see below Tal. I have never had here any "targets" selected though I don't think this applies to my case.

Now the GW has IPS blade enabled, and after the complete reboot of the GW all seems just fine:

I have really no clue why I couldn't "deselect" blade on GW object and save it 1h ago.

Jerry,

that's magic. Maybee some earth rays or other things in the air are affecting the SMS..

I love our IT job, normally it consist of 0 and 1 but sometimes something between 8) 

Wolfgang

I am also having problems disabling IPS. Exactly the same situation as the original poster.

I remember one time I had this problem ages ago, I changed something in Guidbedit to make it work, but it was more than 10 years ago, so definitely before R80 version. Can you send a screenshot?

Andy

I found some posts where it says to remove scheduled ips updates (if enabled) and also remove from here, IF its enabled

Andy

I don't have anything under Install On other than 'Policy Targets'. Nothing specific. I unchecked IPS updates and now the entire dialog for IPS updates is gone (edit: It seems it changed the focus from Threat Prevention to Updates which is why it disappeared. I had to click back on Threat Prevention>Updates to get back to where I was.)

I have a Geo Policy defined but there is no way to tell it NOT to install on this device I am trying to remove IPS from without impacting the device I don't want to. I can 'view' the items under Gateways but you cannot manipulate them. So you cannot really say, hey don't push Geo Policy to X device, at least I don't know how you would do that. I believe Geo Policy is a part of IPS so that could be what is stopping it from being deactivated.

Yes, the legacy GeoPolicy requires IPS.
See: https://support.checkpoint.com/results/sk/sk16921

From R80.20 and above, you can use Updatable Objects for various locations in your regular Access Policy.
This does not require IPS.

I think what @Timothy_Hall gave makes total sense. Follow those instructions and let us know what gives.

Andy

Under Objects there was IPS Scheduled Update. I had tried fussing with that earlier based on what Andy suggested,

so I went back and revisited it. I toggled it to 'install on specific' and 'back to Install' on all clicked okay.

Went back and tried to disable IPS and this time it worked. Yay team.

Good job @Tony_Graham 💪💪

So I have an unrelated, related question. If you push a policy that contains IPS, for instance you shotgun out a policy to all gateways, does CP know that since the blade isn't running on that device to just drop the rules or does it get the whole policy but just ignores the bits it cannot enforce. Is there a benefit to pushing different policies since the ruleset would be less complicated?

I assumed that but...you know about assumptions.

Yea, I do know...heard that from a woman long time ago...a**...U...me 🤣🤣

Anyway, will go play some chess now, maybe beat FAKE Magnus Carlsen...aka Chat GPT chess player, where it teleports the queen from nowhere into 3rd dimension and bishop reappears from ancient times to save the game lol

I needed to disable IPS according to sk163752

I did not have a target in the Install On column of the Threat Prevention policy.

For me, the issue was that the gateway was selected under automatic install after IPS update.

I had to remove the gateway, install database and only then i could uncheck the IPS blade.