Contents

Copyright Notice  Important Information  Next Generation Security Gateway Guide  Terms  Check Point Next Generation Security Gateway Solution  Mirror and Decrypt  ICAP Client  Hardware Security Module (HSM)  Creating an Access Control Policy     Managing Gateways     Introducing the Unified Access Control Policy     Creating a Basic Access Control Policy     Creating Application Control and URL Filtering Rules     Ordered Layers and Inline Layers     The Columns of the Access Control Rule Base        Source and Destination Column        VPN Column        Services & Applications Column           Service Matching           Application Matching           Configuring Matching for an Allowed Application           Configuring Matching for Blocked Applications           Adding Services, Applications, and Sites to a rule           Creating Custom Applications, Categories, and Groups           Services and Applications on R80 and Lower Gateways, and after Upgrade        Content Column        Actions        Tracking Column     Unified Rule Base Use Cases     Rule Matching in the Access Control Policy     Best Practices for Access Control Rules     Installing the Access Control Policy     Analyzing the Rule Base Hit Count     Preventing IP Spoofing     Translating IP Addresses     UserCheck Interactions in the Access Control Policy     Blade Settings  Creating a Threat Prevention Policy  Creating Shared Policies  Adding Users to the Policy  Logging and Monitoring  Maximizing Network Performance and Redundancy  Simplifying Security for Private Clouds  Securing Data  ConnectControl - Server Load Balancing  IPv6 Neighbor Discovery  Managing Ethernet Protocols  Deploying a Security Gateway in Monitor Mode  Configuring Link State Propagation (LSP)  Troubleshooting Specific Problems  Security Before Firewall Activation  Command Line Reference  Working with Kernel Parameters on Security Gateway  Kernel Debug on Security Gateway