What's New


Welcome to Check Point Quantum R81.10, the industry's most advanced Threat Prevention and Security Management software for network security that delivers uncompromising simplicity and consolidation. R81 introduced the first Autonomous Threat Prevention system that provides fast, self-driven policy creation and one-click security profiles, keeping policies always up to date. Policies install in seconds, upgrades require only one click, and the gateways can simultaneously upgrade in minutes. R81.10 brings a major improvement in operational security efficiency across the Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server.'s reliability, performance, and scale. Critical operations such as APIs, High AvailabilityClosed A redundant cluster mode, where only one Cluster Member (Active member) processes all the traffic, while other Cluster Members (Standby members) are ready to be promoted to Active state if the current Active member fails. In the High Availability mode, the Cluster Virtual IP address (that represents the cluster on that network) is associated: (1) With physical MAC Address of Active member (2) With virtual MAC Address. Synonym: Active/Standby. Acronym: HA. synchronization, and login are more reliable and faster than ever. In addition, the SmartConsoleClosed Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on. is automatically updated with the latest fixes and improvements. R81.10 adds new dynamic log distribution to add Log ServerClosed Dedicated Check Point server that runs Check Point software to store and process logs. capacity on demand. And as part of Scalable Platforms, R81.10 brings a unique mix and match ability to leverage different Quantum Security Gateways within a single Quantum Maestro orchestrationClosed See "Maestro Orchestrator"..

Quantum Security Gateway and Gaia

Maestro Hyperscale

VPN performance enhancements - Site to Site VPN and Remote Access clients are now handled by two different processes.

Access Control

Tighten your policy and reduce the risk of human error through Access Control Rule BaseClosed All rules configured in a given Security Policy. Synonym: Rulebase. settings and defaults. Watch the video.

Note - The new defaults apply only to new R81.10 installations. Upgraded environments can use this feature but the default behavior from previous versions is kept.

Advanced Routing
  • IPv4 PIM enhancements and stability fixes.

  • Ability to reset OSPFv2 counters.

  • Ability to configure a Source-Specific Multicast source for an IGMPv3 Group.

  • Support for ECMP algorithms to provide traffic load balancing:

    • Based on the 2-tuple hash of Source and Destination.

    • Based on the 5-tuple hash of Source, Destination, Source Port, Destination Port, and Protocol.

Gaia Operating System
ISP Redundancy

Extended support for a maximum of 10 ISP links.

Threat Extraction

Automatic Threat ExtractionClosed Check Point Software Blade on a Security Gateway that removes malicious content from files. Acronym: TEX., Threat Extraction security improvements, and new features are automatically downloaded and applied without the need for human intervention.

Identity Awareness

AES encryption type configuration for Kerberos Ticket Encryption Methods is now available through SmartConsole. See sk111945.

Quantum Security Management

Security Management Servers enhancements
Management REST API
  • New export, import, and upgrade Management APIs for primary Security Management Servers or Multi-Domain Servers .

  • Unified Management API commands for:

    • Domain export and backup

    • Domain import and restore

  • SmartLSM - REST API commands to simplify the creation of SmartLSM Gateways.


Automatic updates - SmartConsole detects and installs client updates for the same major version. See sk171315.

Logging and Monitoring
Multi-Domain Server

IoT Controller support.


Use group object, Multiple IP addresses and IP ranges in LSM profiles

CloudGuard Network Security

Harmony Endpoint

Harmony Endpoint Web Management enhancements to allow these configurations: