file types known to contain malware

1485

Solved

inside

Participant

32780

useful debug command in checkpoint

32780

inside

Contributor

500

Route Based VPN Network SA no route

500

inside

MVP Gold

280

Can not access smart console over site-site VPN

280

Solved

inside

Explorer

261

External Certificates for IPSEC VPN

261

inside

Advisor

357

Rewriting internet access policy

357

Solved

inside

Participant

4208

Site to site vpn drops on policy install

4208

inside

Contributor

244

Customer FTP traffic keeps triggering new IPS protections

244

inside

Collaborator

3778

Trusted CA List is missing a lot

3778

inside

Advisor

652

Install Policy pushed but still visible by other admin

206

Solved

inside

Advisor

974

CPUSE v2606 manual installation failure

811

inside

Employee

232

R82 Jumbo Hotfix Accumulator take 39 has been released

232

inside

Advisor

681

Best Way to Export Policy Package for Reporting

681

Solved

inside

Advisor

1803

Regenerate Token for MaaS Tunnel

1803

inside

Collaborator

348

a third-party certificate on a clustered and centrally managed Appliance 1900

231

Solved

inside

Participant

412

Checkpoint 19000 Supported Transceivers Sync

412

Solved

inside

MVP Gold

594

R82 Take 36 is definitely taking backup of logs as well ended in a huge file size

594

inside

Explorer

330

Testing primary and secondary bond interfaces

330

Solved

inside

Participant

441

Best Practices for Threat Prevention API Calls to Appliance - API repository

441

inside

Advisor

249

HA Firewall Migration: Sync over Dedicated Point-to-Point VLAN

249

Solved

inside

Contributor

453

What are the new NAT options in SMS and GW for?

453

Solved

inside

Contributor

3212

Traffic initiated from Lan to VPN Endpoint Client Blocked

1045

inside

Participant

1211

best practices for blocking URLs in a scenario where resources have different URLs but the same IP

1211

Solved

inside

Advisor

3754

Quantum Force 9000 Appliance OS version Compatibility

536

inside

MVP Platinum

496

Help Shape the Future of AI at Check Point

289

inside

Contributor

1331

Brute-Force Attack on Check Point Mobile VPN: Multiple IPs and Fake Usernames

1331

Solved

inside

Collaborator

1172

Firewall - Automating Firewall Rule Cleanup Based on Usage

1172

inside

Employee

1256

CVE-2025-45582 - tar: Tar path traversal

1447

Solved

inside

Advisor

345

Peer certificate verification failed after certificate replacement

345

Solved

inside

Contributor

19296

How to list arp table and identify network devices with mac under Check Point FWs

19296

Solved

inside

Explorer

760

Remote Access VPN – Can specific routes be assigned to particular users?

760

inside

MVP Platinum

1292

R8x - Performance Tuning Tip - Appliance Sizing

1292

inside

Participant

3871

SMS Upgrade from R81 to R82 : Migrate export Warnings, S2S VPN

1484

Solved

inside

Contributor

573

add rule to policy via mgmt_Cli fails

573

inside

Explorer

288

Behaviour after regular contract/subscription expiration

381

Solved

inside

Advisor

703

Log file isn't shown automatically after upgrade to R82

703

Solved

inside

Explorer

537

How to perform manual fail-over between instances of Virtual System in VSX cluster in VSLS mode

537

Solved

inside

Explorer

1440

Migrating from Check Point 3600T to Quantum Spark 1600,Need Help with VPN User Certificate Migration

1440

inside

Participant

793

7000 appliance R81.20 iSO image install

793

inside

Explorer

206

Unable to take ssh for MGMT Port

206

Solved

inside

Advisor

442

Updatable (geo) objects and IP addresses, again

442

Solved

inside

Advisor

926

Renaming a Gateway Node in a Cluster

926

Solved

inside

Advisor

497

Best Practices for Upgrading an HA Cluster from R81.10 to R81.20

497

inside

MVP Platinum

326

R82.10 - Hardware Security Module (HSM) for TLS 1.3

326

Solved

inside

Advisor

3054

How do you keep track of the latest FW/OS updates?

3054

Solved

inside

Advisor

2005

Manual FTP transfers are always corrupted while scheduled backups are not

588

inside

Employee

213

Estimated R82 release recommended date?

3797

inside

Collaborator

3858

Anti-bot Update failed. Contract entitlement check failed. Gateway can not access internet

3858

Solved

inside

Explorer

414

Monitord process consume high cpu, does it safe to terminate the process during production hour?

414

inside

Collaborator

894

We want to upgrade our management station from R81.20 to R82 and followed by the upgrade of Gateways

1055

Solved

inside

Contributor

1115

Zero-downtime migration/upgrade to new hardware (ClusterXL Active/Standby)

1115

inside

MVP Platinum

4468

'fw ctl conntab -x' issue in R81.10

4468

Solved

inside

Advisor

1404

How to view the connections of the dynamic dispatcher's table

1404

Solved

inside

Collaborator

443

Check Point Management Server - insufficient space in the /opt/cpdabackup/backup directory.

443

inside

Explorer

1815

A suspicious traffic log was observed during monitoring

416

inside

Admin

6951

Inside the SharePoint Zero-Day (CVE-2025-53770): What It Means and How to Stay Protected - Materials

6951

inside

Explorer

235

I need Check_Point_R81.20_T631_ScalablePlatform

508

inside

Participant

3301

Questions about User Mode and Kernel Mode

3301

inside

Explorer

755

Cannot start Mobile Access Portal Agent

755

inside

Advisor

410

Openserver Dell R660xs, anyone ever tried this machine?

410

inside

Explorer

887

SharePoint Zero-Day CVE-2025-53770 Actively Exploited - Take actions!

1944

Solved

inside

Collaborator

28548

Unable to establish the SIC(Outgoing Policy)

308

inside

Employee

961

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

6712

inside

Admin

2941

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

2941

inside

MVP Gold

427

RA clients not able to access external cluster interface

427

inside

Explorer

416

Microsegmentation with Firewall Hardware

416

inside

Explorer

372

the new subnets are unable to communicate through the existing VPN tunnel

372

inside

Participant

645

SMS migration from XCP-NG to ProxMox

645

inside

Advisor

4456

Take logging out of the implied rules

964

inside

MVP Platinum

1783

SmartConsole Shortcuts - cheat sheet

1783

inside

Explorer

630

I can't find how my dns host is used within the FW object.

630

inside

Explorer

4207

Checkpoint Gateway sending DNS requests to DNS server for malicious URLs

4207

Solved

inside

Explorer

656

BGP route on Maestro Active/Active are showing as inactive/unusable

656

inside

Employee

335

Introducing Managed SmartAwareness: Cyber Training, Fully Guided by Experts

335

Solved

inside

Contributor

923

LOM interface - Console Session

923

Solved

inside

Collaborator

912

Reducing /var/log partition size on Gaia OS

912

Solved

inside

Collaborator

13830

https inspection tip/feedback/suggestion

738

inside

Explorer

403

Disable Camelia Cipher on the firewall

403

inside

Collaborator

519

always-connect for standalone vpn client

519

Solved

inside

Collaborator

1367

Policy Installation Failed(Time out)-SMB Appliance

1367

Solved

inside

Admin

3367

New Products Introduction July 2025: Video, Slides, and Q&A

3367

Solved

inside

Advisor

566

Export all gateways IPs MDS + VSX

566

inside

Collaborator

854

Unable to access Site(CPNotEnoughDataForRuleMatch)

854

inside

Employee

383

Big News: Check Point Services Now Live on AWS Marketplace - Let’s Get the Word Out!

383

Solved

inside

Advisor

2588

Clarification Needed on fwaccel stat

2588

Solved

inside

Explorer

504

How to renew GAIA web certificate.

504

Solved

inside

Advisor

1142

Deleting a Checkpoint host object from smart console

433

Solved

inside

Contributor

895

Netflow Export with Physical Ip in cluster environment

224

Solved

inside

Advisor

571

Moving a Gateway from One CMA to Another

571

inside

Explorer

303

Logs not showing up in SmartConsole after policy install

303

inside

Collaborator

2434

VIP IP Change Not Reflected in PDP/PEP Still Shows Old IP

218

inside

Admin

410

From OT to Cloud: A Security Blueprint for Manufacturers - Americas - Recording + Slides

410

inside

Collaborator

324

synchronize Identity sharing between the active and passive node

324

Solved

inside

MVP Platinum

37689

Threat Prevention Policy fails to install to one security gateway only (Failed to handle indicators)

283

Solved

inside

Advisor

431

Request for Advice – Changing Management Interface and Default Gateway Without Connectivity Loss

431

Solved

inside

Employee Alumnus

3632

What is the difference between Custom Intelligence feed and Network Feeds ?

3632

inside

Explorer

557

Static Hide Behind Gateway NAT

1319

inside

Admin

316

From OT to Cloud: A Security Blueprint for Manufacturers EMEA - Recording

316

inside

Employee

9407

New 3900 Branch office applainces were launched today 28/5

9407

Solved

inside

Contributor

328

telnet showing open port on ILO when its not when going via FW

328

inside

Explorer

717

Allow rule for site hosted on akamai CDN, only the first dns response seems to work

717

Solved

inside

Explorer

528

Identity Awareness Agents SK with direct links - published!

18263

inside

Advisor

380

Fresh Install Without USB, Possible From Boot Menu?

380

Solved

inside

Advisor

527

simple question about ISOmorphic

527

inside

Advisor

263

IPSec tunnel Setup [HUB and SPOKE Scenario] with Both spokes being non-checkpoint VPN Gateway

849

Solved

inside

Advisor

220

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

In-Person

Wed 03 Dec 2025 @ 09:00 AM (EST)

New York City: Hands-On CloudGuard Workshops

Virtual

Wed 03 Dec 2025 @ 10:00 AM (COT)

Última Sesión del Año – CheckMates LATAM: ERM & TEM con Expertos

Virtual

Thu 04 Dec 2025 @ 12:30 PM (SGT)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - APAC

Virtual

Thu 04 Dec 2025 @ 03:00 PM (CET)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - EMEA

Virtual

Thu 04 Dec 2025 @ 02:00 PM (EST)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - Americas

In-Person

Tue 09 Dec 2025 @ 09:00 AM (CET)

Paris, FR: Hands-On CloudGuard Workshops

Virtual

Wed 03 Dec 2025 @ 10:00 AM (COT)

Última Sesión del Año – CheckMates LATAM: ERM & TEM con Expertos

Virtual

Thu 04 Dec 2025 @ 12:30 PM (SGT)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - APAC

Virtual

Thu 04 Dec 2025 @ 03:00 PM (CET)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - EMEA

Virtual

Thu 04 Dec 2025 @ 02:00 PM (EST)

End-of-Year Event: Securing AI Transformation in a Hyperconnected World - Americas

Virtual

Tue 09 Dec 2025 @ 03:00 PM (EST)

Americas Deep Dive: HTTPS Inspection Best Practices

Virtual

Wed 10 Dec 2025 @ 11:00 AM (EST)

TechTalk: What's New in R82.10

In-Person

Wed 03 Dec 2025 @ 09:00 AM (EST)

New York City: Hands-On CloudGuard Workshops

In-Person

Tue 09 Dec 2025 @ 09:00 AM (CET)

Paris, FR: Hands-On CloudGuard Workshops

CheckMates Events

Are you a member of CheckMates?