General Topics

The Great Exposure Reset
24 February 2026 @ 5pm CET / 11am EST

Watch Now

CheckMates Fest 2026

Watch Now!

AI Security Masters
Hacking with AI: The Dark Side of Innovation

CheckMates Go:
CheckMates Fest

Listen Now

Create a Post

RECENT POSTS

MOST POPULAR

FEATURED POSTS

Solved

inside

Collaborator

15898

Is there any way to check fiber interface status?

15898

inside

Advisor

15799

Route Based VPN with Azure in Cluster Environment

15799

inside

Contributor

15798

How can I monitor BGP state using SNMP?

15699

inside

Participant

15699

How to create QoS rule to limit bandwith per user

15699

inside

Explorer

15600

Unable to ping from checkpoint gateway ip to gns3 router and vice versa

15600

Solved

inside

Collaborator

15600

Encryption domain mismatch even though its set it up correctly

15599

inside

Contributor

15599

failover logic operation in VSX?

15599

inside

Contributor

15599

R80.10 - VPND process utilizes a large amount of CPU

15404

inside

Advisor

15400

Application Control can not catch Opera web browser VPN

15400

Solved

inside

Contributor

15399

Ipsec VPN b/w checkpoint cluster and Azure gateway

15399

inside

Participant

15299

fw_full process consumes 100% CPU

15299

Solved

inside

MVP Diamond

15202

Meaning of "R" in firewall name?

15202

inside

Contributor

15200

Bandwidth limit per app /category

15200

Solved

inside

Contributor

15199

ISOmorphic Tools bootable flash creation for R80.40

15199

inside

Contributor

15199

Separation of access for RemotaAccess, CRL error

15199

Solved

inside

Contributor

15199

Vulnerability-ssl-weak-message-authentication-code-algorithms for Port 8211

15199

Solved

inside

Collaborator

15100

What different for Content Awareness and Data Loss Prevention blade

15100

inside

Collaborator

15099

Installation failed. Reason: Load on Module failed - failed to load security policy

15099

Solved

inside

Contributor

15000

Quick mode Received Notification from Peer: invalid id information

15000

inside

Participant

14999

SmartEvent - Error (CPSEMD not running)

14999

inside

Contributor

14899

DNS problems possibly due to firewall issue

14889

inside

Contributor

14801

ClusterXl synchronization network bandwidth

14801

inside

Contributor

14800

Basic commands used in checkpoint for troubleshooting and the features?

14799

Solved

inside

Collaborator

14799

What is SNMP OID for CP FW number of new connections?

14700

inside

Contributor

14699

Connection rematch after policy installation

14699

Solved

inside

Contributor

14699

Route Based VPN on one side and Domain Based VPN on other

14699

inside

Explorer

14603

Problem with VPN AMAZON(AWS) CHECK POINT

14603

inside

Collaborator

14601

Manually define local VPN Domain per remote peer

14601

Solved

inside

MVP Gold CHKP

14599

First impressions R80.30 on gateway - one step forward one (or two back)

14599

inside

Contributor

14599

Hacking DNS TechTalk: Video, Slides, and Q&A

14599

Solved

inside

Explorer

14503

Check Point Security Gateway as HTTP/HTTPS Proxy

14503

Solved

inside

Collaborator

14500

Failed to connect to SMTP server - smtp Traffic Rejected

14500

inside

Participant

14500

VPN tunnel with Dynamic IP address.

14399

Solved

inside

Participant

14398

Checkpoint firewall logging source interface

14398

inside

MVP Diamond

14300

R80.x - Performance Tuning Tip - Management Data Plane Separation

14300

Solved

inside

Contributor

14300

Local backup issue /var/log is full

14300

inside

MVP Platinum

14299

Check Point configuration mistakes - Top 10

14299

inside

MVP Gold CHKP

14299

Security Gateway Performance Optimization - VSX

14299

inside

Collaborator

14200

Question on traffic handling between Kernel Mode FW and Usermode FW

14200

Solved

inside

Participant

14199

CoreXL option disabled in cpconfig

14199

Solved

inside

Contributor

14199

How to Prepare a lab for checkpoint using vmware

14199

inside

Contributor

14199

Update appliance 1490 os R77.20.70 to R77.30 or R80?

14199

inside

Participant

14199

ICMP is sometimes drop when send via IPSec Tunnel

14199

Solved

inside

Explorer

14199

R80 CCSA/CCSE training material and exams

14199

inside

Advisor

14100

CoreXL: only one SND core is busy

14099

inside

Participant

14099

Having trouble connecting to Check Point 1430/1450

14099

Solved

inside

Contributor

14099

R81.10 to R81.20 upgrade failing

14099

inside

Participant

14099

Issue with Checkpoint Identity Agent

14099

inside

Collaborator

14000

Duplicate services - which will be used?

13999

inside

MVP Diamond

13999

R80.20 - SYN Defender on SecureXL Level

13999

inside

Advisor

13999

Command to show history of ClusterXL member status

13899

inside

Admin

13899

R80.20 has recommended status now!

13899

inside

Contributor

13899

Firewall priority queues setting

13899

inside

Collaborator

13897

HTTPS inspection in R77.30 and R80.10 with various combinations of proxy and probe bypass

13897

Solved

inside

Admin

13890

fw ctl zdebug - this is wrong...

13890

inside

Admin

13818

White Paper - URL Filtering Best Practices for the Large Scale Deployment

13818

Solved

inside

Contributor

13800

Change Management IP addresses in Cluster

13800

inside

Explorer

13800

Zoom Meeting Issues with SecureXL

13800

inside

Participant

13800

Does 4600 Appliances supports upgrade to R80.20?

13800

inside

Advisor

13800

Exporting Objects/Groups in R77.30

13800

inside

Contributor

13800

No authentication for port 18231 Policy Server Login (old)

13797

Solved

inside

Contributor

13701

The license it is impossible to detach it in smartupdate

13700

inside

Contributor

13699

Deploying Check Point Solution R80.40

13699

inside

Advisor

13699

Slowness when Accessing HTTP traffic over Remote Access VPN

13699

inside

MVP Platinum

13698

R77.30: New Jumbo Hotfix (Take 338) GA-Release

13698

Solved

inside

MVP Gold

13601

how to disable SecureXL for specific src to specific dst

13599

Solved

inside

Contributor

13599

need checkpoint document that has details of all field that are in logs

13500

inside

Contributor

13499

can ping internet but unable to browse

13499

inside

Participant

13499

Infinity R80.10 "Cool Feature of the Day" - Content Awareness

13499

Solved

inside

MVP Gold CHKP

13499

Domain objects in R80.10 spamming DNS

13499

inside

Contributor

13412

Error installation CP VPN E80.92

13412

Solved

inside

Advisor

13400

Zero Downtime Upgrade - R80.10 - R80.40

13400

inside

Advisor

13399

Is CP planning to support Load-Sharing in future releases?

13399

inside

Contributor

13399

How does Domain Management Server (CMA) get to the internet?

13399

inside

Admin

13392

White Paper - How to Batch Categorize URLs

13392

inside

Employee

13301

What is the practical example to use Bridged Mode?

13301

Solved

inside

Explorer

13300

r80.10 all-in-one evaluation license activation?

13300

inside

Explorer

13299

Issues with Identity Awareness - some users are not seen and some traffic is incorrectly marked

13299

inside

Collaborator

13299

Production cluster upgrade R77.30 to R80.10

13299

inside

MVP Silver

13299

6800 stability Issue - R80.10 w\/Take 203 or R80.20 w/ Take 74

13287

inside

Collaborator

13246

R77.30 Sending Check Point Logs to a Syslog Server

13246

inside

Contributor

13200

How to Block TOR NODE is Checkpoint Firewall R80.30 Version

13200

inside

Participant

13199

Disable SecureXL permanent R80.20

13199

inside

Contributor

13199

WSDNSD high cpu + Strange messages

13199

inside

MVP Silver

13199

Management problem with GAIA OS

13199

Solved

inside

MVP Silver

13199

Reminder for R80.20/30 End-of-Support on 30/9/2022

13199

inside

MVP Diamond

13199

RFID token authentication with R81+ Raspberry Pi

13199

inside

Collaborator

13199

getting certificate error when trying to connect to a site

13199

inside

Advisor

13190

Enable multiple email addresses associated with account.

13100

Solved

inside

Advisor

13100

Is Check Point Gaia vulnerable towards this new cve-2024-6387 in OpenSSH?

13100

inside

MVP Diamond

13100

ONELINER - Check CVE-2024-24919 Vulnerability

13100

inside

Explorer

13100

Domain objects (FQDN mode) vs Custom Applications/Sites

13099

inside

Admin

13099

New updatable object for HTTPS Inspection: HTTPS Services Bypass

13099

inside

MVP Platinum

13019

R80.10: New Jumbo Hotfix (Take 154) GA-Release

13019

Solved

inside

Explorer

12999

SPLAT R75.40 - disable TCP / ICMP timestamp

12999

Solved

inside

Advisor

12900

Security Policy Management without SmartConsole

12899

inside

MVP Diamond

12897

Switch or Cable between ClusterXL members for the sync network?

12897

inside

MVP Gold

12846

https Traffic Dropped ... due to Out of sequence TCP packet retransmission. Stripping all packet dat

12800

inside

Advisor

12800

LDAP groups in Remote Access VPN Rules

12800

inside

Contributor

12800

How to migrate Full HA Cluster(r77.30 to r80.10)?

12800

inside

Participant

12799

Printernightmare CVE-2021-1675

12799

inside

Participant

12798

why 3000 series CPU core higher than 5000 series?

12700

Solved

inside

Contributor

12699

NMAP Shows Ports 5060 & 2000 Open

12699

Solved

inside

Collaborator

12629

Meaning of flag in packet dropped

12629

inside

Participant

12599

The number of Virtual systems on VSX cluster with the HA license

12599

inside

Contributor

12599

R80.x - Performance Tuning Tip - Control SecureXL / CoreXL Paths

12500

Solved

inside

Explorer

12500

I have a Check Point model L-50 (serial number - 1310436119900) and I just need to know the throughput the series 1100 can handle?

12500

Solved

inside

Collaborator

12499

interaction between VRRP and CXL - why is there a tickbox for ClusterXL when the cluster is VRRP

12499

inside

Collaborator

12499

Smartconsole cant connect to firewall in GNS3

12409

inside

MVP Diamond

12400

New daemon or processes under R80.20!

12400

inside

Contributor

12300

High Memory after Install 110Take

12300

inside

Collaborator

12299

End-of-Support policy updates for R80.10 software version

12299

inside

Explorer

12200

Interesting traffic.. a parameter for Phase-2 negotiation?

12200

inside

Admin

12200

How To Open a Case with TAC and/or Account Services

12200

inside

Explorer

12199

VSX/ VS - Remote VPN clients connecting to 'other' VS in cluster

12199

Solved

inside

Explorer

12199

GotoAssist doesn't work when Inspection SSL is enable

12199

Solved

inside

Contributor

12198

Reg: policy installation failed on gateway

12198

inside

Collaborator

12196

Zero Downtime Upgrade From R77.30 to R80.20

12099

inside

Explorer

12099

Difference between interface based and zone based firewall?

12099

inside

Admin

12099

End of Support for R77, R77.10, and R77.20

12099

inside

Advisor

12099

TCP port reuse between Check Point Remote Access Gateway and Loadbalancer

12099

inside

Champion

12099

Checkpoint IPSO vs SecurePlatform vs Gaia

12000

inside

Explorer

12000

R80.20 SecureXL drop template support

12000

inside

MVP Diamond

11999

R80.40 - Multi Queue on VMWare vmxnet3 drivers.

11999

Solved

inside

MVP Gold

11999

What is the default time that HIT count data is kept in R80?

11999

inside

Collaborator

11999

RX-OVR drops and 10 gb hardware buffer

11999

Solved

inside

Participant

11999

Checkpoint as a Reverse Proxy for Skype for Business

11938

inside

Explorer

11931

Rule base checking if Application control and URL filtering blade is enable?

11931

Solved

inside

Participant

11899

URL Filtering Doesn't work on HTTPS

11899

Solved

inside

Explorer

11800

Fragmented packet with IPS(R80.10)

11800

inside

Admin

11800

CheckMates Fest 2025: Video and Q&A

11800

inside

Collaborator

11799

checkpoint not opening in WEB GUI

11799

inside

Contributor

11799

HTTPS Categorization ... a drama

11799

inside

Employee

11799

R81.10 End-of-Support extension

11799

inside

Participant

11799

Custom Application Site url substring wildcard

11799

inside

Participant

11799

Identity Awareness issue - User identified but the rule is not matching

11799

inside

Explorer

11713

Microsoft Office 365 Service Application Control

11713

inside

Explorer

11700

R77.30 Take 292: New Jumbo Hotfix GA Release

11700

inside

Collaborator

11699

Vulnerability on CheckPoint Banner disclosure

11699

Solved

inside

MVP Diamond

11600

R80.20 - More then 40 Cores for CoreXL?

11600

Solved

inside

Explorer

11599

Cannot ping remote VPN gateway external IP

11599

Solved

inside

Advisor

11599

HA clusterXL with Bond interfaces with Cisco switch

11597

inside

Contributor

11511

General community posting questions

11511

Solved

inside

Advisor

11500

"CRLs failed to be downloaded" error when access SmartConsole R80.30

11500

Solved

inside

Contributor

11499

Port forwarding to internal IP connected to other firewall.

11499

inside

Collaborator

11499

SSL Medium Strength Cipher Suites Supported

11499

inside

Contributor

11499

When you enable HTTPS inspection, gmail does not work.

11499

inside

Contributor

11438

Where can I check the phase 2 encryption domain on cli for existing vpn

11438

inside

Participant

11400

Natting to an IP range not directly connected

11399

inside

Admin

11399

White Paper - Configuring NAT64 for Internet Access in R80.20

11399

Solved

inside

Collaborator

11399

Configuration Migration From Checkpoint 4200 Appliance to CP 4800 Appliance

11399

inside

Contributor

11399

Viewing Fan Status on non-Checkpoint Appliance

11399

inside

Participant

11399

Traffic dropped by Reason: PSL Drop: HTTP_DISPATCHER;

11399

Solved

inside

Explorer

11399

Destination Host Unreachable - 8.8.8.8 (intermittent)

11399

inside

Champion

11336

Transparent proxy - sense? (comprehension question)

11315

inside

Collaborator

11305

TCP packet out of state: First packet isn't SYN

11305

inside

Contributor

11299

Site to Site vpn with 3rd party DAIP gateway

11299

inside

Admin

11299

Platform URLs You'll Find Useful

11299

Solved

inside

Admin

11299

IMPORTANT - Action Required For VPN/Remote Access Security Gateways Using DigiCert - by Sep 8, 2025

11299

inside

Employee

11299

New 3900 Branch office applainces were launched today 28/5

11299

Solved

inside

Explorer

11299

Syslog alert for power supply failure

11299

inside

Employee

11238

Important: R80.10 End-of-Support will take place in May-2021

11238

inside

Collaborator

11205

Fragment Reassembly Time Exceeded Errors

11199

inside

Employee Alumnus

11199

R80.30 – default version (widely recommended)

11199

inside

Participant

11199

command to check particular segment is already part of any encryption domain

11199

inside

Participant

11199

What are to the point differences between Automatic & Manual NAT?

11199

inside

Participant

11199

SIP signalling traffic being dropped erroneously

11199

inside

Participant

11199

Maestro integration with Cisco ACI

11199

inside

Explorer

11199

Should HTTPS inspection be accounted for in the appliance sizing charts?

11117

inside

Collaborator

11102

The difference between checkpoint creation domain and Custom Applications/Sites creation URL

11102

inside

MVP Diamond

11099

Is SAML support available in r80.10?

11099

Solved

inside

Participant

11095

No ssh access to VPN peer outside IP

11095

inside

MVP Diamond

11000

fw monitor/tcpdump and "fwaccel off" - yes or no

11000

Solved

inside

MVP Gold

10999

USFW on appliances with less than 40 cores

10999

Solved

inside

Contributor

10999

Firewall crashed reboots - vmcore crash file R80.30

10999

inside

MVP Platinum

10999

Best Practice: Skype for Business (Lync) with(out) QoS

10999

inside

Participant

10999

IKE Failure on Site to site IPSec VPN with Zyxel USG - open for suggestions

10899

inside

Participant

10899

What happens when session timeout of 720 minutes ends in Identity Awareness

10899

inside

Advisor

10899

Rule matching on sources it shouldn't

10899

inside

Contributor

10899

Check Point Diagnostic Console (cdc)

10899

Solved

inside

Contributor

10899

Problem while installing upgrade tools - Cannot detect the version of the installed upgrade tools.

10899

inside

Advisor

10895

Two Numbered VTI's between gateways managed by same Security Management?

10895

inside

Advisor

10800

Cluster Falover after every change on pbr, routing, ospf,...

10799

inside

Collaborator

10799

Users reported web traffic stopped working

10799

inside

Participant

10799

whitelist AWS S3 buckets using complex URI / URL patterns?

10799

inside

Explorer

10799

Blocked HTTPS requests are not getting a UserCheck message

10799

Solved

inside

Advisor

10799

Failed to deccrypt CP Site Response...

10799

inside

Contributor

10799

Kernel global parameters - the most useful settings

10799

Solved

inside

Contributor

10795

SSL VPN Network Extender Issue

10700

inside

Participant

10699

Messages of mux error on a cluster (active-standby) in r80.20

10699

inside

Explorer

10699

Unable to access new checkpoint gateway using WebUI

10699

inside

Explorer

10698

Wimax branch offices not able to browse

10698

inside

MVP Diamond

10694

R81 - Multi Queue (what's new)

10694

inside

Collaborator

10686

FTP causes 100% CPU on one core

10686

inside

Contributor

10600

R80.40 policy install diff changes breaks the network

10600

Solved

inside

Participant

10600

Move External Interface to different NIC

10600

inside

Advisor

10600

R80.30 - Slow DMZ transfer performance

10600

inside

Collaborator

10599

should i be worried about a key install to an unknown ip from the firewall?

10599

inside

Collaborator

10599

Legacy Auth (User Auth, Client Auth) on R80.10 gateways

10599

Solved

inside

MVP Gold

10599

CVE-2024-3094 [CRITICAL Vulnerability Just Disclosed (CVSS-10)]

10599

Solved

inside

Participant

10518

How to export checkpoint objects to an external file

10518

Solved

inside

Advisor

10508

6000 series appliance R80.20 download

10508

inside

Contributor

10501

SMTP Server Non-standard Port Detection

10499

inside

Advisor

10499

Checkpoint Firewall Radius Authentication

10499

inside

Champion

10499

Precedence in the rule order processing in R80.20

10499

inside

Champion

10499

Need help to configure log forwarding to syslog server SIEM from checkpoint management server

10499

Solved

inside

Participant

10499

Manual NAT inside a VPN IPsec Tunnel

10499

Solved

inside

Contributor

10498

Configuring Cluster Addresses on Different Subnets

10498

inside

Employee

10428

Possible to 'hide' subnets outside of encryption domain

10428

inside

MVP Diamond

10418

ONELINER - Show all Kernel Parameter

10418

inside

Collaborator

10400

DNS Passive Learning Design Question

10400

inside

Explorer

10400

Cannot ping any of the interfaces of the gateway

10399

Solved

inside

Advisor

10399

Abnormality in pattern matching of APP CONTRL BLADE

10399

inside

Explorer

10399

R80.10: IPsec VPN - allow unencrypted pings between gateways

10399

inside

Admin

10399

What's New in R81.20 TechTalk? Video, Slides, and Q&A

10399

inside

Employee Alumnus

10399

Brainstorming for a new DLP platform – we want to hear from you!

10399

inside

MVP Diamond

10399

Homekit (Siri) integration with R81 Dynamic Objects

10399

Solved

inside

Collaborator

10302

CPSIZEME Download URL not working

10302

inside

MVP Gold

10300

"Insufficient disk space to perform this activity" When Deleting Objects

10300

inside

Explorer

10300

R80.40 - Performance Tuning Tip - CPU Spike Detective

10299

inside

Advisor

10299

Renew external (3rd party) certificate for IPSEC VPN

10299

inside

Contributor

10299

Migration from VRRP to ClusterXL

10299

inside

Admin

10299

May the 4th + 4 Paradigm Shift: Video, Slides, and Q&A

10299

inside

MVP Diamond

10299

Performance Tuning - Bufferbloat

10299

inside

Participant

10299

All in one eval Licensing issue

10299

Solved

inside

Explorer

10299

What is the impact of passing "First Packet isn't sync" traffic at the firewall ?

10299

inside

Advisor

10299

CoreXL affinity on VSX R80.10 does not survive reboot?

10299

Solved

inside

MVP Diamond

10199

R80.40 - new interesting commands

10199

inside

Contributor

10199

Identity Awareness and AD convergence

10199

inside

Collaborator

10199

Procedure upgrade R80.20 Smartevent

10199

Solved

inside

MVP Diamond

10199

Second Log4j Vulnerability (CVE-2021-45046) Discovered

10199

Solved

inside

Contributor

10198

Update failed. Contract entitlement check failed. Gateway can not access internet

10198

inside

MVP Diamond

10189

When does the R80.40 EA phase start?

10189

Solved

inside

Participant

10101

Echo replies dropped – spoofed address

10101

inside

Contributor

10100

adding/configuring interface causing error in cluster setup - policy error

10100

Solved

inside

Contributor

10100

Upgrade Reporter Progress (R80.30->R80.40 Standalone) - Stuck on Importing IPS Data ...

10099

inside

Collaborator

10099

Install Hotfix in Checkpoint platform VSX

10099

inside

Explorer

10099

License-Management-Test: Add License

10099

inside

Contributor

10099

Introducing Check Point for Beginners!

10099

inside

Contributor

10099

ICMP generated by CP itself does not leave the Firewall

10040

inside

Explorer

10036

sk106623: "Custom Application/Site that was created to match a domain and sub-domains, is not matched by Application & URL Filtering policy"

10001

inside

Champion

10000

Default and maximum memory per VS in VSX R80.10

10000

inside

Participant

10000

WEB_API constant log in - log out

10000

inside

Collaborator

9999

Endpoint Security- Failed to create new site Reason: Site is not responding

9999

Solved

inside

Advisor

9999

difference between stateful inspection and packet flow

9999

Solved

inside

Advisor

9999

Import a trusted CA cert to Gaia OS

9999

inside

Participant

9999

How to found out Policy Package from R77.30 CLI

9994

inside

Collaborator

9925

Unable to ping Checkpoint Gateway ip from gns3 router

9925

inside

Employee

9902

R82: Parallel Processing Based Packet Flow

9902

inside

Collaborator

9900

Error: Server to client packet of an old TCP connection on R80.10

9900

Solved

inside

Participant

9900

High Performance Firewalls - ESX vs. Open Server

9899

Solved

inside

Contributor

9899

Trouble uploading video on course from linkedin

9899

inside

Admin

9899

Infinity R80.10 "Cool Feature of the Day" - Rule Assistant

9899

Solved

inside

Collaborator

9899

Expert command of Security Management Server to show Initialization Status

9899

inside

Participant

9899

Unable to establish the SIC(Outgoing Policy)

480

inside

Employee

1091

Be Your Own TAC Part Deux EMEA: Advanced Gateway Troubleshooting Commands, Video and Slides

7860

inside

Admin

3231

Be Your Own TAC Part Deux Americas: Advanced Gateway Troubleshooting Commands, Video and Slides

3231

inside

MVP Gold

513

RA clients not able to access external cluster interface

513

inside

Explorer

549

Microsegmentation with Firewall Hardware

549

inside

Explorer

548

the new subnets are unable to communicate through the existing VPN tunnel

548

inside

Participant

1016

SMS migration from XCP-NG to ProxMox

1016

inside

Advisor

4697

Take logging out of the implied rules

1217

inside

MVP Diamond

2164

SmartConsole Shortcuts - cheat sheet

2164

inside

Explorer

771

I can't find how my dns host is used within the FW object.

771

inside

Explorer

4537

Checkpoint Gateway sending DNS requests to DNS server for malicious URLs

4537

Solved

inside

Explorer

884

BGP route on Maestro Active/Active are showing as inactive/unusable

884

inside

Employee

446

Introducing Managed SmartAwareness: Cyber Training, Fully Guided by Experts

446

Solved

inside

Contributor

1252

LOM interface - Console Session

1252

Solved

inside

Collaborator

1228

Reducing /var/log partition size on Gaia OS

1228

Solved

inside

Collaborator

15638

https inspection tip/feedback/suggestion

950

inside

Explorer

513

Disable Camelia Cipher on the firewall

513

inside

Collaborator

747

always-connect for standalone vpn client

747

Solved

inside

Collaborator

1764

Policy Installation Failed(Time out)-SMB Appliance

1764

Solved

inside

Admin

4103

New Products Introduction July 2025: Video, Slides, and Q&A

4103

Solved

inside

Advisor

728

Export all gateways IPs MDS + VSX

728

inside

Collaborator

1119

Unable to access Site(CPNotEnoughDataForRuleMatch)

1119

inside

Employee

464

Big News: Check Point Services Now Live on AWS Marketplace - Let’s Get the Word Out!

464

Solved

inside

Advisor

3151

Clarification Needed on fwaccel stat

3151

Solved

inside

Explorer

660

How to renew GAIA web certificate.

660

Solved

inside

Advisor

1708

Deleting a Checkpoint host object from smart console

547

Solved

inside

Contributor

1204

Netflow Export with Physical Ip in cluster environment

289

Solved

inside

Advisor

735

Moving a Gateway from One CMA to Another

735

inside

Explorer

449

Logs not showing up in SmartConsole after policy install

449

inside

Collaborator

2612

VIP IP Change Not Reflected in PDP/PEP Still Shows Old IP

281

inside

Admin

514

From OT to Cloud: A Security Blueprint for Manufacturers - Americas - Recording + Slides

514

inside

Collaborator

447

synchronize Identity sharing between the active and passive node

447

Solved

inside

MVP Diamond

40940

Threat Prevention Policy fails to install to one security gateway only (Failed to handle indicators)

393

Solved

inside

Advisor

661

Request for Advice – Changing Management Interface and Default Gateway Without Connectivity Loss

661

Solved

inside

Employee Alumnus

4048

What is the difference between Custom Intelligence feed and Network Feeds ?

4048

inside

Explorer

741

Static Hide Behind Gateway NAT

2266

inside

Admin

411

From OT to Cloud: A Security Blueprint for Manufacturers EMEA - Recording

411

inside

Employee

11369

New 3900 Branch office applainces were launched today 28/5

11369

Solved

inside

Contributor

488

telnet showing open port on ILO when its not when going via FW

488

inside

Explorer

981

Allow rule for site hosted on akamai CDN, only the first dns response seems to work

981

Solved

inside

Explorer

693

Identity Awareness Agents SK with direct links - published!

18822

inside

Advisor

492

Fresh Install Without USB, Possible From Boot Menu?

492

Solved

inside

Advisor

722

simple question about ISOmorphic

722

inside

Advisor

349

IPSec tunnel Setup [HUB and SPOKE Scenario] with Both spokes being non-checkpoint VPN Gateway

1108

Solved

inside

Advisor

305

At a gateway, how do I determine what domain the gateway belongs to?

1296

inside

Advisor

1299

Policy location on a gateway R80

8368

Solved

inside

MVP Silver

408

GMSA/automated password rotation for Identity

408

inside

Collaborator

10021

Identity awareness collector changes user identity for same IP while connecting to RDP

10021

inside

Explorer

379

SNMP Issue after JHF 99 R81.20 VSX cluster

379

Solved

inside

MVP Gold

4236

Upgrade is failing from R81.10 to R82

4236

inside

Participant

5089

exclude checkpoint public/external ip from encryption domain?

5089

inside

Collaborator

1168

Clarification on DNS Reputation Logs

1168

inside

Employee

1777

Quantum Force performance boost is available post the release of R82 Jumbo #3 ( Take 25)

1777

inside

Advisor

916

Cluster Falover after every change on pbr, routing, ospf,...

10823

inside

Explorer

1178

Capsule VPN mobile users can't connect

1178

inside

Champion

48506

Can I directly search through solr indices using curl like elasticserch?

511

Solved

inside

Contributor

1920

lowering mtu on remote access vpn?

1920

Solved

inside

Contributor

1141

CP21800 (R80.40 Jumbo T211) - reply not from Cluster IP

1141

inside

Advisor

846

Is It Safe to Change SecureXL on a Cluster?

846

inside

Employee

407

Meet Your New Assistant: Infinity AI Copilot - video and materials

9247

inside

Collaborator

823

portal certificate can not upload file

823

Solved

inside

Collaborator

8622

BSI Common Criteria EAL4+ R82 Version + Jumbo Hotfix

684

inside

Employee

439

Security Engineer Eyes Only - Behind the Miercom Results

439

Solved

inside

Explorer

3218

Firewall-Blades Order of Operation

3218

inside

Participant

999

Hack Like a Pro: Break Into a Server Using the Kill Chain - Americas Recording

341

inside

Admin

420

Hack Like a Pro: Break Into a Server Using the Kill Chain - EMEA recording

420

inside

MVP Silver

832

Thales Mandatory Security Update - STA RADIUS Server to Enforce Message-Authenticator by July 31, 20

832

inside

Employee

1837

Upgrading Gateway to R82 while MDS on R81.20

874

inside

MVP Silver

1342

Trellix application not available in App objects

2044

Solved

inside

Explorer

2317

Upgrading Gateway 9100 to R82 via blink package

2317

Solved

inside

MVP Diamond

562

Any idea when https inspection policy rules hit count will be available?

562

inside

Admin

1691

CPX 2025 Recap with Surprise Guest Veriti: Video and Slides

1691

inside

Advisor

4721

Traffic dropped only in clean-up rule??

4721

Solved

inside

Employee

19489

Tip of the week: Support Center's Upgrade Wizard

19489

Solved

inside

Collaborator

3086

route based VPN requires VPN domain

3086

inside

Explorer

686

Security Group name dinamec change

686

Solved

inside

Collaborator

2665

VPN gateway random UDP traffic to CP peers?

7497

Solved

inside

Advisor

13660

how to disable SecureXL for specific src to specific dst

13660

inside

Advisor

2062

policy installation mode - set permanently

1010

Solved

inside

Advisor

1309

Safe to delete /var/log/CPda/repository?

1309

Solved

inside

Participant

1351

Application filter based on risk - do not include URL...

814

Solved

inside

Advisor

689

SIC Failure when creating new virtual systems in VSX

690

inside

Admin

401

Building a Scalable Cybersecurity Skill Development Program: 4 Strategies for Success - AMER Video

401

inside

Admin

326

Building a Scalable Cybersecurity Skill Development Program: 4 Strategies for Success - EMEA Video

326

inside

Advisor

444

MAS Tunnel Down After Cluster update

444

Solved

inside

Advisor

2152

URL Filtering Not Blocking Some Categorized Sites

2152

Solved

inside

Advisor

1749

SSL VPN disconnects after a successful login attempt, if the notebook on hotspot provided by iOS

1106

inside

Admin

695

ATAM 360°: Elevate Your Cybersecurity Strategy with Proactive Services - Materials

695

inside

Admin

794

Spotlight on AI-Powered Cyber Security Platform Assessment 2025, Americas: Video and Slides

794

inside

Admin

2507

Spotlight on AI-Powered Cyber Security Platform Assessment 2025, EMEA - Materials

2507

inside

Advisor

671

Change to Global Properties – Session Timeout Settings

2616

Solved

inside

Advisor

2315

No SFTP any longer only Aspera in Service Requests

2190

inside

Explorer

567

Threat Emulation error | Autonomous Threat Prevention Policy

2054

inside

Advisor

1422

How to change the state of a cluster XL member using CLI commands

1585

Solved

inside

Participant

491

Application Control/URL Filtering request instructions

491

inside

Explorer

764

OpenSSH Vulnerability detection

8168

Solved

inside

Collaborator

1032

Identity Collector & Cisco ISE - Failed Logins

2463

Solved

inside

Explorer

1127

R80.40 "cpview -t" is not working

5557

Solved

inside

Explorer

530

Americas Deep Dive: Maintenance and Upgrades Best Practices

530

inside

Admin

1022

HTTPSi R82 Demo: Practical Updates and Best Practices: Americas - Materials

1022

inside

Admin

1371

HTTPSi R82 Demo: Practical Updates and Best Practices: EMEA - Materials

1371

inside

MVP Silver

791

GAIA Multi-Factor authentication after upgrade to R81.20 Take 99

791

inside

MVP Gold

1435

Is anyone postgresql expert here?

1435

Solved

inside

Advisor

1527

Old versions in /var/log/opt/ security gateway

1527

inside

Admin

1526

Explore New Wave of Web Based DDoS Attacks and Mitigations: Video, Slides, and Q&A

1526

Solved

inside

Collaborator

1316

[SOLVED] - Identity Agent Terminal Server - Users Not Authenticated

924

Solved

inside

Advisor

2406

Quantum Spark License – Which IP Address to Register?

2406

inside

MVP Silver

1773

MFA for Smart Console like GAIA

1773

inside

Explorer

433

Any idea when R81.20 jumbo 99 will be recommended take?

930

Solved

inside

Advisor

1079

Best way to upgrade the MDS to R82 from R81.10

1079

inside

Advisor

675

core allocation change and gnat and nat port allocation

675

Solved

inside

Collaborator

2002

HTTPS Inspection Statistics Dashboard

2002

inside

Participant

626

How to delete a rule from a specific gateway policy package using CLI

626

inside

Participant

1099

Installing jumbo hotfix on R82 vsnext/vsx

2031

Solved

inside

Advisor

1174

Firewall migration from Active/Active to Active/Passive

764

inside

Collaborator

1290

Firewall Management Traffic via Cluster VIP

1290

Solved

inside

Collaborator

1034

May the 4th + 4 Paradigm Shift: Video, Slides, and Q&A

10379

inside

MVP Gold

985

search in the knowledgebase without login :-)

985

inside

Admin

637

CPR Security Report: 2025 Cyber Threat Trends (Americas) - Recording

637

Solved

inside

Contributor

1139

ClusterXL and Smart-1 Cloud as a management

1139

Solved

inside

Participant

592

Change some VPN Community settings with mgmt_cli

592

inside

Contributor

1058

INSPECT code in DEF file to bypass traffic inspection? still a "thing"??

1010

Solved

inside

Collaborator

755

Threat Emulation appliance connectivity

755

inside

Admin

780

CPR Security Report: 2025 Cyber Threat Trends (EMEA) - Recording + Slides

780

inside

Explorer

1403

URL categorization check websites

2309

inside

Admin

13484

White Paper - How to Batch Categorize URLs

13484

Solved

inside

Advisor

664

Gateway Cluster Hardware Upgrade

33830

inside

Contributor

2769

Identify VPN downtimes or re-establishments

1990

Solved

inside

Contributor

1896

Modify 'Return URL' in Identity Provider object for SmartConsole SAML SSO

1896

inside

Advisor

2055

ClusterXL topology - member interface names - Gaia config vs. CP topology

2055

inside

Employee

11954

R81.10 End-of-Support extension

11954

Solved

inside

Participant

1861

Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - EMEA recording

3718

inside

Advisor

804

Synchronization Interface in a Cluster

804

inside

Advisor

1048

Identity Awareness captive portal and identity conciliation

1048

inside

Participant

2537

export certificate for ldap user remote access

2537

inside

Explorer

619

CRL Traffic Not Appearing in the Logs

619

inside

Admin

563

Find & Fix- How Common Code Flaws Let Hackers In | Live Demo - Americas - Recording

563

inside

Admin

3138

Tips and Tricks 2024 #9 - Best Practices for TAC Engagement, Escalations, and Support Management

3138

inside

Employee

730

The Case for Check Point’s Hybrid Mesh Security Architecture

730

Solved

inside

Advisor

886

Find & Fix- How Common Code Flaws Let Hackers In | Live Demo - EMEA Recording

390

Solved

inside

Advisor

772

Let's discuss: Important Notification to Customers with SecureXL User Mode (UPPAK) enabled, on R81.2

3343

inside

Explorer

620

Detect upstream failure and flip BGP default route

620

inside

Explorer

659

Can i use license from existing CMS deployed on VMware to CMS (CloudGuard ) on Azure Platform

659

inside

Explorer

504

How to view gateway spike detective in a graph format.

504

Solved

inside

Explorer

1190

Logs not showing real-time on SmartConsole?

1190

Solved

inside

Participant

1810

How to create a site-to-site VPN between two Check Point firewalls

1810

inside

Advisor

1476

Approve MS smartphone delay RADIUS

1476

inside

Participant

578

new generation of hp proliant dl360 and dl380 support

716

Solved

inside

Contributor

5103

IPSec VPN between CheckPoint and Prisma Access

5103

Solved

inside

MVP Diamond

853

Next R81.20 jumbo hotfix release?

853

inside

Advisor

2245

Check Point Hosts VS CheckPoint Gateway

2413

inside

Collaborator

1018

smarconsole changes (former workflow)

3154

inside

Admin

580

Simplifying Zero Trust with Infinity Identity: Centralized, Scalable, Secure - Americas recording

580

inside

Contributor

639

Space on management server for snapshots

639

inside

Participant

459

migrate SMS and gateways to new management IP network

2905

inside

Advisor

1353

change management's ip of cluster

1353

inside

Advisor

2241

SIP dropped by fw_post_vm_chain_handler Reason: Handler 'sip_manager' drop

2241

Solved

inside

Contributor

3387

Remote Access VPN and EntraID Group Authorization

3387

inside

Contributor

1244

Status of cluster stuck in warning - sk178304

2335

inside

Contributor

1554

[SOLVED] Identity Agent - The Check Point Managed Asset Detection service is not responding

1131

inside

Explorer

10489

Abnormality in pattern matching of APP CONTRL BLADE

10489

Solved

inside

Collaborator

1255

Improving IPSEC Encryption settings

1255

Solved

inside

Advisor

864

r81.20 -> r82: what happens to https inspection policy

864

Solved

inside

Advisor

607

ClearPass / Checkpoint Integration

1800

Solved

inside

MVP Gold

7443

cpsho_user config pushed from Check Point?

7443

Solved

inside

Explorer

904

Threat Emulation Appliances - Support for Windows 11 OS

904

inside

Advisor

1377

The policy package is not visible in SmartConsole on R81.10.

1951

inside

Employee

1221

TME Under The Hood: VSNext - Now On Video!

1221

Solved

inside

Explorer

966

Snapshot operation fails in CLI but works in WEB partially

966

inside

Advisor

1064

Test via snmpwalk or cli if IPS Bypass is set to track via SNMP alert

2621

Solved

inside

MVP Diamond

3115

cpisp_update script does not work on R81.10?

5697

inside

Contributor

635

Enterprise and Hybrid Mesh Firewall 2025: 3rd-Party Lab Insights - Recording

1106

Solved

inside

Contributor

1327

Question about transceiver compatibility.

1327

inside

Participant

621

Identity awareness with Hybrid IDP

621

inside

MVP Gold

921

Change VPN client authentication option

921

inside

Contributor

8649

CP Identity Awareness with IDC Users Failed Login Error FW Not Able to Detect Certain Users

832

inside

Explorer

885

Failed login alerts because of TACACS+ authentication failure

885

inside

Explorer

1531

Smartconsole doesn't show any task statuses | R82

1531

inside

Advisor

1511

How to change my usercenter account email address

1511

inside

Admin

106805

How to Request an Evaluation License for Security Gateways and Management, Endpoint Security

38768

inside

Admin

643

AI-Powered Cyber Risk & Compliance Management - Americas

643

Solved

inside

Explorer

915

Migration from On-Prem checkpoint management server to checkpoint management server in VM

915

inside

Admin

844

AI-Powered Cyber Risk & Compliance Management - EMEA

844

Solved

inside

Explorer

17301

Ikev2 Phase2 is not getting up

17301

Solved

inside

MVP Silver

2085

Pricing intance checkpoint AWS

519

inside

Explorer

882

A simple question on Anti-spoofing ?

882

inside

Advisor

2641

Fix Checkpoint Logs Confusion: 'Drop' to 'Warning' for URG Flags – New Insights on Ports 1524 & 1525

2641

inside

Contributor

940

RTP traffic doesn't show in the logs

940

Solved

inside

Explorer

8492

Retrieving Policy from Firewall

8492

inside

Explorer

1602

R82 Site to Site VPN with third party Router

4488

inside

MVP Gold

851

Gateway secure log - Can these be seen in Smart Console

966

inside

Advisor

635

Deploying Mobile Access for Windows to unmanaged hosts

635

inside

Collaborator

774

How to calculate VSX CoreXL instance for network traffic load

774

inside

Explorer

715

Logging of FW rules on newly created VSX vFW no thowing up in central logging in Smart console

715

Solved

inside

Participant

1277

Site to Site VPN issue during cluster failover

2432

inside

Advisor

988

permission profiles - modifying reports - view settings missing

988

inside

MVP Gold

650

Switching Capsule client from HTTPS to IPSEC

650

inside

Explorer

930

Blocking Cloud Providers Private Tunnel

930

inside

MVP Diamond

14116

R80.20 - SYN Defender on SecureXL Level

14116

Solved

inside

Collaborator

26598

internet access through firewall

460

inside

Participant

1650

smartConsole unauthorized client

1650

inside

Contributor

1386

New Command After Clean Install

1386

Solved

inside

Explorer

1967

How layered policies are matched | FW, APP, URL

1967

Solved

inside

Advisor

2101

How to migrate a policy package between Security Management servers

2101

Solved

inside

Explorer

3415

not able to access advanced level of SK

3415

inside

Explorer

6084

Lots of message about Alert on Connection Type

6084

Solved

inside

Advisor

1532

Difference between show system disk usage and df -H

1532

Solved

inside

Contributor

1172

Remove manual link speed and MTU configuration

3956

Solved

inside

MVP Diamond

881

Are CP Products with 81.x and 82 safe from CVE-2025-26465 and CVE-2025-26466

2768

inside

Collaborator

896

Unable to access new checkpoint gateway using WebUI

10755

Solved

inside

Collaborator

9819

How to enable history on cli gaia?

9819

Solved

inside

Explorer

1061

Upgrade R80.20 cluster to R81.20

1061

inside

Contributor

3092

R82 US Government IPv6 certification - USGv6R1

684

Solved

inside

Contributor

884

Is Secure Domain Login and SAML authentication compatible for VPN

884

inside

MVP Silver

1655

Problemas restoring the 2nd node of a VSX cluster

2005

inside

Admin

3618

Updatable blocklists from web-server

970

Solved

inside

Contributor

1756

Is it possible to make a local backup of a cloud based smart-1 cloud management?

1756

Solved

inside

Participant

2965

Send logs to additional Syslog Server directly from Security Gateways managed by Smart-1 Cloud

2965

inside

Employee

1355

Important Announcement: Upcoming Change to Zero Touch API Login Procedure

1355

inside

Advisor

2312

Question about permission profiles regarding Inspection settings

666

Solved

inside

Explorer

3394

Monitor user / read user with permissions to execute troubleshooting commands

623

inside

Explorer

821

Site to Site VPN between Quantum Spark and 3rd party Juniper SRX

816

Solved

inside

MVP Silver

1224

VPN Routing between Domain Based and Route Based VPN

4799

inside

Participant

1775

Site2Site vpn comunication issue

1775

inside

Participant

6986

Anti-Spoofing option "Don't check packets from" is greyed out

2620

Solved

inside

MVP Gold

1912

ESP packets are sourced from wrong interface

6032

inside

Advisor

990

clusterXL - show VIP - show prio

990

Solved

inside

Explorer

843

BACKUP OF ALL "SMS" CONFIGURATION TO IMPORT IT TO A NEW VIRTUAL MACHINE

843

inside

Advisor

8607

Lots of First packet isn't SYN

8607

inside

Collaborator

608

Migrate OnPremise Mangement To AWS

608

Solved

inside

Collaborator

6896

R82: ElasticXL - Now on Video!

983

inside

Contributor

512

3rd Party Proxy with deep instpection

826

Solved

inside

Advisor

1536

State: Connection with 'fw-vsx-n01' is lost

1536

inside

Collaborator

966

Using Broadcast or IGMP mode in OSPF

966

inside

Explorer

3755

Route Propagation not working in virtual system

3755

inside

Participant

671

Avoid block vulnerability scan

671

inside

Explorer

4181

Smart-1 Cloud with onPrem Gateways (replacing existing edge 3rd-party firewalls)

3673

Solved

inside

Advisor

1770

Quantum Firewall Software R82 Release: HTTPS Inspection Live!

922

Solved

inside

Collaborator

1075

Alert about increase in a specific type of log ("First packet isn't SYN" for me)

1075

inside

Advisor

1031

Download Blink images from Package repo (Smart Console)

1031

No messages.

General Topics

This space is for general questions about Check Point products and services that aren't specific to a product or service. Questions related to a specific product should be asked in the space relevant to that product.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Virtual

Tue 10 Feb 2026 @ 03:00 PM (CET)

NIS2 Compliance in 2026: Tactical Tools to Assess, Secure, and Comply

Virtual

Tue 10 Feb 2026 @ 02:00 PM (EST)

Defending Hyperconnected AI-Driven Networks with Hybrid Mesh Security

Virtual

Thu 12 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 3: AI-Generated Malware - From Experimentation to Operational Reality

Virtual

Fri 13 Feb 2026 @ 10:00 AM (CET)

CheckMates Live Netherlands - Sessie 43: Terugblik op de Check Point Sales Kick Off 2026

Virtual

Tue 17 Feb 2026 @ 11:00 AM (EST)

Under The Hood: CloudGuard Network Ops App (aka NOA)

Virtual

Thu 19 Feb 2026 @ 10:00 AM (IST)

Threat Hunting with Endpoint Telemetry - EMEA

Virtual

Tue 10 Feb 2026 @ 03:00 PM (CET)

NIS2 Compliance in 2026: Tactical Tools to Assess, Secure, and Comply

Virtual

Tue 10 Feb 2026 @ 02:00 PM (EST)

Defending Hyperconnected AI-Driven Networks with Hybrid Mesh Security

Virtual

Thu 12 Feb 2026 @ 05:00 PM (CET)

AI Security Masters Session 3: AI-Generated Malware - From Experimentation to Operational Reality

Virtual

Fri 13 Feb 2026 @ 10:00 AM (CET)

CheckMates Live Netherlands - Sessie 43: Terugblik op de Check Point Sales Kick Off 2026

Virtual

Tue 17 Feb 2026 @ 11:00 AM (EST)

Under The Hood: CloudGuard Network Ops App (aka NOA)

Virtual

Thu 19 Feb 2026 @ 10:00 AM (IST)

Threat Hunting with Endpoint Telemetry - EMEA

In-Person

Tue 24 Feb 2026 @ 04:30 PM (EST)

Las Vegas: MDR/XMDR

In-Person

Wed 25 Feb 2026 @ 04:30 PM (MST)

Tempe, AZ: MDR/MXDR

CheckMates Events

Are you a member of CheckMates?