cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

The CheckMates Blog

Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

CheckMates Around The World

We had events in Nashville, Tallinn, and Sydney, three very different parts of the world! The Estonian's loved us so much, they branded their servers with CheckMates stickers!

CheckMates Nashville.jpegCheckMates Nashville Oren Koren.jpegVal in Tallinn.jpegCheckMates Servers.jpegCheckMates Sydney.jpeg

Community Highlights

Here are the threads to watch from the last week:

New How-To Videos

What Happens When A License Expires?

We had a couple threads asking about this:

GAIA API Version 1.2 is Now Available

Adds some new features.

TCP SACK PANIC Kernel Vulnerabilities: is Check Point Affected?

It depends, check the discussion for details.

IPS Signature Does Not Match with Attack Type

Some attacks use older methods to gain entry, and we have signatures to block those. 

Ransomware Simulator Tool Results Showing Check Point Endpoint Unable to Detect Known Ransomware

Fake news, as ransomware simulators don't necessarily act the same way as real ransomware does.

Botnet Activity Detection

How it works.

Seeing Odd Behavior in R80.20

If a gateway can't resolve a particular DNS name, it can definitely cause "odd behavior."

Command to Show History of ClusterXL Member Status

Querying the cpview database directly.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
1 0 74
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Celebrating and Improving the Community

As you've undoubtedly seen, we've kicked off our activities where we recognize and celebrate The Best of the Best on CheckMates. Take a moment and vote for the best of the best on CheckMates in the last year, make your own how-to video, suggest a replacement for FlatMoti, propose your idea of the year, and participate in the CheckMates (social media) Challenge!

Meanwhile, a few small visual improvements were made on the site this week. Nothing too drastic, but hopefully it will make the site a little easier to use. Your feedback is welcome, of course!

Community Highlights

Here are the threads to watch from the last week:

R80.30 Technical Update TechTalk

Get the skinny on what we launched over the last couple of weeks.

HTTPS Inspection and Website Categorization Introduced in R80.30

Meanwhile @Peter_Elmer did a short presentation on one of the R80.30 enhancements.

R80.30 Packet Processing: Achieving Infinity

Not necessary specific to R80.30, but another video from @Peter_Elmer about how packets are processed.

New R80.20 Management Image Available as an Ongoing Release

Resolves a few installation issues.

migrate_server export running for over 3 hours

If the process appears to be taking a while, check your disk space.

VSX Discussions

We had a couple this week:

Finalizing Stuck at 99% During Policy Installation

Good news is that the policy's already being enforced at this point.

Export Rules

Not necessarily for import.

How to Remove a Domain from an MDS via API

Not necessarily for import.

Get Early Access to our new Threat Prevention APIs

Addresses a few requests we've had on CheckMates 😁

 

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 312
Admin
Admin

It's that time of the year where we say cheers to you, the CheckMates Community!
While @Valeri_Loukine and I were in Tel Aviv, we recorded a fun little video with @Moti to kick things off - watch it below!

Similar to our Birthday Celebration last year, we're going to have you nominate and vote on "the best of the best" on CheckMates for the year, but we have a few additional activities this year where you can win prizes, including a trip to Tel Aviv to meet with R&D and enjoy a taste of what Israel has to offer!

The Best of CheckMates

We invite you to vote for your favorite highlights on CheckMates over the past year! Among the categories we have “CheckMates Post of the year”, “Member of the Year”, "Rising star of the Year” and more!

Vote for your favorites and enter a raffle to WIN an Apple Watch!

We also invite you to share your Idea of the Year

How-To Videos

Know how to do something with a Check Point product or service?
Record a short video showing how to do it and submit to our How-To Video contest!
One lucky winner will get a trip to Tel Aviv. Other prizes include a new iPhone and an Apple Watch.

New Mascot

@Moti insisted we come up with a replacement for #FlatMoti, who makes regular appearances at CheckMates events.
So, let's ask the community: what do you think would make a good mascot?
Submit your idea to our New Mascot Contest!

We Are CheckMates!

We're looking to spread CheckMates across the globe and we need your help!
Follow us on LinkedIn, download the CheckMates Challenge logo to your device or even print it out. Take it to a unique place, snap a snazzy photo of it or take a selfie with it—no Photoshop jobs! Share your photo on LinkedIn, tagging Check Point CheckMates and using the hashtag #CheckMatesChallenge before 1st August 2019. An Apple Watch Series 4 will be rewarded to the most creative picture, in the coolest place! May the best pic win!

 

Read more
8 5 17.4K
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Community Highlights

Here are the threads to watch from the last week:

R80.10 Jumbo Hotfix 214

New ongoing jumbo hotfix is available for R80.10.

R80.20.M2 Jumbo Hotfix

If you're considering this release, consider R80.30 instead.

Change admin Password to Enter SmartConsole R80.10

Couple ways to do it.

Is Both HTTPS Inspection and Categorize HTTPS Websites Supported?

From R80.20, yes.

Different DNS Server per VS

Not currently supported.

SmartLog (and SmartView) Query Syntaxes

How to search for different networks in the logs.

Proxy ARP on Gaia

When working with NAT.

Creating (and Updating) Network Objects via API

What's the process for figuring out an object exists and updating it?

Protocol Signatures

What are they?

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 683
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Shenanigans in Tel Aviv

@Valeri_Loukine and I were in Tel Aviv recording a video, among other things. We'll share the video soon, but here's a still from the video:

Capture.PNG

Community Highlights

Here are the threads to watch from the last week:

Upgrading Check Point Standalone Appliance to R80.x

You can do it, but you'll want to add some RAM.

Which R80.20 IPS Default Profile is equal to IPS R77.30 "Recommended" profile?

The IPS Profiles in R80.x are somewhat different than the R77.x ones.

USB not Detected in MAC with Media Encryption Blade Enabled

There's a couple different reasons this might occur.

CP4B Part 11: Threat Prevention

The next installment of our Check Point for Beginners series.

EOL versus EOS Question

What to replace those older appliances with.

Disclaimer Banner Pop-Up on VPN Connection

Clever use of Windows scripting.

R80.20 Fresh Install Fails on VMware ESXi

If you're installing in VMware, there's a couple things to keep in mind.

R80.10 Concurrent Administrators

Definitely one of the best reasons to upgrade to R80.x.

Check Point Created Objects Not Available for Reuse

Get Topology in R80.x creates objects that you might not be able to use. Here's how to fix that.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 952
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Community Highlights

Here are the threads to watch from the last week:

Firewall Rules Optimization for CPU and Network Throughput

Does grouping rules together improve performance? Not necessarily.

IPS Version 2 Signatures

What are they?

Improved User Experience for Zero Day Attack Prevention in R80.30

See how it works.

Blocking List of Domain Names with R80.10

What's the best way to do it?

Ansible-Based Automation for Check Point Management Server and Gateways

Leverages the R80.x Management APIs and the Gaia APIs.

Best Practices for Inline Layers

How to best leverage/use them.

IPS Protection for CVE-2019-0708

Patch your systems and apply this IPS signature.

Postman Collection for R80.30

For testing the R80.30 APIs.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 728
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

CheckMates on a Yacht!

@Moti@Amit_Sharon, and I were in Miami for CPX, which was held on the Seafair Mega Yacht! Amit caught me in action at the booth:

IMG_4160.jpg

Moti gave his keynote:

IMG_4181.jpg

Community Highlights

Here are the threads to watch from the last week:

CheckMates Member of the Month for May 2019: Maarten Sjouw

Congratulations and thank you for your ongoing contributions to the community, @Maarten_Sjouw !

CheckMates GO Episode 4: Threat Intelligence

Are you enjoying our new podcast? Let us know!

Moving Gateway to New Management and Importing Old Ruleset

Topic came up again in a different thread, so re-highlighting this one.

R80.10 User Mode Firewall and Performance Impact

Our VP of Products Dr. Dorit Dor weighed in on this thread. Seems in R80.30 with the 3.10 kernel, this is the default for all platforms and it will bring some performance benefits.

Duplicate Services: Which One Will Be Used?

Depends on the rule that matched the connection.

SmartMove

Our tool to migrate to Check Point from other vendors has been updated to support Palo Alto Networks!

Legacy DHCP Relay Services When Upgrading to R80.x

You can leave the old ones there, but there are some benefits to moving to the new services.

Regarding CVE-2019-0708

We've had requests regarding an IPS signature for this particular CVE.

Installing Expansion Interfaces to a Cluster Member

An order of operations question.

How Packet Flow Works Inside the IPS Blade

For those who are curious...

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 1,163
Admin
Admin

Maarten.jpgIt's that time of the month where we recognize our best members. Put your virtual hands together for @Maarten_Sjouw, our CheckMates member of the Month for May 2019!

Read more...

Read more
11 6 1,286
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Community Highlights

Here are the threads to watch from the last week:

White Paper Publishing Project

Our SE community has developed a lot of white papers we are starting to publish on CheckMates. It's ~joe 2.0!

Check Point R80.30

Not surprisingly, it's been one of the most searched-for things on CheckMates...and it's finally here!

Moving Gateway to New Management and Importing Old Ruleset

It's manual work, but it can be done.

A Glimpse into Artificial Intelligence and Machine Learning

Latest in our CheckMates Nuggets series.

Anti-Spoofing on Interfaces Which Have Not Been Updated

What happens when you add an interface before you define the policy?

Any Tool to Build a Rulebase from an "Any Any Accept" Rule?

Not really, but the using the logs the right way can certainly help.

Customized fwm logexport

Did not realize this was possible. Which, considering how long fwm logexport has been around, is kinda amazing!

Using CSV to Bulk Add Objects -- Doubled Items

When you're adding objects that already exist by name or by IP...

Managing a Gateway over VPN

This well-covered topic has come up again.

Bypass HTTPS Inspection for a Custom URL

Likewise, this old thread has come up again.

Sharing a Session with GUI and Gaia Expert

You can "take over" a session created through mgmt_cli from SmartConsole...and vice versa.

Temporarily Disable Auto-Generated NAT Rules

Not really an easy way to do this, but there are some suggested workarounds.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find the CheckMates team over the next few weeks:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
1 0 682
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Community Highlights

Here are the threads to watch from the last week:

New Releases

CheckMates GO Episode 3: Threat Intelligence

Wonder when I'm going to make my way onto one of these podcasts 😁

Do I Need Proxy Rule About the Stealth Rule?

Yup.

Manually Define Local VPN Domain Per Remote Peer

We'll make this something in SmartConsole soon, hopefully.

Is It Possible to Change Settings for How Application Control Works?

It's not an issue with Application Control per-se, but an issue with parsing certain HTTP traffic when Application Control is invoked.

Cannot Remove IPS Blade from Gateway Object

Make sure your Threat Prevention policy isn't too specific.

2200 Appliances and R80.20 Support

Assuming you have 4GB of RAM, it works.

Disk Space Management Seems Not to Be Working

Make sure to account for the 5% reserve that is typical in Unix filesystems.

Script to Delete A Specific Tag from All Objects

A case of "ask and you shall receive."

New Unified API Reference

Currently contains only Management and Gaia APIs, but will be updated to include the others soon.

Rulebase Audit Based on Date

Shows rules that are older than 365 days.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Here's where you can find @Valeri_Loukine and I over the next few weeks

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 1,008