General Topics

MVP 2026: Submissions
Are Now Open!

More details here

What's New in R82.10?
10 December @ 5pm CET / 11am ET

Announcing Quantum R82.10!

Learn More

Overlap in Security Validation
Help us to understand your needs better

Take the Survey

CheckMates Go:
Maestro Madness

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

Solved

inside

Contributor

25099

R81 - SNMP does not support SHA1 anymore

24899

Solved

inside

Explorer

24699

Stealth rule vs Management Rule

24699

inside

Contributor

24499

Can't access SmartConsole ("Unable to connect to server") but can access WebUI...

24300

Solved

inside

Participant

24099

FW-1: [cul_load_freeze][CUL - Cluster] CUL should be OFF...

24099

inside

Collaborator

24000

How can I find Throughput statistics?

23899

inside

Contributor

23600

R80.10 gateway, can't set sim_clamp_vpn_mss

23599

Solved

inside

Participant

23500

What's different meaning of Redirect, Detect, Drop, Block and Prevent?

23500

Solved

inside

Advisor

23399

Aruba Clear Pass Integration - API

22896

inside

Admin

22800

Get all the Gaia version and installed jumb hotfix

22699

inside

MVP Platinum

22501

Update R80.20+ Security Gateway Architecture (Logical Packet Flow)

22501

inside

MVP Platinum

22499

R80.40 - Dynamic split of CoreXL

22499

inside

Advisor

22299

Best practise - How often do you patch/upgrade your gateways?

22299

inside

Participant

22299

HTTPS inspection with trusted certificate

22299

inside

Participant

22299

How to get interface status of particular time slot

22299

Solved

inside

Collaborator

22199

Dedicated routing table of Mgmt Port Require In checkpoint which is not available in present device

22199

inside

Admin

22099

R77.30 Take 286: New Jumbo Hotfix GA Release

22099

inside

MVP Platinum

22099

Check Point Site-to-Site VPN Compatibility Matrix

22099

Solved

inside

Collaborator

22098

How to handle core-dumps and crash dumps

22098

Solved

inside

Contributor

21999

CheckPoint redirect to IP address 62.0.58.94

21599

inside

Explorer

21499

how to check VPN phase 1 and phase 2 status?

21499

inside

Participant

21499

Monitoring standby member in a cluster

21499

inside

Contributor

21399

R80.40 IPSEC VPN shows stuck at Phase I but is fully operational

21291

inside

Contributor

21200

Discovering changes in topology table

21200

inside

MVP Gold

21199

"Max Power" Book Second Edition Released!

21199

inside

Advisor

21099

Outbound SSL Inspection: A war story

21099

Solved

inside

Contributor

21001

Finding root cause for all the F2F traffic

21001

inside

Champion

21001

logical interface as next hop for routes on cluster members that DO NOT use VIPs in different subnet

21001

inside

Explorer

20999

Policy Based Routing and default route / features

20999

inside

Participant

20898

Both security gateways are active in the Full HA cluster

20898

inside

Admin

20800

Security Gateway Performance Optimization Excerpt

20800

Solved

inside

Explorer

20599

How to check ThreatCloud URL Reputation?

20499

inside

MVP Platinum

20499

HP Server DL360/380 G9 reboot issue!

20499

Solved

inside

Advisor

20495

How to see what firewall rules match some traffic

20495

Solved

inside

Participant

20299

Remote Access VPN in a Load-sharing Cluster Environment

20100

inside

Advisor

20000

Problem IP Sec VPN Checkpoint > Juniper no response from peer. IKE failuret

19999

inside

Participant

19900

Gaia Portal shows blank page after log in with Firefox 5x or Chrome 66 - Fixed in sk121373

19799

inside

Admin

19799

R80.30 Early Availability Program is started!

19799

inside

Participant

19799

Site-to-site vpn Tunnel to a non Checkpoint Gateway

19799

Solved

inside

Collaborator

19787

DNS Resolution failing but ping to IP address is succesful.

19787

inside

MVP Platinum

19700

Which version is better? R80.10 or R77.30

19700

Solved

inside

Advisor

19700

RSS feed for checkpoint.com is not working any more

19700

inside

MVP Platinum

19699

Check Point Support Resources - Top 10

19699

inside

Explorer

19699

Packets from IPSec tunnel were dropped. It seems there is an issue on the coreXL connections table

19699

inside

Admin

19699

All Products and Where To Post About Them

19699

inside

Contributor

19699

static NAT vs hide behind an IP

19699

Solved

inside

Advisor

19404

Hide NAT: Simultaneous Connections to the same destination

19404

Solved

inside

Contributor

19299

Upgrading form R81.10 to R81.20

19299

Solved

inside

Contributor

19299

How to list arp table and identify network devices with mac under Check Point FWs

19299

inside

Participant

19199

Types of NAT used in checkpoint firewall

19199

inside

Admin

19199

R80.30 Technical Update TechTalk

19199

Solved

inside

Contributor

19199

How to show the active connection to a specific host

19199

inside

Collaborator

19104

Let's create Check Point Super Cheat Sheet

19104

inside

Contributor

19103

Gateway behind NAT. What limitations am I to be aware of?

19099

Solved

inside

Contributor

19099

Configuring dynamic routing in clustered VSX

19010

Solved

inside

Advisor

18999

Disable NAT on SIP payload - breaks ICE

18999

inside

Explorer

18999

Checkpoint 5600 - Alternative Virtual Appliance options for on premise deployment?

18999

inside

Collaborator

18957

Pulling FW data fron MDS using a script.

18957

inside

Admin

18918

TechTalk Special Edition: The Apache log4j Vulnerability Explained

18918

inside

Admin

18899

How can I setup a primary and backup S2S VPN tunnels

18899

inside

Participant

18800

IPSec Tunnel Failing to establish

18800

Solved

inside

MVP Platinum

18800

R80.20 Issue : Monitoring standby cluster members via VPN

18699

inside

Contributor

18699

Increasing Fifo Buffers on Firewall Interface

18699

Solved

inside

Contributor

18699

Tip of the week: Support Center's Upgrade Wizard

18614

inside

Participant

18599

Can you explain the impact of using fwstop and cpstop ?

18599

inside

Advisor

18499

Check Point Clustering between two Datacenters

18499

Solved

inside

Collaborator

18499

Blocking for specific file types in Check Point Firewall

18499

inside

Collaborator

18399

JHF 317 breaking sync connection and not coming back up

18399

inside

Employee

18300

Identity Awareness Agents SK with direct links - published!

18300

Solved

inside

Contributor

18300

Custom URL matching with HTTPS categorization

18300

inside

Advisor

18299

Activating Identity Awareness to Intergrate AD

18299

Solved

inside

Participant

18200

R80.20 strange behaviour - random TCP session timeout values - fw ctl conntab

18200

inside

Explorer

18199

ISP Redundancy (load sharing) issue in R80.10

18199

inside

Explorer

18100

Verify Enabled Cipher Suites in HTTPS Inspection

18100

inside

Champion

18099

Identity Awareness getting DC Name only

18099

inside

Explorer

18000

What is route and how to configure route?

18000

Solved

inside

Participant

17999

Check Point Support Tools - Top 10

17899

inside

Advisor

17899

Do any Checkpoint appliances offer SSL offload?

17899

inside

Participant

17899

syn-ack on every IP address on port tcp_80 during vulnerability scan

17899

inside

Advisor

17898

Stateful Inspection on Gateways

17898

inside

Collaborator

17800

Check Point Deployment Shell internal error

17800

inside

Contributor

17800

Https inspection Validation error

17800

inside

Contributor

17786

Untrusted TLS/SSL server X.509 certificate

17699

inside

Collaborator

17699

SecureXL R80.20 - Issue on ALL High TCP Ports

17699

inside

Contributor

17699

Open Server - HCL for multi queue network cards

17609

inside

Advisor

17599

Domain object is not working in R80.10 properly

17500

inside

Collaborator

17499

Report show spam category with "accept" actions but not blocking

17499

Solved

inside

Contributor

17499

Combine VLAN and physical interface, which already has an assigned IP

17199

inside

Advisor

17199

LDAP Authentication failed in SSL VPN

17199

inside

Mentor

17199

101

"UDP checksum is incorrect" - 100s of IPv6 DROPs in fw.log - TP/IPS responsible?

17199

101

Solved

inside

Participant

17199

upgarde to R80.30 using CPUSE failing

17100

inside

Explorer

17100

Showing logs "Missing OS Route" when place new CP Appliance (Suspect ARP issue)

17100

Solved

inside

Advisor

17099

CheckPoint TLS 1.3 support: When?

17099

inside

Participant

17099

What does high si mean on a FW Worker core?

17099

inside

Contributor

17099

Performance of a single connection ?

16999

inside

Explorer

16931

Delete a specific connection entry in Checkpoint Gateway

16931

Solved

inside

Contributor

16900

NAT Exhaustion - Hide NAT failures

16900

inside

Participant

16900

Application database update failed

16900

inside

Participant

16899

Physical memory vs FW memory. Explanation needed!

16899

Solved

inside

Participant

16700

Unable to open URL Categorization link

16698

Solved

inside

MVP Platinum

16600

R8x - Gateway Performance Metrics

16600

inside

Participant

16599

Request for VSX training Videos R80.10 or R77.X

16599

inside

Advisor

16599

URL Filtering and Application Control in my R80.20 not dropping categories

16599

inside

Participant

16599

Best Practices for Identity Collector Architecture

16599

inside

Collaborator

16500

ISP Redundancy & Policy Based Routing

16500

inside

Employee

16499

sk164752 - Installing DOOM on Gaia

16499

inside

MVP Platinum

16400

R81 is now available (Questions and Answers)

16400

inside

Contributor

16400

Announcement: Check Point R81.20 - Recommended Release

16400

inside

Explorer

16399

Creating multiple VPN site to site connections on CheckPoint

16399

inside

Collaborator

16398

Updatable objects with geo policy

16300

inside

Contributor

16300

Unable to connect to the checkpoint cloud check dns, gateway, proxy sever.

16300

Solved

inside

Explorer

16299

How to check telnet is enable or not.

16299

Solved

inside

Collaborator

16200

JAVA processes are very CPU intensive

16200

Solved

inside

Advisor

16195

Custom Intelligence Feed Exceptions Not Working

16195

Solved

inside

Explorer

16192

Tunnel mode VPN and Transport mode VPN

16099

inside

Collaborator

16099

Permit ICMP request only in several networks

16099

inside

Advisor

16099

How to allow specific youtube video categories?

16000

Solved

inside

MVP Platinum

15999

Check Point R80.40 has been released!

15999

inside

Champion

15999

Announcement – Check Point Firewall Administration R81.10+ book update

15999

Solved

inside

Participant

15891

Edit Permission profile for CPMI & LEA

15891

Solved

inside

Employee Alumnus

15839

Share your feedback for your chance to WIN new Apple AirPods Pro!

15839

inside

Participant

15799

Getting error “dropped by fwpslglue_chain Reason: PSL Drop: internal - streaming;"

15799

Solved

inside

Participant

15699

High CPU utilization causing slowness

15699

inside

Explorer

15699

can I export the list of web application categories

15699

inside

Collaborator

827

Failed login SmartConsole after upgrade Win11

827

Solved

inside

Advisor

1160

Tip: How to deal with RAD errors

778

inside

Explorer

323

Server Error in '/owa' Application

323

inside

Contributor

3276

VPN issue stuck in Phase 1 and sometimes disconnects

3276

Solved

inside

MVP Gold

500

new transciever CPAC-TR-25SR-DM

320

inside

MVP Gold

308

UPDATE - DigiCert Certificate Expiration Mitigated

3930

inside

Advisor

429

idrac - how to create account with admin role

429

inside

Employee

3358

Introducing the New Interactive Ideas Portal – Join the Pilot!

3358

inside

Contributor

1493

Process file types known to contain malware

1493

Solved

inside

Participant

32836

useful debug command in checkpoint

32836

inside

Contributor

508

Route Based VPN Network SA no route

508

inside

MVP Gold

313

Can not access smart console over site-site VPN

313

Solved

inside

Explorer

280

External Certificates for IPSEC VPN

280

inside

Advisor

377

Rewriting internet access policy

377

Solved

inside

Participant

4220

Site to site vpn drops on policy install

4220

inside

Contributor

264

Customer FTP traffic keeps triggering new IPS protections

264

inside

Collaborator

3834

Trusted CA List is missing a lot

3834

inside

Advisor

686

Install Policy pushed but still visible by other admin

215

Solved

inside

Advisor

1066

CPUSE v2606 manual installation failure

842

inside

Employee

241

R82 Jumbo Hotfix Accumulator take 39 has been released

241

inside

Advisor

705

Best Way to Export Policy Package for Reporting

705

Solved

inside

Advisor

1856

Regenerate Token for MaaS Tunnel

1856

inside

Collaborator

375

a third-party certificate on a clustered and centrally managed Appliance 1900

239

Solved

inside

Participant

424

Checkpoint 19000 Supported Transceivers Sync

424

Solved

inside

MVP Gold

612

R82 Take 36 is definitely taking backup of logs as well ended in a huge file size

612

inside

Explorer

336

Testing primary and secondary bond interfaces

336

Solved

inside

Participant

461

Best Practices for Threat Prevention API Calls to Appliance - API repository

461

inside

Advisor

268

HA Firewall Migration: Sync over Dedicated Point-to-Point VLAN

268

Solved

inside

Contributor

472

What are the new NAT options in SMS and GW for?

472

Solved

inside

Contributor

3296

Traffic initiated from Lan to VPN Endpoint Client Blocked

1105

inside

Participant

1261

best practices for blocking URLs in a scenario where resources have different URLs but the same IP

1261

Solved

inside

Advisor

3922

Quantum Force 9000 Appliance OS version Compatibility

565

inside

MVP Platinum

515

Help Shape the Future of AI at Check Point

304

inside

Contributor

1386

Brute-Force Attack on Check Point Mobile VPN: Multiple IPs and Fake Usernames

1386

Solved

inside

Collaborator

1207

Firewall - Automating Firewall Rule Cleanup Based on Usage

1207

inside

Employee

1284

CVE-2025-45582 - tar: Tar path traversal

1496

Solved

inside

Advisor

365

Peer certificate verification failed after certificate replacement

365

Solved

inside

Contributor

19356

How to list arp table and identify network devices with mac under Check Point FWs

19356

Solved

inside

Explorer

788

Remote Access VPN – Can specific routes be assigned to particular users?

788

inside

MVP Platinum

1301

R8x - Performance Tuning Tip - Appliance Sizing

1301

inside

Participant

3909

SMS Upgrade from R81 to R82 : Migrate export Warnings, S2S VPN

1525

Solved

inside

Contributor

596

add rule to policy via mgmt_Cli fails

596

inside

Explorer

303

Behaviour after regular contract/subscription expiration

402

Solved

inside

Advisor

730

Log file isn't shown automatically after upgrade to R82

730

Solved

inside

Explorer

558

How to perform manual fail-over between instances of Virtual System in VSX cluster in VSLS mode

558

Solved

inside

Explorer

1517

Migrating from Check Point 3600T to Quantum Spark 1600,Need Help with VPN User Certificate Migration

1517

inside

Participant

806

7000 appliance R81.20 iSO image install

806

inside

Explorer

209

Unable to take ssh for MGMT Port

209

Solved

inside

Advisor

463

Updatable (geo) objects and IP addresses, again

463

Solved

inside

Advisor

954

Renaming a Gateway Node in a Cluster

954

Solved

inside

Advisor

526

Best Practices for Upgrading an HA Cluster from R81.10 to R81.20

526

inside

MVP Platinum

339

R82.10 - Hardware Security Module (HSM) for TLS 1.3

339

Solved

inside

Advisor

3157

How do you keep track of the latest FW/OS updates?

3157

Solved

inside

Advisor

2082

Manual FTP transfers are always corrupted while scheduled backups are not

620

inside

Employee

222

Estimated R82 release recommended date?

3991

inside

Collaborator

3895

Anti-bot Update failed. Contract entitlement check failed. Gateway can not access internet

3895

Solved

inside

Explorer

422

Monitord process consume high cpu, does it safe to terminate the process during production hour?

422

inside

Collaborator

917

We want to upgrade our management station from R81.20 to R82 and followed by the upgrade of Gateways

1116

Solved

inside

Contributor

1141

Zero-downtime migration/upgrade to new hardware (ClusterXL Active/Standby)

1141

inside

MVP Platinum

4493

'fw ctl conntab -x' issue in R81.10

4493

Solved

inside

Advisor

1422

How to view the connections of the dynamic dispatcher's table

1422

Solved

inside

Collaborator

469

Check Point Management Server - insufficient space in the /opt/cpdabackup/backup directory.

469

inside

Explorer

1849

A suspicious traffic log was observed during monitoring

430

inside

Admin

7005

Inside the SharePoint Zero-Day (CVE-2025-53770): What It Means and How to Stay Protected - Materials

7005

inside

Explorer

248

I need Check_Point_R81.20_T631_ScalablePlatform

541

inside

Participant

3413

Questions about User Mode and Kernel Mode

3413

inside

Explorer

787

Cannot start Mobile Access Portal Agent

787

inside

Advisor

427

Openserver Dell R660xs, anyone ever tried this machine?

427

inside

Explorer

927

SharePoint Zero-Day CVE-2025-53770 Actively Exploited - Take actions!

2014

Solved

inside

Collaborator

28621

Unable to establish the SIC(Outgoing Policy)

333

inside

Employee

978

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

6811

inside

Admin

2974

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

2974

inside

MVP Gold

444

RA clients not able to access external cluster interface

444

inside

Explorer

425

Microsegmentation with Firewall Hardware

425

inside

Explorer

402

the new subnets are unable to communicate through the existing VPN tunnel

402

inside

Participant

695

SMS migration from XCP-NG to ProxMox

695

inside

Advisor

4496

Take logging out of the implied rules

988

inside

MVP Platinum

1802

SmartConsole Shortcuts - cheat sheet

1802

inside

Explorer

640

I can't find how my dns host is used within the FW object.

640

inside

Explorer

4232

Checkpoint Gateway sending DNS requests to DNS server for malicious URLs

4232

Solved

inside

Explorer

678

BGP route on Maestro Active/Active are showing as inactive/unusable

678

inside

Employee

355

Introducing Managed SmartAwareness: Cyber Training, Fully Guided by Experts

355

Solved

inside

Contributor

954

LOM interface - Console Session

954

Solved

inside

Collaborator

941

Reducing /var/log partition size on Gaia OS

941

Solved

inside

Collaborator

14011

https inspection tip/feedback/suggestion

768

inside

Explorer

407

Disable Camelia Cipher on the firewall

407

inside

Collaborator

538

always-connect for standalone vpn client

538

Solved

inside

Collaborator

1401

Policy Installation Failed(Time out)-SMB Appliance

1401

Solved

inside

Admin

3436

New Products Introduction July 2025: Video, Slides, and Q&A

3436

Solved

inside

Advisor

576

Export all gateways IPs MDS + VSX

576

inside

Collaborator

889

Unable to access Site(CPNotEnoughDataForRuleMatch)

889

inside

Employee

393

Big News: Check Point Services Now Live on AWS Marketplace - Let’s Get the Word Out!

393

Solved

inside

Advisor

2666

Clarification Needed on fwaccel stat

2666

Solved

inside

Explorer

521

How to renew GAIA web certificate.

521

Solved

inside

Advisor

1193

Deleting a Checkpoint host object from smart console

437

Solved

inside

Contributor

925

Netflow Export with Physical Ip in cluster environment

228

Solved

inside

Advisor

596

Moving a Gateway from One CMA to Another

596

inside

Explorer

321

Logs not showing up in SmartConsole after policy install

321

inside

Collaborator

2450

VIP IP Change Not Reflected in PDP/PEP Still Shows Old IP

229

inside

Admin

418

From OT to Cloud: A Security Blueprint for Manufacturers - Americas - Recording + Slides

418

inside

Collaborator

341

synchronize Identity sharing between the active and passive node

341

Solved

inside

MVP Platinum

38076

Threat Prevention Policy fails to install to one security gateway only (Failed to handle indicators)

291

Solved

inside

Advisor

459

Request for Advice – Changing Management Interface and Default Gateway Without Connectivity Loss

459

Solved

inside

Employee Alumnus

3664

What is the difference between Custom Intelligence feed and Network Feeds ?

3664

inside

Explorer

575

Static Hide Behind Gateway NAT

1421

inside

Admin

328

From OT to Cloud: A Security Blueprint for Manufacturers EMEA - Recording

328

inside

Employee

9578

New 3900 Branch office applainces were launched today 28/5

9578

Solved

inside

Contributor

345

telnet showing open port on ILO when its not when going via FW

345

inside

Explorer

747

Allow rule for site hosted on akamai CDN, only the first dns response seems to work

747

Solved

inside

Explorer

544

Identity Awareness Agents SK with direct links - published!

18324

inside

Advisor

391

Fresh Install Without USB, Possible From Boot Menu?

391

Solved

inside

Advisor

560

simple question about ISOmorphic

560

inside

Advisor

272

IPSec tunnel Setup [HUB and SPOKE Scenario] with Both spokes being non-checkpoint VPN Gateway

887

Solved

inside

Advisor

229

At a gateway, how do I determine what domain the gateway belongs to?

948

inside

Advisor

988

Policy location on a gateway R80

7991

Solved

inside

MVP Silver

326

GMSA/automated password rotation for Identity

326

inside

Collaborator

8948

Identity awareness collector changes user identity for same IP while connecting to RDP

8948

inside

Explorer

274

SNMP Issue after JHF 99 R81.20 VSX cluster

274

Solved

inside

MVP Gold

3374

Upgrade is failing from R81.10 to R82

3374

inside

Participant

4718

exclude checkpoint public/external ip from encryption domain?

4718

inside

Collaborator

965

Clarification on DNS Reputation Logs

965

inside

Employee

1575

Quantum Force performance boost is available post the release of R82 Jumbo #3 ( Take 25)

1575

inside

Advisor

755

Cluster Falover after every change on pbr, routing, ospf,...

9730

inside

Explorer

961

Capsule VPN mobile users can't connect

961

inside

Champion

46849

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

In-Person

Tue 09 Dec 2025 @ 09:00 AM (CET)

Paris, FR: Hands-On CloudGuard Workshops

Virtual

Tue 09 Dec 2025 @ 03:00 PM (EST)

Americas Deep Dive: HTTPS Inspection Best Practices

Virtual

Wed 10 Dec 2025 @ 11:00 AM (EST)

TechTalk: What's New in R82.10

Virtual

Thu 11 Dec 2025 @ 03:00 PM (EST)

Americas Deep Dive: Web Filtering Best Practices

Virtual

Fri 12 Dec 2025 @ 10:00 AM (CET)

Check Mates Live Netherlands: #41 AI & Multi Context Protocol

Virtual

Tue 16 Dec 2025 @ 05:00 PM (CET)

Under the Hood: CloudGuard Network Security for Oracle Cloud - Config and Autoscaling!

Virtual

Tue 09 Dec 2025 @ 03:00 PM (EST)

Americas Deep Dive: HTTPS Inspection Best Practices

Virtual

Wed 10 Dec 2025 @ 11:00 AM (EST)

TechTalk: What's New in R82.10

Virtual

Thu 11 Dec 2025 @ 03:00 PM (EST)

Americas Deep Dive: Web Filtering Best Practices

Virtual

Fri 12 Dec 2025 @ 10:00 AM (CET)

Check Mates Live Netherlands: #41 AI & Multi Context Protocol

Virtual

Tue 16 Dec 2025 @ 05:00 PM (CET)

Under the Hood: CloudGuard Network Security for Oracle Cloud - Config and Autoscaling!

Virtual

Thu 18 Dec 2025 @ 10:00 AM (CET)

Cloud Architect Series - Building a Hybrid Mesh Security Strategy across clouds

In-Person

Tue 09 Dec 2025 @ 09:00 AM (CET)

Paris, FR: Hands-On CloudGuard Workshops

CheckMates Events

Are you a member of CheckMates?