Archive of posts with tag 'Check Point'
Check Point Identity Awareness is problematic in environments that have multiple customers, overlapping private address space, and NAT. It can be done, if you understand the traffic flows, the connections needed,...
Trigger warning for Check Point haters: I’m about to say nice things about Check Point.
I got caught out by Check Point’s “Install On” column recently. Most people don’t need this setting any more, but it’s still there for legacy reasons. Time to re-evaluate.
Check Point firewall upgrades have always been painful. The loss of connection state is a big part of this. Existing connections stop working, and many applications need restart. It looks like...
I have recently started working with Check Point products again, after a 5-year break. This has given me a different perspective on how they are progressing. It has been disappointing to...
CPUG, a Check Point user forum, is near death. The owner has been forced to get rid of it, but rather doing a graceful handover, it has been shut down...
This article is Part 3 in a 12-Part Series. Part 1 - War Stories: Loops that Permanently Broke the Network Part 2 - War Stories: Switches Lying about Duplex Mismatches...