Community Settings - Check Point CheckMates

Advanced Search Options

Search Modifiers:

You can apply modifiers to the terms you enter in the search field.
Use quotes to search for an "exact phrase".
Use the plus sign to search for +one +or +more +words.
Use the minus sign to -exclude -certain -words from your search.

View results by

Results per page

Topics with no replies

Limits search results to topics that have no replies.

1 - 10 of 35,568 discussions

Sorted by:

Best Match

Date
Views
Kudos
Replies
Best Match

Search Options

Subscribe to RSS Feed for this Search

Subscribe to RSS Feed for this Search
Permalink

1
IMPORTANT - Action Required For VPN/Remote Access ...

by _Val_ in General Topics

Hi CheckMates! This message is relevant only for customers using VPN Site-to-Site and Remote Access VPN Security Gateways using certificates issued by DigiCert External CA. No action is required ...

Show results in replies (9)

UPDATE - DigiCert Certificate Expiration Mitigated Hi CheckMates &n...
ok, thanks
Once everything is in place, we will create a post and merge all related discussions
Hi We were just alerted to this which requires action in the next week. Looking at the SK it says...
The mentioned SK is still a work in progress. All required hotfixes and also a script to check whet...
Thanks for that Val.
I contacted Digicert support, and this affects all Digicert brands, which include GeoTrust and Rapi...
Thanks for that @Alex_Lewis
While there may be some additional updates to the SK, including the script that tests whether a hot...

2 weeks ago

2 Kudos

50 Replies

5011 Views

1
Firewall - Automating Firewall Rule Cleanup Based ...

by HeikoAnkenbrand in API / CLI Discussion

The following one-liner identifies all rules with a hit count of 0 entries. Depending on your environment, you may need to adjust the policy name to ensure the command runs against the correct config...

Show results in replies (9)

@Bob_Zimmerman, @the_rock, @PhoneBoy I quickly created the SmartConsole extensio...
Hi, Thank you for your feedback. We found out that the SmartConsole release didn't include the h...
Important notes: the one-liner above to find rules with no hits does not consider rules inside a se...
@Bob_Zimmerman Thanks for the good tip with the date of the old rules! Technically, your...
That is SUPERB. Just ran it in my lab and it showed exact rules with 0 hits...amazing. Andy [...
3000+ rules? Why so many? : - ) Andy
Most of my policies are 3000+ rules with ~30% unused rules scattered throughout (stuff which got de...
Back in good old times (before R8x), there was SmartDashboard feature build in by default where you...
It still bugs me why that feature was removed...it was so useful.

3 weeks ago

4 Kudos

39 Replies

2724 Views

1
Windows 11 24H2 Remote Access VPN

by preverite in Remote Access VPN

Since the general availability of Windows 11 24H2, we're noticing around 50% of Windows machines updated to 24H2 are failing to connect with the Remote Access VPN. I noticed that with the release of...

Show results in replies (8)

Maybe try newest E89 version. Andy
This was fixed. The fix is included in: Enterprise Endpoint Security E88.62 (E88.61 Hotfix) ...
If you are still having issue with Windows 11 24h2, Please see SK182749, you could wither modify th...
Assuming this is the true solution to the problem, I would expect us to set route_conflict_resoluti...
Please, can you try to set the "route_conflict_resolution_method" parameter to "modify" in trac_cli...
Hi, I guess no update? It's really becoming a pain, and workarounds (different laptops running diff...
Not heard an updated ETA yet.
i have also the same case , and the only solved solution if modify the in trac_client_1.ttm fi...

‎2024-10-09 12:46 AM

2 Kudos

61 Replies

51471 Views

1
Quantum Spark 1600s site-to-site VPN Tunnel speed/...

by rdiaz in SMB Gateways (Spark)

Hello Checkmates, this is my first time creating a post here. 🙂 Also, I'm fairly new to CheckPoint firewalls. I'm seeing what I consider slow VPN tunnel speed/throughput between sites.&...

Show results in replies (9)

First off, WELCOME :). Secondly, totally valid points. I would refer you to below sk, as it would c...
Which encryption algorithms are used? Is MSS clamping configured? How is the test being run, ar...
As an addition: - enabled TP blades maketraffic slower - try to open more than one connection a...
Thanks, I'm not familiar on how to do this on checkpoint. Can you provide guidance on how to ...
Technically, it might interrupt the tunnel for few minutes, since it needs policy push and probably...
Hi Chris, Thank you for the quick response. 1. see attached screenshot of the VPN community...
Here is one IMPORTANT thing to remember...so, faster algorithms will NOT be as secure as slower one...
Thank you! Yes, I'm willing to take a bit more risk since we only deal with file/print and no...
It would be LESS secure, but in your case, I would give it a go. Andy

‎2025-08-04 11:20 AM

1 Kudos

41 Replies

2523 Views

1
Issues with Anti-Bot Updates

by RemoteUser in General Topics

Hey mates, Is anyone else experiencing problems with the anti-bot updates? I’ve got a few clusters all showing red because of this issue...

Show results in replies (9)

Hi Everyone, The issue has now been resolved. Yesterday, our software update service experienced ...
Can you share some screenshots? Did you check if this is not a connectivity issue, as per sk83...
Error: Update failed. Contract entitlement check failed. Could not download https://updates.checkpo...
Check Point Status is green. What is our ccc tool showing for your Anti-Bot blade? Have you check...
It is happening at multiple locations from multiple (50+) appliances (no changes our end). Might be...
I’ve got several checkpoints around the world (Asia, Europe, and so on) and all of them are running...
We have the same issue since yesterday evening (multiple locations). Today morning it was working a...
We are experiencing the same (in The Netherlands). I've had it with AV/AB and IPS. Usually it is re...
Okay, I'm not alone, that makes me feel better. 😆

3 weeks ago

21 Replies

1791 Views

1
Unable to access Gaia Portal

by Saranya_0305 in Security Gateways

Dear Team, I have multiple Firewall cluster setups managed centrally by a Management Server which was located in Delhi. Management Server OS :R81.20 Firewalls OS :R81.10 Currently I am situated i...

Show results in replies (9)

Dear Team, Actually, recently we have upgraded the Management server from R81.10 to R81.20, but fi...
Maybe try from clish: set web-daemon enable off save config set web-daemon enable on save c...
To confirm did you change the port prior in the GAiA config or rather can you check that it is corr...
Hi, No rules has blocked the connection. Based on the browser page I have found some sk118801. B...
Hi, Currently, I restarted the services, after that 4434 is not reflecting. But in Smart console P...
No I didn't change prior. But later I tried with that one but no use.
Hi, I have found some observations: The dst IP in drop log is the Platform portal IP: 172.18.0.27...
Run fw up_execute command to see if rule allows it. Andy
Hi, Yeah, Firewall custom policy was installed in the firewall. Regards, Saranya

‎2025-05-26 06:07 AM

29 Replies

6263 Views

1
Check Point Quantum Management MCP Server

by PhoneBoy in AI Copilot

What is MCP? Model Context Protocol (MCP) servers expose a structured, machine-readable API for your enterprise data—designed for AI-powered automation, copilots, and decision engines. By deliver...

Show results in replies (9)

Managed to resolve my issue. Slightly embarrassing to admit but it was because I never enable...
This is really cutting edge technology, since the entire architecture was released to open-source c...
Is this something that will replace Smart Optimise service?
Very interesting.
Is it planned to access Logs also via that service?
Yes and no @genisis__ SmartOptimize is a service offered through Infinity Global Servi...
The Management APIs already supports querying for specific logs. When using AI-Copilot with o...
We're actually building a dedicated MCP for that. In this MCP, it's not possible to retrieve logs. ...
hi, maybe iam wrong, but please check https://www.heise.de/en/news/Attack-via-GitHub-MCP-ser...

‎2025-05-22 01:33 PM

7 Kudos

16 Replies

6386 Views

1
Issues connecting to Check Point Mobile for Window...

by Fastforza in Remote Access VPN

Greetings everyone, This is my first time trying to configure and use Check Point Mobile for Windows, more so with SAML MFA. We have a Hybrid AD environment, on-prem AD synced with Azure AD. I fol...

Show results in replies (8)

Greetings @PhoneBoy , I just wanted to share the solution i found which worked for me af...
Interesting this is required.
Greetings @PhoneBoy , Sorry for the late reply. I followed the instructions via the You...
Did you try the steps in this SK? https://support.checkpoint.com/results/sk/sk170515
The actual documentation for the feature is here: https://sc1.checkpoint.com/documents/R81.20/WebAd...
Hi @PhoneBoy , Apologies for the late reply, as I've been busy with troubleshooting this...
The VPN client itself should provide some logs. Any clues there? Also, since it was not sta...
I've found where the logs are, but unfortunately, i couldn't find some useful information for me at...

‎2025-06-10 09:57 AM

15 Replies

3660 Views

1
Important security update - stay protected against...

by _Val_ in General Topics

Update June 5, 2024 We now have fixes for CVE-2024-24919 for releases dating back to R77.30 with latest JHF. Update June 4, 2024 The procedure to identify vulnerable Security Gateways in sk1823...

Show results in replies (9)

In the context of CVE-2024-24919 documented in sk182336, I created this short video, showing how yo...
Hi @flachance If you deployed the HF marked by the arrow, you should be good. ...
To help you following best practices moving away from local users with passwords, Peter Elmer creat...
FYI a new tool has been added to the SK https://support.checkpoint.com/results/sk/sk182336&nbs...
Hi, In the context of the mandatory sk182336 - Preventative Hotfix for CVE-2024-24919, ...
https://www.youtube.com/playlist?list=PLMAKXIJBvfAiD8JbRZJGb2Bnrr7qkI5Fb A Playlist that will popu...
This is an expected result. Quoting from the SK: The purpose of the script is to check if yo...
Here's a video showing how to run this script on your management to determine if you need to apply ...
We apologize for the confusion. For each of the firmware versions that are mentioned in the sk182...

‎2024-05-27 06:06 AM

9 Kudos

334 Replies

125193 Views

1
How do you keep track of the latest FW/OS updates?

by TSOL in General Topics

Hello Team We are currently operating multiple Check Point Quantum products, including the Spark series. I would like to establish a system to quickly grasp the latest firmware version information...

Show results in replies (9)

Hi, In smart console in the overview tabs where you see all connected gateways you can see if the...
For spark you can subscribe to sk179615.
One more option nobody has mentioned yet: you can subscribe to https://community.checkpoi...
Thank you very much for your detailed explanation. Regarding the first step, you mentioned regula...
Just do what @Chris_Atkinson advised, makes most sense. Andy
Since there is always a risk of forgetting to check manually, Put the task into your calender as ...
- first step: look for updates in regular intervals on the specific web pages - second step: revi...
But for Spark only !
For Quantum we have something similar but it's purpose is not to track JHF levels. sk95746: Check...

‎2025-07-13 09:58 PM

1 Kudos

15 Replies

2318 Views

Previous
- 1
- 2
- 3
- …
- 3557
Next

Check Point CheckMates

1IMPORTANT - Action Required For VPN/Remote Access ...

1Firewall - Automating Firewall Rule Cleanup Based ...

1Windows 11 24H2 Remote Access VPN

1Quantum Spark 1600s site-to-site VPN Tunnel speed/...

1Issues with Anti-Bot Updates

1Unable to access Gaia Portal

1Check Point Quantum Management MCP Server

1Issues connecting to Check Point Mobile for Window...

1Important security update - stay protected against...

1How do you keep track of the latest FW/OS updates?

1
IMPORTANT - Action Required For VPN/Remote Access ...

1
Firewall - Automating Firewall Rule Cleanup Based ...

1
Windows 11 24H2 Remote Access VPN

1
Quantum Spark 1600s site-to-site VPN Tunnel speed/...

1
Issues with Anti-Bot Updates

1
Unable to access Gaia Portal

1
Check Point Quantum Management MCP Server

1
Issues connecting to Check Point Mobile for Window...

1
Important security update - stay protected against...

1
How do you keep track of the latest FW/OS updates?