Configuring Services

Configure the applicable services on your Spark Firewall Gateways.

These settings are available when you edit a Plan object (see Plans) and a Gateway object (see Gateways).

You can configure these settings in several ways:

  • Configure the settings in Quantum Spark Management in a Plan object.

    Settings in a Plan object apply to all Spark Firewall Gateways that use this Plan.

  • Configure the settings in Quantum Spark Management in a Gateway object (to override the settings in a Plan object).

  • Disable the Quantum Spark Management settings in a Gateway object and configure the local settings on the Spark Firewall Gateway.

Managed Services

Configure the applicable managed services on your Spark Firewall Gateways.

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Managed Services.

  4. Select or clear the applicable Managed Services:

    Service

    Description

    Store gateway logs

    Sends logs from the Spark Firewall Gateways to Quantum Spark Management.

    Send periodic reports

    Sends Check Point Executive reports that contain security and network analysis details from Quantum Spark Management to the Spark Firewall Gateway owners.

    See Reports.

    Firmware upgrades

    Controls the firmware upgrades on the Spark Firewall Gateways.

    See Firmware.

    Backup

    Configures where to store the backup of the Spark Firewall Gateway settings and the backup schedule.

    See Backup.

    Dynamic DNS

    Controls the Dynamic DNS settings.

    See Dynamic DNS.

    Send cloud notifications / Enable events

    Sends notifications to the recipients configured on the Services > Notifications page.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable assets data

    Enables Assets Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable internet monitoring

    Enables Internet Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable VPN monitoring

    Enables VPN Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable system monitoring

    Enables System Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable users monitoring

    Enables Users Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

  5. Click Save in the bottom right corner.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Managed Services.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. Select or clear the applicable Managed Services:

    Service

    Description

    Store gateway logs

    Sends logs from the Spark Firewall Gateways to Quantum Spark Management.

    Send periodic reports

    Sends Check Point Executive reports that contain security and network analysis details from Quantum Spark Management to the Spark Firewall Gateway owners.

    See Reports.

    Firmware upgrades

    Controls the firmware upgrades on the Spark Firewall Gateways.

    See Firmware.

    Backup

    Configures where to store the backup of the Spark Firewall Gateway settings and the backup schedule.

    See Backup.

    Dynamic DNS

    Controls the Dynamic DNS settings.

    See Dynamic DNS.

    Send cloud notifications / Enable events

    Sends notifications to the recipients configured on the Services > Notifications page.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable assets data

    Enables Assets Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable internet monitoring

    Enables Internet Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable VPN monitoring

    Enables VPN Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable system monitoring

    Enables System Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

    Enable users monitoring

    Enables Users Monitoring in Logs & Events.

    Note - Requires the Spark Firewall appliance to run the firmware R81.10.10 and higher.

  6. Click Save in the bottom right corner.

Firmware

Configure the applicable firmware image and upgrade schedule for your Spark Firewall Gateways.

Note - The Spark Firewall Gateway reboots after the firmware upgrade.

You can limit the firmware upgrade to specified days and hours.

The upgrade schedule uses the Spark Firewall Gateway's local time zone.

For example, if you configured firmware upgrades to occur between 01:00 am to 06:00 an, then:

  • Spark Firewall Gateways in New York, USA receive firmware upgrades between 01:00 am and 06:00 am Eastern Time (ET).

  • Spark Firewall Gateways in California, USA receive firmware updates between 01:00 am and 06:00 am Pacific Time (PT).

Note - You cannot select a Spark version lower than the currently active version. Rollback is not supported.

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Firmware.

  4. In the Select a firmware for all gateways section, select and configure the applicable options:

    • Specific firmware version

      You can select

      • In the 1200R Appliance field, select the applicable option.

      • In the 700/1400 Appliance field, select the applicable option.

      • In the 1500/1500R Appliance field, select the applicable option.

      • In the 1600/1800/1900/2000 Appliance field, select the applicable option.

    • Check Point recommended

      The Spark Firewall Gateways download the recommended firmware version.

    • The firmware version is managed locally on the device

    • Gradual Upgrade

      Gradual Upgrade allows you to divide a firmware deployment into multiple stages. In each stage, you choose the percentage of Appliances (connected to a specific plan) that receive the upgrade. You can also set a delay between stages. This minimizes the impact of upgrades and supports progressive deployment.

      1. Select the firmware version (refer to the "Specific firmware version" list above).

      2. Click Gradual Upgrade Control to open the Gradual Upgrade Control window.

      3. In Number of stages, select the number of stages (1 to 5).

      4. In each stage, define the percentage of Appliances to upgrade. These Appliances must be connected to the selected plan.

      5. In Delay between stages, enter the number of days between each stage.

        Note - Stage 1 begins after the delay period, which must be at least 24 hours.

      6. Click Start to begin the upgrade process.

        Note - This initiates the deployment as per the configured stages and percentages.

      7. Click Save to store the configuration.

        Important - If you want the deployment to start immediately, you must click Start before clicking Save. You can also click Save without starting the deployment, if you only want to save your settings for later.

      8. You can use the following controls to manage the upgrade:

      • Stop: Halts the upgrade completely. Devices already upgraded or currently upgrading remain updated. All remaining upgrades are cancelled. To restart, reconfigure and click Start.

      • Pause: Temporarily stops the upgrade. You can later click Start to resume.

        Note - You cannot change the configuration while the upgrade is paused.

  5. In the Schedule firmware upgrades section, select and configure the applicable options:

    These options are available only if in the above section you selected "Check Point recommended".

    • Upgrade immediately

    • Daily

    • Weekly

    • Monthly

  6. Click Save in the bottom right corner.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Firmware.

  4. In the Select a firmware for this gateway section, select and configure the applicable options:

    • Specific firmware version

      • In the 1200R Appliance field, select the applicable option.

      • In the 700/1400 Appliance field, select the applicable option.

      • In the 1500/1500R Appliance field, select the applicable option.

      • In the 1600/1800/1900/2000 Appliance field, select the applicable option.

    • Check Point recommended

      The Spark Firewall Gateway downloads the recommended firmware version.

    • The firmware version is managed locally on the device

  5. In the Schedule firmware upgrades section, select and configure the applicable options:

    • Upgrade immediately

    • Daily

    • Weekly

    • Monthly

  6. Click Save in the bottom right corner.

Note - This feature is available only in specific service domains and not globally in all service domains in Quantum Spark Management.

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Firmware.

  4. Click Add Customer Hotfix Firmware.

  5. In the Firmware ID field, enter the ID that Check Point provided.

  6. Click Finish.

  7. In the Select a firmware for all gateways section:

    1. Select Specific firmware version.

    2. For the applicable appliance models, select this private image.

  8. Click Save in the bottom right corner.

Note - This feature is available only in specific service domains and not globally in all service domains in Quantum Spark Management.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Firmware.

  4. Click Add Customer Hotfix Firmware.

  5. In the Firmware ID field, enter the ID that Check Point provided.

  6. Click Finish.

  7. In the Select a firmware for all gateways section:

    1. Select Specific firmware version.

    2. For the applicable appliance models, select this private image.

  8. Click Save in the bottom right corner.

Backup

Configures where to store the backup of the Spark Firewall Gateway settings and the backup schedule.

The Spark Firewall Gateway saves a backup of its setting in a ZIP file with this naming convention:

<Name-of-Gateway>_<Firmware-Version>_<YYYY-MM-DD_HH_MM_SS>.zip

You can upload these backup files:

  • To Check Point Cloud - Quantum Spark Management (recommended).

    Notes:

    • Requires the Spark Firewall appliance to run the firmware R81.10.05 and higher.

    • You can save a maximum of 12 backup files.

    • It is not necessary to run a 3rd-party file server.

    • After you select the time interval for periodic cloud backups to occur, the backup file is automatically uploaded to cloud storage.

  • To a 3rd-party file server on your network:

    • SFTP

      Note - Requires the Spark Firewall appliance to run the firmware R80.20.25 and higher.

    • FTP

      Note - Requires the Spark Firewall appliance to run the firmware R80.20.40 and higher.

    • TFTP

    • SCP

      Roadmap - Support for SCP is planned.

    • Flash

      Roadmap - Support for Flash is planned.

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Backup.

  4. In the File storage section, select the applicable protocol and configure the required settings.

  5. Best Practice: In the File Encryption section, select Use file encryption and configure a password.

  6. In the Schedule periodic backup section, select the applicable option:

    • Daily

    • Weekly

    • Monthly

  7. Click Save in the bottom right corner.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Backup.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. In the File storage section, select the applicable protocol and configure the required settings.

  6. Recommended: In the File Encryption section, select Use file encryption and configure a password.

  7. In the Schedule periodic backup section, select the applicable option:

    • Daily

    • Weekly

    • Monthly

  8. Click Save in the bottom right corner.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Backup.

  4. In the Protocol, select Cloud.

  5. The table with available backups appears at the bottom of the page.

  6. Select the backup file and click the Download icon.

Reports

Configures which reports to send and the report schedule.

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Reports.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. In the Send periodic report to the following recipients section, select enable the applicable toggles:

    • Send to owner

      Sends the report email to the Gateway Owner that is configured in the Gateway object.

    • Additional emails

      You can configure additional email recipients.

  6. In the Report content section:

    1. Select Classic report

      Generated by the Spark Firewall Gateway.

    2. Optional: If you selected Classic report, then you can enable the toggle Embed report in email message body.

      If you disable this toggle, then the report is attached to the email.

    3. In the Reports language field, select the applicable option.

    4. In the Report time zone field, select the applicable option.

      You must select the same time zone that is configured on the Spark Firewall Gateways.

  7. In the Periodic report settings section, select the applicable options:

    • Send daily reports

      Note - Requires the Spark Firewall appliance to run the firmware R80.20.40 and higher.

    • Send weekly reports

    • Send monthly reports

    If the selected date for the report does not appear in that month (for example, the 31st in a month that only contains 30 days), the report is sent on the last day of the month.

  8. Click Save in the bottom right corner.

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Reports.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. In the Send periodic report to the following recipients section, enable the applicable toggles:

    • Send to owner

      Sends the report email to the Gateway Owner that is configured in the Gateway object.

    • Additional emails

      You can configure additional email recipients.

  6. In the Report content section:

    1. Select Classic report:

      Generated by the Spark Firewall Gateway.

    2. Optional: If you selected Classic report, then you can enable the toggle Embed report in email message body.

      If you disable this toggle, then the report is attached to the email.

    3. In the Reports language field, select the applicable option.

    4. In the Report time zone field, select the applicable option.

      You must select the same time zone that is configured on the Spark Firewall Gateways.

  7. In the Periodic report settings section, select the applicable options:

    • Send daily reports

      Note - Requires the Spark Firewall appliance to run the firmware R80.20.40 and higher.

    • Send weekly reports

    • Send monthly reports

    If the selected date for the report does not appear in that month (for example, the 31st in a month that only contains 30 days), the report is sent on the last day of the month.

  8. Click Save in the bottom right corner.

Notifications

Enhanced Notifications provide improved visibility into Gateway events by integrating with Playblocks. Administrators can receive real-time or aggregated notifications about Gateway events through multiple delivery channels such as email, Microsoft Teams, or Slack.

This feature is supported on Spark Firewall Appliances running R81.10.10 or higher.

Enhanced Notifications include:

  • Real-time alerts

  • Summary alerts based on configurable aggregation intervals

  • Granular control by event type or severity level

  • Recipient management through Playblocks Notifications or additional custom email addresses

  • Centralized delivery configuration using Playblocks Connectors

  • Reuse of Notification Profiles in different Plans for this tenant

To Enable Enhanced Notifications

  1. In Quantum Spark Management, select the applicable Plan or Gateway.

  2. In the Services section, select Notifications.

  3. Click Upgrade to Enhanced notifications.

  4. Select Enhanced Notifications powered by Playblocks.

  5. Click Finish.

  6. Click the Activate button to get started. After successful registration, you will see an empty table with notification settings. Make sure to create at least one notification, explained below.

    Notes:

    • If your account is not yet registered to Playblocks, the system automatically registers it with the Spark Management event automation enabled. No additional license is required. Click here for more information.

    • If you are already registered to Playblocks, the system activates the Spark Management event automation.

To Create a New Notification

  1. In the Notifications page. click New to create a notification rule.

    Note - When clicking on the New button, the default notification suggestion is configured to send all events with Critical or High severity to the Playblocks profile named Immediate attention. However, you should click Save before it is applied.

  2. Optional: In the right panel, enter a name for the notification. Otherwise, the system assigns a default name such as Notification 1, Notification 2, and so on.

  3. Select the criteria that trigger the notification:

    • By Severity – Select one or more severity levels.

      Note - You cannot select the Information severity. For this severity, you must select By Event.

    • By Event – Click the Add button and select one or more events from the list. A table appears showing all events, including each event’s Family and Severity. Use the free-text search to find specific events, and sort columns by clicking the column name. After selecting your events, click Apply.

      Note - Each notification rule can be based on either severity or specific events, not both.

  4. Click the Recipients tab.

  5. Configure recipients using one or more of these options:

    • Playblocks Profiles

      • Click the link provided to open the Playblocks Notification Profiles page and update profiles if necessary.

      • You can select an aggregated profile to receive summary notifications.

      • If you do not wish to send to a Playblocks profile, select No Playblocks profile.

      • Hover over the eye icon to see a preview of the selected Playblocks profile.

    • Additional Emails - Enable this option to manually add email addresses. Press "Enter" or click the + icon after each address.

  6. Make sure you define at least one recipient for each notification.

  7. To receive the Gateway description in each notification, go to the Advanced Settings tab and select Include the Gateway description in the notification.

  8. Click Save to apply the configuration.

To Update a Notification

  1. Click the notification row to open a sidebar.

  2. Follow steps 3-7 in the “To create a new notification” procedure.

To Delete a Notification

  1. Click the notification row to open a sidebar.

  2. Click Delete.

  3. Confirm the removal.

Limitations

Enhanced Notifications do not support:

  • Importing or exporting accounts

  • Gateway Owner Objects. You can add this to the Playblocks profile or additional emails

  • Shared Plans

Frequently Asked Questions

Select the frequency in the Playblocks Notifications profile. See here for instructions.

  1. Navigate to Plan > Services > Manage Services.

  2. Make sure to select the check box for Send cloud notifications / Enable events.

  3. Verify that the automation Spark Management Event in Playblocks is activated.

Yes. Recipients can click the unsubscribe link in the notification. The Administrator sees this change in Playblocks Notifications. See here for more information.

Yes. The Administrator can unsubscribe a recipient in the same way described above. See here for more information.

Spark Management supports email, Slack, Teams, and SMS.

Note - SMS requires an additional Playblocks license.

Not currently. Each child account must create its own notification profiles.

Configures for which events to generate an email with notification and to which recipients to send this email.

Configuring the 'Notifications' settings in a Plan object

  1. From the left navigation panel, click Plans.

  2. In the Name column, click the applicable Plan object.

  3. In the Plan Edit page, click Services > Notifications.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. In the Language field, select the applicable option.

  6. Select the applicable notification options:

    • Access Incidents

    • Cluster Incidents

    • System Alerts

    • IoT Events

    • Networking Events

    • Operational Events

    • SD-WAN Events

    • Security Incidents

    • VPN Alerts

    • Other Events

  7. In the Send email notifications to the following recipients section, select enable the applicable toggles:

    • Send to owner

      Sends the report email to the Gateway Owner that is configured in the Gateway object.

    • Additional emails

      You can configure additional email recipients.

  8. Click Save in the bottom right corner.

Configuring the 'Notifications' settings in a Gateway object (to override the Plan settings)

  1. From the left navigation panel, click Gateways.

  2. In the Name column, click the applicable Spark Firewall Gateway object.

  3. In the Gateway Edit page, click Services > Notifications.

  4. Click Locked to plan (it must change to Unlocked from plan).

  5. In the Language field, select the applicable option.

  6. Select the applicable notification options:

    • Access Incidents

    • Cluster Incidents

    • System Alerts

    • IoT Events

    • Networking Events

    • Operational Events

    • SD-WAN Events

    • Security Incidents

    • VPN Alerts

    • Other Events

  7. In the Send email notifications to the following recipients section, select enable the applicable toggles:

    • Send to owner

      Sends the report email to the Gateway Owner that is configured in the Gateway object.

    • Additional emails

      You can configure additional email recipients.

  8. Click Save in the bottom right corner.

Reach My Device

The Reach My Device (RMD) feature lets Administrators remotely access their Appliances. When enabled, RMD provides unique URLs that allow access to the Gateway WebUI and the command-line shell directly through a web browser, even if the Gateway is behind NAT or without a public IP.

RMD is managed through Quantum Spark Management and is recommended as a best practice for remote access.

Important:

  • The RMD feature is available starting in R82.00.10 Build 998002133.

  • When you enable RMD, you must explicitly permit access under Administrators Access by defining the allowed source IP address or network. Make sure that access is configured and restricted only to trusted sources.

  • New Account

    For a new account, the default initial Plan is Locally Managed. It is recommended that you change to Quantum Spark Management.

  • New Plans

    You will be prompted to confirm RMD management from Quantum Spark Management.

  • Existing Customers / Existing Plans

    Existing Plans are Locally Managed unless the Administrator enables RMD in Quantum Spark Management. It is recommended that you change to Quantum Spark Management.

  1. Log in to Quantum Spark Management.

  2. Select the applicable Plan.

  3. Click Services.

  4. Select Reach My Device.

  5. Enable the Manage in SMP toggle.

  6. Click Save. Quantum Spark Management pushes the configuration to the device.

After the device receives the updated configuration from Quantum Spark Management, registration is not immediate. Any registration errors or status updates can take up to 10 minutes to appear in the Gateway WebUI (the errors do not appear in Quantum Spark Management). Administrators should be aware of this delay when verifying configuration or troubleshooting connectivity issues.

When RMD is successfully enabled and the device is registered:

  • Quantum Spark Management displays two unique URLs for the device. You can access these URLs through the Gateway Object or the Gateway list. These URLs allow secure remote access directly from a browser.

    • One URL for accessing the Gateway WebUI

    • One URL for accessing the shell

Best Practice - Check Point recommends enabling RMD and managing it through Spark Management, as it simplifies secure remote access and centralized management across devices.

Dynamic DNS

Shows the Dynamic DNS primary domain name for this Spark Firewall Gateway.