cancel
Showing results for 
Search instead for 
Did you mean: 
Start an article

The CheckMates Blog

Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Busy Week Coming Up

@Valeri_Loukine and I were NOT on the road this past week, but we've both got full dance cards coming up. In addition, there are also CheckMates events happening in Denver next week. See the complete list below! 

Community Highlights

Here are the threads to watch from the last week:

Latest Releases

CheckMates Member of the Month for April 2019: Jerry Szpinak

Been quite a while since we've done one of these.

Easy execute CLI commands from management on gateways!

This has been possible for a while, this just puts a "familiar" interface on it.

Logical Interface as Next Hop for Routes on Cluster Members that DO NOT use VIPs in Different Subnet

This is generally not a good idea.

Show Total Number of Objects in Database For R77.x and Earlier

Pretty easy with the ye olde objects_5_0.C

Jumbo Hotfix Versions Between Firewall and Management

Ideally they should be the same or higher.

Missing Cleanup Rule When a Rule is Definitely Set

A cleanup rule has a fairly specific definition.

Nat Rule over Tunnel/Community

If you want to do NAT across a VPN, make sure you haven't disabled it in the community.

Configuration Migration From 4200 Appliance to 4800 Appliance

While trying to maintain similar versions.

Fetch Changed Policy from Management to Gateway

When the existing policy doesn't let you fetch it.

Cannot Connect with SmartConsole to R77.30 or Earlier Management

It keeps coming up as people do fresh installs of R77.30 and earlier.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Upcoming events include:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
1 0 320
Admin
Admin

It has been an embarrassingly long time since we've recognized great contributors to the CheckMates community! Time to get back to doing it.

Put your virtual hands together for @Jerry , our CheckMates member of the Month for April 2019!

Read more...

Read more
3 0 95
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

CheckMates in Vienna and Salzburg

@Valeri_Loukine did events in Vienna and Salzburg. Only got one picture from both events:

IMG_1857.jpg

Community Highlights

Here are the threads to watch from the last week:

CheckMates GO Episode 1: Threat Intelligence

We've launched our new podcast, CheckMates GO! Look for it in iTunes, Google Play, or wherever finer podcasts are procured!

Problem with adding threat indicator via Web Services API

Remember to always use the publish action when using the API.

How am I Seeing Application-Specific Logs Without HTTPS Inspection?

There are pros and cons to doing this without HTTPS Inspection. This will get easier in R80.30 with SNI support.

R80.20 Validation Error: IP Protocol value must be in the range 1-255

It's an easy fix, but the error message is misleading.

R7x / R8x Installation Differences

Some observations 

Is http/https proxy needed to replace old proxy with Check Point gateway?

Depends on the environment you're in.

IPS Exception Not Working

There are a few places you set exceptions in R80.x.

How to determine top talker host IP

Useful for older gateways.

R80.10 and Java Compatibility for Firefox and Chrome

Some discussion around this new feature coming soon.

What is DLE?

I had to look this one up myself...

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Upcoming events include:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
1 2 52
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

CheckMates in Madrid, Portugal, Bunnik, and Tulsa

@Valeri_Loukine had a pretty full dance card this week, doing events in Madrid, Portugal, and Bunnik:

No alt text provided for this image

bunnik.jpg

Me? I went to Tulsa:

6aefac45-6c0c-475f-a77d-c1c564fe2626.JPG

And CheckMates was on the menu at Stoney River Steakhouse in Nashville courtesy of @Adam_Forester!

IMG_2611 copy.jpg

Community Highlights

Here are the threads to watch from the last week:

New Software Releases

Rate & Review SandBlast Mobile Protect

Aside from sharing your feedback on CheckMates, of course, please let us know how you like SandBlast Mobile Protect on the various app stores.

Ansible Demo with R80.20 Gateways and Management

An updated version of an older demo, but now with current versions.

Max Concurrent Sessions Per Connection Exceeded Quota

Certain protocol inspections have a quota associated with them.

TechBytes: Remote Access

A how-to on setting up remote access.

Keeping Policy Templates with no Policy Install Targets

You might not want to keep a layer with a policy installation target of All. If you specify "Specific" then you have to put something there. Here's how to make it empty.

Automation for Newbies: Ansible and Terraform

A new demo involving Ansible and Terraform.

Can the 3200 Appliance Be Managed Locally?

Can it? Yes. Should it? Different question.

Activate PFS in a Community via API

No official API for it, but it can be done.

Show Changes in a Single Session

It can be done via API, yes. In R80.30, a SmartConsole Extension will be available that will generate a Policy Change Report.

API - Adding Network Objects with the same IP as Others Already Created

Not by default, but it can be done.

Move IPS Profile Rules to Threat Prevention Layer

One of those tasks you'll have to perform after you upgrade your gateways to R80.x.

Access Serial Console of Another Device thru Check Point Appliance USB port

This is a neat trick!

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Upcoming events include:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
3 2 137
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

A Relatively Quiet Week

For me, at least, most of this week was focused on tuning up the new community after the migration. Some minor visual improvements were made this week in response to feedback, including adding some useful message views to the More menu.  The new platform and the number of hands involved means it takes a little longer to roll out enhancements. More is coming soon, so bear with us.

One thing we did add this past week was a dedicated space for the VSX product. Some might say it's long overdue, and you're right. We've had a lot of VSX-specific threads over the last couple years, and now we have a specific space to put them in!

Community Highlights

Here are the threads to watch from the last week:

Member Exclusive TechBytes

Some of our Sales Engineers are doing education sessions, which we are now making available in our Member Exclusive area!

R80.x Architecture and Performance Tuning Link Collection

A link to several useful articles from @HeikoAnkenbrand !

Blocking Pornography without HTTPS Inspection

There are pros and cons to doing this without HTTPS Inspection. This will get easier in R80.30 with SNI support.

Migrate to 10G Interfaces

Coming from 1GB interfaces, there are a couple things to do.

Keeping Policy Templates with no Policy Install Targets

You might not want to keep a layer with a policy installation target of All. If you specify "Specific" then you have to put something there. Here's how to make it empty.

Check Point Automation: Many Questions

With some answers, of course.

R77.20.86 for SMB Appliances

The biggest thing this enables is the WatchTower app from your mobile device. 

Check Point Rulebase: Is there any kind of implicit or explicit rule above stealth rule except manag...

There are a few, yes.

R80.20 Management and VPN Domain with EDGE N Appliances

If you're still managing EDGE N appliances with R80.20, watch out for this one!

New! R80.30 feature: Management Data Plane Separation (For Gateways with 8+ cores)

Some discussion around this new feature coming soon.

Service type "Service with Resource" via the Management API

These are legacy service types, and thus their API support is...limited.

Management R80.20 Instability

Are you having issues? We want to hear about it!

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Upcoming events include:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 72
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

What Happened This Week? A Lot.

@Valeri_Loukine did a CheckMates Live event in Ireland and I did two in Denmark with @Oren_Koren and Avishai Duer:

image.pngimage.png

 

The major thing that happened this past week was the migration to the new community platform, something that was at least a year in the making:

image.png

 

As with any migration of this nature, a few challenges were encountered. Not all the data could be migrated automatically, like the videos, which will be migrated by hand. The features aren't exactly the same as the old platform. Some things in the site design need tweaking. Nerd knobs need turning. There's definitely more work to do in order to make this new place feel like home.

We will rapidly iterate to address the various issues you've told us about and we've encountered ourselves. As we're big on transparency, we'll do our best to keep you all informed as improvements are made. Keep your feedback coming, positive or negative!

Info about the new platform we've shared so far:

Community Highlights

Despite the challenges caused by the migration, there was no shortage of conversations in the community this week:

Ultimate Collection of Check Point Links

This is a post @Valeri_Loukine put together a few months back that I just spent a lot of time with to update all the links and to ensure the videos were uploaded. Lots of great stuff here if you're just starting out with Check Point!

Multiple clish Commands from R80 Script Repository Possible?

There are ways, yes.

API with MDS Environment

When working with the API, remember to publish when you make changes, MDS or otherwise.

Is It Possible to Get an Overview of All Traffic to a Specific Country?

In R80.20, yes.

R80.20 Fresh Install to Sandbox TE100X Appliance has Kernel 2.6, Is It Normal?

For the moment, yes.

Establishing Trust Based on Signed Certificates Between Cisco ISE and Identity Collector

A how-to document.

Security Management: Videos and Hands-On Lab Booklet from CPX

If you didn't go to CPX 360 this year, here's one of the things you missed!

R80.20 Management in VMware

What basic settings you need.

Where Used between HTTPS Inspection and SmartConsole

If you use HTTPS Inspection on R80.x, watch out for this one!

Monitoring of Connection Tables

Doing it remotely via SNMP or similar.

Adding a Third 5800 to a Current 5800 Firewall Cluster

Some things to keep in mind here.

Linux for Check Point

While not strictly required, it's helpful to know some.

Upcoming Events

We are now maintaining our event calendar in Google Calendar.
You can browse our calendar of events here: CheckMates Calendar 
Upcoming events include:

If you would like a CheckMates Live event in your area, get in contact with us: checkmates@checkpoint.com 

Read more
1 0 75
Admin
Admin

On behalf of the entire CheckMates team, I'd like to welcome you onboard our next generation cyber security community! Here on the community, we only want the best for our CheckMaters. We aspire to continuously keep you in the know about the latest cyber security trends, knowledge, and best practices so you can make your part of the world a safer place.

So what's new? Here are the highlights:

  • Navigate through new menus and explore the modern look and feel
  • Filter through various Check Point products and learn about their unique features and tools
  • Customize and manage your view through Recent, Popular and Featured posts
  • Be part of the new points and badges system; reward your peers and be rewarded
  • Enjoy the enhanced private messaging tool to build connections with your peers near and far*
  • And as a mobile responsive platform, you can now login to CheckMates from any corner of the world

As always, don’t hesitate to get in touch with the CheckMates team to share your feedback with us.

* Only available to users with rank Iron or above.

Read more
26 6 2,783
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

CheckMates Takes Bratislava

Valeri Loukine‌ and I did our largest CheckMates event ever in Bratislava where we had 100 people!

 

 

 

Community Highlights

Here are the conversations worth watching in the community:

 

https://community.checkpoint.com/community/about-checkmates/blog/2019/03/07/the-new-checkmates-is-al...

It should come on the 12th if all goes to plan.

 

R80.20 Use Cases TechTalk 

We had another TechTalk on R80.20 and had a LOT of Q&A.

 

Your opinion matters! 

We're asking you how you use mobile messaging apps, which will help us provide better products and services to you.

 

AWS Management Server and separate Logging Server 

There's an issue with the default Security Groups that requires manual adjustment.

 

Cluster XL - Interface Preference 

Can you ignore a specific interface in ClusterXL (meaning not cause a failover if it dies)?

 

Migrating the Functionality of a dedicated Proxy Server to Check Point 

TL;DR: We're not a proxy server.

 

Script to check health on SMB 

A new community development Smiley Happy

 

Identity Detection - Best option? 

Discusses the various options, and there's no one size fits all solution even in a single environment Smiley Happy

 

HTTPS drop in R80.10 

 

The workaround the community came up with is now documented in SK, even.

 

 

A feature many of you have been waiting for is now available.

 

Upcoming Events

We are now maintaining our event calendar in Google Calendar.

You can browse our calendar of events here: CheckMates Calendar 

Upcoming events include:

We are currently in the planning phases for our 2019 events.

If you want one in your area, get in contact with us: checkmates@checkpoint.com 

Read more
0 0 96
Admin
Admin

We expect to launch our new CheckMates platform on the 12th of March 2019!

This requires us to set the existing community to READ ONLY so the content and users can be migrated to the new platform.

This is expected to happen no later than 01:00 CET on the 12th of March, or 5pm Pacific Daylight Time on the 11th.

The migration process is expected to take no more than 24 hours.

Assuming all goes well, you will see the new community live with the URL https://community.checkpoint.com.

When the new community launches, you will notice a few changes and see the following benefits:

  • Overhauled Site Design
    • The existing platform has a number of limitations that made it difficult to highlight or find the most relevant and recent content. Lithium is far more flexible in this regard, and you will see a new front page that should be significantly easier to navigate and find what you’re looking for. 
  • Private messaging
    • In the current platform, in order to send a private message to someone (say, an employee), the person you wish to contact has to be following you. In Lithium, this will be enabled for most established users by default.
  • Custom Usernames
    • Due to the integration with UserCenter, usernames in the current platform have to be a UUID string. Which, quite frankly, isn’t very user friendly. In Lithium, this will not be required and everyone will get to choose their own username! For existing users, a default will be assigned on migration, but you will be able to change it. And yes, PhoneBoy will be PhoneBoy (finally!).
  • More Benefits for Active Users
    • In addition to the changes in ranks and badges previously discussed, we will be able to grant specific permissions and benefits to people based on achievements in the community. The exact benefits we will provide at what levels will be determined at a later date.
  • Better Service to the Community
    • Lithium provides improvements to many things most of you won’t see. Rest assured, these improvements will allow us to provide better service to you, our user community!

Read more
3 2 232
Admin
Admin

Welcome to "This Week in CheckMates," your weekly highlight reel for all things CheckMates!
Past and future posts will be available here: The CheckMates Blog
To have these updates show up in your preferred RSS reader add the following URL: The CheckMates Blog RSS Feed
See also our social media accounts and our podcast (RSS Feed)

Community Highlights

Here are the conversations worth watching in the community:

 

New Software Releases/EAs:

 

#CPX360 Slides 2019 

We turned around the slides and videos for CPX 360 in record time! The partner-specific content is now also available to partners.

 

Check Point for Beginners - Typical Config Mistakes 

We've had a couple threads on this. See also: Top human fails to avoid 

 

SmartConsole potential CPM issues 

In this case, the issue was resolved by generating a new SIC certificate (not to be confused with resetting the SIC ICA).

 

Which method would you recommend to upgrade from R80 to R80.20? 

migrate export/import is probably the better approach.

 

Are any of the MDS limitations in MDS R80.20 are addressed in R80.30EA? 

TL;DR: no, but we are working on it. 

 

R80.30 cheat sheet - ClusterXL 

Another good one from Heiko Ankenbrand‌!

 

Use Sandblast API on Security Gateway 

You can't do it on a regular Security Gateway. 

 

 

If you're struggling with this, this thread should help.

 

Upcoming Events

Due to the upcoming change to Lithium, we are maintaining our event calendar in Google Calendar.

You can browse our calendar of events here: CheckMates Calendar 

Upcoming events include:

We are currently in the planning phases for our 2019 events.

If you want one in your area, get in contact with us: checkmates@checkpoint.com 

Read more
2 0 150