Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
HeikoAnkenbrand
Champion
Champion

R81.x Ports Used for Communication by Various Check Point Modules

Introduction

This drawing should give you an overview of the used R80, R81 ports respectively communication flows. It should give you an overview of how different Check Point modules communicate with each other. Furthermore, services that are used for firewall operation are also considered. These firewall services are also partially mapped as implied rules in the set on the firewall.

Overview

Ports_1.8a.PNG

Download

Download R80.10 version 1.8:
R80.x Ports Used for Communication PDF

Chapter

More interesting articles:

- R81.x Architecture and Performance Tuning - Link Collection
- Article list (Heiko Ankenbrand)

References

Support Center: Ports used by Check Point software 

Versions


Version 1.8:
+ v1.8a R81.10 EA update 04.05.2021
+ v1.8b add port 18264 30.05.2021
+ v1.8c R81.10 upgrade 28.07.2021

old Version 1.7:
+ v1.7a R81 EA update 17.07.2021
+ v1.7b bug fix 20.08.2021
+ v1.7c bug fix + new download link 25.06.2021

old Version 1.6:
+ v1.6a add Azure ports 05.05.2020
+ v1.6b add all cloud ports 15.06.2020

old Version 1.5:
+ v1.5a typos corrected 18.09.2019
+ v1.5b port update 26.01.2020

old version 1.4:
+ v1.4a bug fix, update port 1701 udp L2TP 09.04.2018
+ v1.4b bug fix 15.04.2018
+ v1.4c CPUSE update 17.04.2018
+ v1.4d legend fixed 17.04.2018
+ v1.4e add SmartLog and SmartView on port 443 20.04.2018
+ v1.4f bug fix 21.05.2018
+ v1.4g bug fix 25.05.2018
+ v1.4h add Backup ports 21, 22, 69 UDP and ClusterXL full sync port 256  30.05.2018
+ v1.4i add port 259 udp VPN link probeing 12.06.2018
+ v1.4j bug fix 17.06.2018
+ v1.4k add  OSPF/BGP route Sync 25.06.2018
+ v1.4l bug fix routed 29.06.2018
+ v1.4m bug fix tcp/udp ports 03.07.2018
+ v1.4n add port 256 13.07.2018
+ v1.4o bug fix / add TE ports 27.11.2018
+ v1.4p bug fix routed port 2010 23.01.2019
+ v1.4q change to new forum format 16.03.2019

old version 1.3:
+ v1.3a new designe (blue, gray), bug fix, add netflow, new names 27.03.2018
+ v1.3b add routing ports, bug fix designe 28.03.2018
+ v1.3c bug fix, rename ports (old) 29.03.2018
+ v1.3d bug fix 30.03.2018
+ v1.3e fix issue L2TP UDP port 1701

old version 1.1:
+ v1.1a - added r80.xx ports 16.03.2018
+ v1.1b - bug in drawing fixed 17.03.2018
+ v1.1c - add RSA, TACACS, Radius 19.03.2018
+ v1.1d - add 900, 259 Client-auth - deleted od 4.0 ports 20.03.2018
+ v1.1e - add OPSEC -delete R55 ports 21.03.2018
+ v1.1f - bug fix 22.03.2018
+ v1.1g - bug fix - add mail smtp -add dhcp - add snmp 25.03.2018

 

 

(14)
277 Replies
Rudi
Participant

Hello @HeikoAnkenbrand 

great job!

0 Kudos
HeikoAnkenbrand
Champion
Champion

add all cloud ports

HeikoAnkenbrand
Champion
Champion

 Now version 1.7a with R81 EA update.

Johnny_Wong
Ambassador
Ambassador

Thanks for your update Heiko but I can't locate where download with it. The link provided above is v1.5 still. 

HeikoAnkenbrand
Champion
Champion

Thanks @Johnny_Wong,

The pdf is version 1.6. I just did not set the version in the PDF correctly. I will change this in the next days.

Will_H
Contributor

Port 18264 missing for CA Authority from Gateway to Management 

0 Kudos
HeikoAnkenbrand
Champion
Champion

Hi @Will_H,

I will add this in version 1.7c.

Janosch
Explorer

Nice port overview.

I noticed that port 18210 is missing in the overview.

balder_skoeld
Participant

Hi @HeikoAnkenbrand 

great job!

H_W
Participant

@HeikoAnkenbrand 

great job

 

onur
Participant

job

0 Kudos
nils_alfer
Contributor

Is an overview also available from Check Point?

0 Kudos
nils_alfer
Contributor

@HeikoAnkenbrand nicely done!

0 Kudos
JozkoMrkvicka
Leader
Leader

Port udp/260 is used for cpsnmpd (related to SNMPv1).

Kind regards,
Jozko Mrkvicka
0 Kudos
balder_skoeld
Participant

👍🏻

Sven_Glock
Advisor

Found a missing link: When using "open shell" action from SmartConsole on a gateway an ssh connection will be established from management to the selected gateway.

Thanks for keeping the nice diagraph alive!

 

Cheers

Sven

HuseinS
Participant

Great job

0 Kudos
charlie_h
Participant

good port summary

0 Kudos
Harro
Explorer

Nice

0 Kudos
charlie_h
Participant

Nice overview!

0 Kudos
Infinigate_Sup
Participant

Nice port overview!

0 Kudos
James_A
Participant

great port collection

0 Kudos
TimC
Participant

Can I use this to study for CCSE?

0 Kudos
Reinhard_G
Participant

Yes, some questions to ports are in the exam.

0 Kudos
Support_CH
Explorer

Add port 8117 for Azure ClusterXL

LB <> ClusterXL

0 Kudos
Hammar
Participant

Please add Port 8117 for Azure ClusterXL <> Azure Load Balancer traffic.

0 Kudos
MMiller
Explorer

nice content

0 Kudos
OLE
Explorer

nice thanks

0 Kudos
HeikoAnkenbrand
Champion
Champion

Update for R81.10 EA

HeikoAnkenbrand
Champion
Champion

add port 18264