This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help

The CheckMates Blog

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
The CheckMates Blog

Here's where we let you know what's going on with the CheckMates Community.

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!

This Week in CheckMates: Week of 24 July 2017

PhoneBoy
Admin
Admin
‎2017-07-28 01:09 AM

Here's this weeks installment of "This Week in CheckMates."

Past and future posts will be available here: About CheckMates 

If you can't wait for the weekly update, follow our Twitter account where threads are highlighted regularly: @CPCheckMates!

Community Highlights

Here are some highlights from the week's activity on CheckMates:

My Top 3 Check Point CLI commands

While this was featured last week, it's worth mentioning again as this thread has quickly become one of the most active posts we've had on CheckMates! New commands being added all the time. Have you contributed yours yet?

Check Point Gateway Updates and SHA-256

This issue came up in two different threads:

Check Point switched to using SHA-256 certificates on the systems which gateways fetch various updates from (e.g. for App Control and Anti-Virus signatures). This impacts all Check Point products. To ensure your gateway can receive updates, check your code version jumbo hotfix level against the following SK: Check Point update and online services migration to SHA-256 based certificates 

How-to use Postman with R80 Security Management API  

Postman is a free Google Chrome extension that can be used for testing and experimenting with web-services, such as the Security Management API that was released with R80. A new Postman Collection was added to this thread that will allow you to use Postman with the R80.10 API.

Continuing policy work-in-progress with R80.10 Session Take Over

Here's a brief video showing a cool feature in R80.10: the ability to take over a session another administrator has started but didn't commit! We plan to produce additional videos in the near future.

This Week in Threats: Week of July 24th 2017

Our Threat Intelligence team has been producing a weekly report that discusses the latest threats for some time now. We are now making these reports available to CheckMates members!

App Control issue with R80 MGMT, 1400 Appliance

If you're managing any R77.x gateway (including SMB appliances) with R80.10 and you want to use Application Control/URL Filtering, make sure you are creating and using a separate policy layer for this feature. This is because R77.x gateways do not support unified policy the way R80.10+ gateways do. 

Did You Know...

The forums have RSS feeds?

You can either subscribe to individual spaces or the whole site!

If you go to the relevant space and navigate to the Content section:

You will find an RSS link at the bottom left:

This link can be imported into your RSS reader of choice. 

You'll also notice in the above screenshot that you can get a list of content for the entire site using the link https://community.checkpoint.com/content

Two tips for the price of one Smiley Happy

Feedback

You are of course welcome to respond to this post if you have questions! If you want to send something privately, you can send an email to checkmates@checkpoint.com or send a Tweet to @CPCheckMates and we'll respond promptly.

Read more
0 0 622

Share your Check Point Memorabilia for a chance to have it autographed by Gil Shwed!

PhoneBoy
Admin
Admin
‎2017-07-26 10:38 PM

Last week, I posted a picture of an old Check Point floppy disk to LinkedIn and twitter as a "Throwback Thursday" post.

The photo was courtesy of a long-time Check Point employee:

 

Check Point v1.05 Floppy

 

I wish I could say I owned this floppy, but it was a little before my time (2.1 was the first version I used).

A lot of people both publicly and privately responded with some of their Check Point memorabilia, i.e. anything that had the Check Point logo or branding on it!

Sadly, I do not have a ton of older Check Point memorabilia, but I do have a few things.

One of them I created, and I know a few of you have it.

I doubt you've seen this version, though:

 

Essential Check Point FireWall-1 Book Cover (Chinese Edition)

 

There's also the infamous "Power of Two" Hot Wheels car.

Thanks to https://community.checkpoint.com/people/thalld401179d-0d5b-369d-a0f2-387c3ef54533, I have one still in it's packaging:

 

 

 

Finally, I have one piece of audio memorabilia attached to the post.

It was commissioned for Check Point's 10th anniversary back in 2003.

 

If you have any Check Point-branded memorabilia, snap a picture and post it in the comments below for a chance to have that memorabilia autographed by the Founder and CEO of Check Point, Gil Shwed!

This includes Check Point employees!

Read more
6 21 9,647

Do You Know Where To Contribute or Ask Questions in CheckMates?

PhoneBoy
Admin
Admin
‎2017-07-25 09:51 AM

When you want to contribute something or ask a question in CheckMates, do you know in which space to post?

If you have specific feedback one way or the other, please post detailed feedback in the comments.

Yes5
Sometimes0
No0

Read more
0 2 473

New ATC and Partner Groups

PhoneBoy
Admin
Admin
‎2017-07-24 04:48 PM

Two new groups have been created:

These are private groups you must request access to.

Click the appropriate link and then click the big "Ask to join this group" button.

A moderator will review your request.

Read more
0 0 327

This Week in CheckMates: Week of 17th July 2017

PhoneBoy
Admin
Admin
‎2017-07-21 01:05 AM

Here's this weeks installment of "This Week in CheckMates."

Past and future posts will be available here: About CheckMates 

Also, if you're not sure what CheckMates is, check out this short video!

 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

SNORT Rules and CheckPoint R77.30 IPS

The question was about having a particular signature trigger a block of the specific IP address for all traffic. This can be done, but it does require building a script that parses the log entry and executes fw samp to block the connection.

Installing take 10 of R80.10 blew away the gateway part of a single gateway setup. Is that a known p...

It appears to be a known issue that can happen under a rare combination of circumstances. Read the thread for a workaround to the issue. A fix for the issue will be coming in a future R80.10 jumbo hotfix.

Issue when migrating R77.30 to R80.10 Management Server

Look for words like "error","fail", and "unable" in the following file: $FWDIR/log/cpm_for_cpdb-YYYY-MM-DD-HH-MM-SS.ELG. You may need to engage with the TAC depending on what this turns up for you.

My Top 3 Check Point CLI commands

Chances are, if you've been using Check Point products for a while, you've had to do something on a command line. We've shared some of our favorite (and even obscure) commands with you here. This has quickly become one of our most active threads, chime in with your favorites!

CLI API Example for exporting, importing, and deleting different objects using CSV files (v 00.22.00...

This is a great set of scripts for migrating objects in and out of a Check Point R80+ management station using CSV files created by one of our SEs, Eric Beasley‌. Have you used them yet?

Did You Know...

You can control how often you receive email from the community?

We created a short video to explain how, which can also be viewed side-by-side with the captions here: Set Email Notification Prefs in CheckMates | fleeq.io 

Video Link : 5493

Feedback

You are of course welcome to respond to this post if you have questions! If you want to send something privately, you can send an email to checkmates@checkpoint.com and we'll respond promptly.

Read more
2 0 722

This Week in CheckMates: Week of 10th July 2017

PhoneBoy
Admin
Admin
‎2017-07-13 10:12 PM

This is the first of a regular series of posts highlighting activity in the CheckMates community during the past week.

I will also provide a tip that will help you make the best use of CheckMates!

Future posts (planned to be posted on Fridays) will be available here: https://community.checkpoint.com/blog/about-checkmates 

Community Highlights

Here are some highlights from the week's activity on CheckMates:

NotPetya: Under the Microscope Presentation and Recording 

This week, we did our first in a series of "CheckMates Live" webcast. Shortly after the webcast, we made the recording and slides available. However, unlike most content on CheckMates, this content requires you to be signed in to view it.

 

This is a new poll I created to see what versions of Check Point Management people are using and why. Everyone has their reasons for upgrading (or not). Vote and contribute to the discussion!

CPLogToSyslog Utility Now GA 

This tool, which had been available privately for a number of months, was recently released publicly. There was a question about whether or not BSD logging format was supported. Not by CPLogToSyslog, but via a process described by the following SecureKnowledge article: How to Configure R77.30 Security Gateway on Gaia OS to send Firewall logs to an external Syslog serv...

Centrally Managed Remote Access VPN with Embedded Gaia

There is no specific documentation on this topic because Embedded Gaia platforms are no different than regular Security Gateways when it comes to setting up remote access VPN.

Multiple ISP Redundancy will it support in R80  

This was an older thread that was brought to the surface recently when a customer wondered how to use the ISP Redundancy feature with more than 2 ISPs. The answer in this particular case will likely involve dynamic routing.

Did You Know...

You can use the Jive Daily app to access CheckMates from your mobile device?

While the CheckMates Community site is fairly mobile-friendly, some prefer a native mobile app.

You can download the Jive Daily app for iOS or Android as follows:

When prompted, enter community.checkpoint.com as the community and sign in with your User Center credentials.

Feedback

You are of course welcome to respond to this post if you have questions! If you want to send something privately, you can send an email to checkmates@checkpoint.com and we'll respond promptly.

Read more
2 0 522