Checkpoint well known ports
* FireWall-1 Service * Download of rulebase from MM to FWM (4.x) * Fetching rulebase from FWM to MM when starting (4.x) * Get topology information from MM or CMA to FWM (also for NG) ( Full synchronisation for HA configuration (also for NG)
* Protocol used for delivering logs from FWM to MM * Protocol used for delivering logs from FWM to CMA or CLM
4.x, obsolete) * Protocol for communication between GUI and MM 4.x
FW1_clntauth_telnet
* Protocol for performing Client-Authentication at FWM using telnet
* Protocol used for FWZ VPN (supported up to NG FP1 only) * Protocol used by SR/SCl for checking the availability of the FWM/PS
* Check Point's SNMP, used additionally to 161/udp (snmp)
* Protocol for Session Authentication between FWM and SAA
(process: mdq)
* Topology Download for SR (build 4100 and higher) and SCl
* Protocol for exchanging CA* and DH-keys between MM's (SKIP, FWZ (4.x)) * Public Key download for SR/SCl
FW1_clntauth_http
* Protocol for performing Client-Authentication at FWM using HTTP
from external using HTTPS
* Default-Protocol used for UDP encapsulation
Authentication (in.asessiond)
* Protocol for internal communication between High Availability Cluster Members. Used for e.g. report/query state, probing, load balancing
(process: cpd)
* Encrypted Protocol for communication between MM and Check Point Appliance (e.g. VPN-1 Edge)
* Encrypted Protocol for communication between MM and Check Point Appliance (e.g. VPN-1 Edge)
* Protocol used for communication between FWM and AntiVirus Server
* Protocol used for communication between FWM and Server for Content Control (e.g. Web Content)
* Protocol e.g. for Block Intruder between MM (or CMA) and FWM
* Protocol for exporting logs from MM
* Protocol used by applications having access to the ruleset saved at MM
SIC * Protocol used by applications having access to the ruleset saved at MM
* Protocol for applications logging to the Firewall log at MM
* Protocol for communication between GUI and MM * Protocol for connections from MDG to MDS and CMA
* Download of rulebase from MM to FWM * Fetching rulebase, from FWM to MM when starting FWM * Download of rulebase from MDS/CMA to FWM * Fetching rulebase, from FWM to CMA when starting FWM
* Protocol for getting System Status, from MM or MDS/CMA to FWM
* Protocol for monitoring apps, e.g. from MM to CVP server
* Protocol used by Real Time Monitor (SmartView Monitor)
* Protocol used by Reporting client when connecting to Reporting Server (MM)
* Protocol used for download of Desktop Security from PS to SCl (4.x)
* Protocol used from MM to FWM when installing Secure Updates.
between FWM and ICA (status, issue, revoke)
* Protocol used by SIC for e.g. FWM pulling CA's from MM
* Protocol used by SIC for pushing CA's from MM or CMA/MDS to FWM
* Default-Port for Load Agent running on load-balanced Servers (e.g. WWW, FTP)
* Protocol used for synchronizing primary and secondary MM * Protocol used for synchronizing CMA between primary and secondary MDS
* Protocol used for download of Desktop Security from PS to SCl
* Protocol for software distribution of Check Point components
* Protocol for Secure Configuration Verification on SecureClient
* Protocol for Certificate Revocation Lists and registering users when using the Policy Server * needed when e.g. FWM is starting
* Protocol for managing the ICA, established with NG AI, also used for central administration of certificates on MM. * needs to be started separately with the command cpca_client
* Protocol for connections to the UA Server
* Protocol for software distribution of Check Point components in Next Generation