There has been a couple of changes in R80.20.10 Advanced Settings for locally managed 1500 appliances.
Additional parameters:
Administrators RADIUS authentication - Default Shell options Clish Default shell for super administrators. To enable this feature please contact Check Point support.
Application Control and URL Filtering - Non-standard HTTP ports bool true Enable HTTP inspection on non-standard ports for the Application Control or URLF blade
IP Resolving - IP Resolving Activation options Disabled Enable / Disable IP Resolving logs enrichment
IP Resolving - IP Resolving TTL int 1800 The time (in seconds) for which the hostname resolution will be used
Report Settings - Reports cloud server URL urlv6https://smbcloud-api-gateway.iaas.checkpoint.com/reports/pdfReports cloud server URL used to generate report PDF
Some parameters have been replaced:
Streaming engine settings - Stream Inspection Timeout action options Prevent Stream Inspection Timeout activation mode
Streaming engine settings - Stream Inspection Timeout trackingoptionsLog
Streaming engine settings - TCP Invalid Checksum action options Prevent TCP Invalid Checksum activation mode
Streaming engine settings - TCP Invalid Checksum trackingoptionsNone
Streaming engine settings - TCP Invalid Retransmission action options Prevent TCP Invalid Retransmission activation mode
Streaming engine settings - TCP Invalid Retransmission trackingoptionsLog
Streaming engine settings - TCP Out of Sequence action options Prevent TCP Out of Sequence activation mode
Streaming engine settings - TCP Out of Sequence trackingoptionsNone
Streaming engine settings - TCP SYN Modified Retransmission action options Prevent TCP SYN Modified Retransmission activation mode
Streaming engine settings - TCP SYN Modified Retransmission trackingoptionsLog
Streaming engine settings - TCP Segment Limit Enforcement action options Prevent TCP Segment Limit Enforcement activation mode
Streaming engine settings - TCP Segment Limit Enforcement trackingoptionsLog
Streaming engine settings - TCP Urgent Data Enforcement action options Prevent TCP Urgent Data Enforcement activation mode
Streaming engine settings - TCP Urgent Data Enforcement trackingoptionsLog
By:
Streaming engine settings - Stream Inspection Timeout actionoptionsPreventStream Inspection Timeout activation mode
Streaming engine settings - TCP Out of Sequence trackingoptionsNone
Streaming engine settings - TCP SYN Modified Retransmission actionoptionsPreventTCP SYN Modified Retransmission activation mode
Streaming engine settings - TCP SYN Modified Retransmission trackingoptionsLog
Streaming engine settings - TCP Segment Limit Enforcement actionoptionsPreventTCP Segment Limit Enforcement activation mode
Streaming engine settings - TCP Segment Limit Enforcement trackingoptionsLog
Streaming engine settings - TCP Urgent Data Enforcement actionoptionsDetectTCP Urgent Data Enforcement activation mode
Streaming engine settings - TCP Urgent Data Enforcement trackingoptionsNone
Some parameters have been deleted:
Serial port - Flow control options RTS/CTS Indicates the method of data flow control to and from the serial port
Serial port - Mode options Console Indicates if the serial port is used to connect to the appliance's console, a remote telnet server or allow a remote telnet connection to the device connected to the serial port.
Unified Threat Prevention policy - Block when service is unavailable bool false Block web requests traffic when the Check Point ThreatCloud online web service is unavailable
Unified Threat Prevention policy - Fail mode options Allow all requests Indicates the action to take on traffic in case of an internal system error or overload
I would be glad to receive any comments, corrections or additions...
CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
