Check Point

How Customers Use Check Point Firewalls Around the Globe

Ever wanted to know how Check Point firewallls are being used around the World? With indeni Insights, you can get a glimpse into that data 24/7. See how.

Last updated: September 15, 2025

An avatar of the author
Katie Burton

Notice: This blog post was originally published on Indeni before its acquisition by BlueCat.

The content reflects the expertise and perspectives of the Indeni team at the time of writing. While some references may be outdated, the insights remain valuable. For the latest updates and solutions, explore the rest of our blog

Key Takeaways
  • Indeni Insight provides third-party benchmarking data that allows Check Point customers to compare software adoption and operational practices against industry peers.
  • Gaia is the predominant Check Point software platform among Indeni customers, accounting for roughly three-quarters of observed deployments, with IPSO and SecurePlatform each representing under 12%.
  • Common performance issues identified include high per-core CPU utilization, interfaces nearing maximum transmit throughput, firewall kernel table limits, slow DNS server response times, and unstable VPN tunnels.
  • Operational risks frequently detected include aggressive aging policies enabled, required interfaces down, unreachable next-hop routers, and repeated failed login attempts indicating potential security concerns.
  • Configuration-related problems often involve uneven CPU usage across VSes, suboptimal CoreXL core assignments, mismatched critical configuration files or static routes among cluster members, and inconsistent interface duplex settings.
  • Lifecycle and security configuration gaps include software nearing end of support, impending license expiration, unsaved configuration changes, inaccessible or expired certificates, and unavailable certificate authorities.

To keep your business online and ensure critical devices, such as Check Point firewalls, meet operational excellence standards it is helpful to compare your environment to a third party data set. As part of the Indeni Automation Platform, customers have access to Indeni Insight which benchmarks adoption of the Check Point capabilities and user behavior to adhere to ITIL best practices. Having a third party data set is extremely helpful for network and security engineers to answer questions such as:

  • Should I consider upgrading to the latest version?
  • Is this a common issue in other environments, or am I alone?
  • Input into future appliance and software purchases

We recently published a report around the Palo Alto Networks Automation Trends, and the data is coming in for Check Point as well. See below for a few of the early takeaways. Please comment below with the questions you have around Check Point such as, should I upgrade to R80.10? Your feedback will help shape the final report!

Sneak Peak: 2018 Check Point Trends

Top Software Platforms used by Indeni Check Point Customers:

  • Gaia – 76.47%
  • Ipso – 11.76%
  • Secureplatform – 11.76%

Top issues found from a performance and configuration standpoint:

Performance-related and ongoing issues:

  • High CPU usage per core(s)
  • Interface nearing maximum Tx throughput
  • Firewall kernel table limit approaching
  • DNS server response time slow
  • VPN tunnel(s) down
  • Aggressive Aging enabled
  • Required interface(s) down
  • Next hop (router) inaccessible
  • Repeated failed login attempts by a user
  • Core dump files found

Configuration related issues:

  • Some VSes have high CPU usage
  • In CoreXL a single core shouldn’t handle both interface interrupts and fw worker
  • Critical configuration files mismatch across cluster members
  • Software end of support nearing
  • Static routing table does not match across cluster members
  • License expiration nearing
  • Network interface duplex does not match across cluster members
  • Configuration changed but not saved
  • Certificate authority not accessible
  • Certificate(s) has expired

Check out the potential issues that could appear in Check Point GAiA, GAiA Embedded, IPSO and Secure Platform environments on the Indeni Check Point Solution Page.

Ready to benchmark your network ? Try Indeni today and enable Indeni Insight at set up.

Published in:

Check Point

Published on: July 24, 2018

An avatar of the author

Related content

Blog

Your journey to intelligent NetOps begins at Cisco Live

Visit BlueCat’s booth or book a meeting now to learn more about how our solutions can help you build a network that supports constant change.

Read more
Blog

Replace BIND and ISC with Micetro DNS/DHCP Server (MDDS)

Tired of patching and manually configuring BIND DNS and ISC DHCP? Discover how Micetro MDDS appliances can replace them for modern DDI.

Read more
Blog

Automate it all in Integrity with REST v2 API-first DDI management

Discover API-first DDI with Integrity X by using REST v2 to automate DNS, DHCP, and IPAM for scalable, secure network operations.

Read more
Press

BlueCat moves agentic AI from insight to action with new AI integrations

Extends its Intelligent NetOps platform to help organizations unlock measurable AI value through a unified data foundation

Read more

⏳ Cisco Live is almost here. Put BlueCat on your agenda for smarter, more secure networks.

Get the details