03 November 2020

3000 APPLIANCES

PB-10 AND QB-1

Getting Started Guide

[Classification: Restricted]
Check Point Copyright Notice
© 2020 Check Point Software Technologies Ltd.

All rights reserved. This product and related documentation are protected by copyright and distributed
under licensing restricting their use, copying, distribution, and decompilation. No part of this product or
related documentation may be reproduced in any form or by any means without prior written authorization
of Check Point. While every precaution has been taken in the preparation of this book, Check Point
assumes no responsibility for errors or omissions. This publication and features described herein are
subject to change without notice.

RESTRICTED RIGHTS LEGEND:

Use, duplication, or disclosure by the government is subject to restrictions as set forth in subparagraph (c)
(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and FAR
52.227-19.

TRADEMARKS:
Refer to the Copyright page for a list of our trademarks.
Refer to the Third Party copyright notices for a list of relevant copyrights and third-party licenses.
 3000 Appliances Getting Started Guide

Important Information
Latest Software
We recommend that you install the most recent software release to stay up-to-date with the
latest functional improvements, stability fixes, security enhancements and protection
against new and evolving attacks.

Certifications
For third party independent certification of Check Point products, see the Check Point
Certifications page.

Check Point 3000 Appliances

For more about this release, see the home page.

Latest Version of this Document in English

Open the latest version of this document in a Web browser.
Download the latest version of this document in PDF format.

Feedback
Check Point is engaged in a continuous effort to improve its documentation.
Please help us by sending your comments.

3000 Appliances Getting Started Guide   |   3

 3000 Appliances Getting Started Guide

Revision History

Date Description

03 November 2020 Updated:

n "Compliance Information" on page 10
n "Shipping Carton Contents" on page 24
n "Appliance Physical Specifications" on page 25
n Improved formatting and layout

10 August 2020 Improved HTML formatting and layout

09 July 2020 Updated 3800 appliance information

14 January 2018 Updated 3600 appliance information

6 February 2018 Updated front panel storage device activity LED

16 May 2017 Updated for Check Point Infinity

23 January 2017 Added 3100 appliance information

31 July 2016 Added retaining clip instructions

Updated Front Panel

05 April 2016 First release of this document

3000 Appliances Getting Started Guide   |   4

 Table of Contents

Table of Contents
Safety and Environmental Notices 7
Compliance Information 10
Declaration of Conformity 10
Remarques Relatives à la Sécurité, l'environnement et les Émissions Électroniques 17
Hinweise zu Sicherheit, Umwelt und elektronischen Emissionen 20
Introduction 23
Welcome 23
3000 Appliances Overview 23
Shipping Carton Contents 24
Terminology 24
Mounting the 3000 Appliances in a Rack 25
Appliance Physical Specifications 25
Appliance Air Vents 25
Configuring 3000 Appliances 27
Starting the Appliance 27
Available Software Images 27
Initial Configuration 27
Creating the Network Object 27
Advanced Configuration 27
Connecting to the 3000 Appliances CLI 28
3000 Appliances Hardware 29
Front Panel 29
Rear Panel 31
Installing the Power Adapter Retaining Clip in 3100/3200 Appliances 31
Dual Redundant BIOS 34
Replacing and Upgrading Components 35
Restoring Factory Defaults 36
Restoring from the Gaia Portal 36
Restoring from the Boot Menu 36
Restoring from Gaia Clish 37

3000 Appliances Getting Started Guide   |   5

 Table of Contents

Registration and Support 38

Registration 38
Support 38
Where To From Here? 38

3000 Appliances Getting Started Guide   |   6

 Table of Contents

Safety and Environmental Notices

Read the following warnings before setting up or using the appliance.

Warning - Do not block air vents. A minimum 1/2-inch clearance is required.

Before you install or remove a chassis, or work near power supplies, turn off the power and unplug the
power cord.
To prevent damage to any system board, it is important to handle it with care. The following measures are
generally sufficient to protect your equipment from static electricity discharge:
n When handling the board, use a grounded wrist strap designed for static discharge elimination.
n Touch a grounded metal object before removing the board from the antistatic bag.
n Handle the board by its edges only. Do not touch its components, peripheral chips, memory
modules or gold contacts.
n When handling processor chips or memory modules, avoid touching their pins or gold edge fingers.
n Restore the communications appliance system board and peripherals back into the antistatic bag
when they are not in use or not installed in the chassis. Some circuitry on the system board can
continue operating even though the power is switched off.
n Under no circumstances should the lithium battery cell used to power the real-time clock be allowed
to short. The battery cell may heat up under these conditions and present a burn hazard.

Warning - DANGER OF EXPLOSION IF BATTERY IS INCORRECTLY REPLACED. REPLACE ONLY

WITH SAME OR EQUIVALENT TYPE RECOMMENDED BY THE MANUFACTURER. DISCARD USED
BATTERIES ACCORDING TO THE MANUFACTURER'S INSTRUCTIONS.

n Disconnect the system board power supply from its power source before you connect or disconnect
cables or install or remove any system board components. Failure to do this can result in personnel
injury or equipment damage.
n Avoid short-circuiting the lithium battery; this can cause it to superheat and cause burns if touched.
n Do not operate the processor without a thermal solution. Damage to the processor can occur in
seconds.
n Class 1 laser product warning - A totally enclosed laser system containing a class 1 laser.

Rack Mount Instructions

The following or similar rack-mount instructions are included with the installation instructions:
1. Elevated Operating Ambient - If installed in a closed or multi-unit rack assembly, the operating
ambient temperature of the rack environment may be greater than room ambient. Therefore,
consideration should be given to installing the equipment in an environment compatible with the
maximum ambient temperature specified by the manufacturer.
2. Reduced Air Flow - Installation of the equipment in a rack should be such that the amount of air flow
required for safe operation of the equipment is not compromised.
3. Mechanical Loading - Mounting of the equipment in the rack should be such that a hazardous
condition is not achieved due to uneven mechanical loading.

3000 Appliances Getting Started Guide   |   7

 Table of Contents

4. Circuit Overloading - Consideration should be given to the connection of the equipment to the supply
circuit and the effect that overloading of the circuits might have on over current protection and
supply wiring. Appropriate consideration of equipment nameplate ratings should be used when
addressing this concern.
5. Reliable Earthing - Reliable earthing of rack-mounted equipment should be maintained. Particular
attention should be given to supply connections other than direct connections to the branch circuit
(e.g. use of power strips).

For California:
Perchlorate Material - special handling may apply. See
http://www.dtsc.ca.gov/hazardouswaste/perchlorate
The foregoing notice is provided in accordance with California Code of Regulations Title 22, Division 4.5,
Chapter 33. Best Management Practices for Perchlorate Materials. This product, part, or both may include
a lithium manganese dioxide battery which contains a perchlorate substance.
Proposition 65 Chemical
Chemicals identified by the State of California, pursuant to the requirements of the California Safe Drinking
Water and Toxic Enforcement Act of 1986, California Health & Safety Code s. 25249.5, et seq.
("Proposition 65"), that is "known to the State to cause cancer or reproductive toxicity" (see
http://www.calepa.ca.gov)
WARNING:
Handling the cord on this product will expose you to lead, a chemical known to the State of California to
cause cancer, and birth defects or other reproductive harm. Wash hands after handling.
Caution
Any changes or modifications not expressly approved by the grantee of this device could void the user's
authority to operate the equipment.

Information to user:
The user's manual or instruction manual for an intentional or unintentional radiator shall caution the user
that changes or modifications not expressly approved by the party responsible for compliance could void
the user's authority to operate the equipment. In cases where the manual is provided only in a form other
than paper, such as on a computer disk or over the Internet, the information required by this section may
be included in the manual in that alternative form, provided the user can reasonably be expected to have
the capability to access information in that form.

3000 Appliances Getting Started Guide   |   8

 Table of Contents

Product Disposal
This symbol on the product or on its packaging indicates that this product must not be disposed of with your
other household waste. Instead, it is your responsibility to dispose of your waste equipment by handing it
over to a designated collection point for the recycling of waste electrical and electronic equipment. The
separate collection and recycling of your waste equipment at the time of disposal will help to conserve
natural resources and ensure that it is recycled in a manner that protects human health and the
environment. For more information about where you can drop off your waste equipment for recycling,
please contact your local city office or your household waste disposal service.

3000 Appliances Getting Started Guide   |   9

 Table of Contents

Compliance Information
This appendix contains declaration of conformity, compliance, and related regulatory information.

Declaration of Conformity
Manufacturer's Name: Check Point Software Technologies Ltd.
5 Shlomo Kaplan Street
Manufacturer's Address:
Tel Aviv 6789159, Israel

Declare that under our sole responsibility the products

Model Number: PB-10 (3100 and 3200 appliances)

Product Options: All
Date First Applied: April 2016

Conforms to the following Product Specifications:

3000 Appliances Getting Started Guide   |   10

 Table of Contents

Category Technical Specification Description

EMC FCC, 47 CFR, Part 15, Information Technology Equipment - Radio

Class B Disturbance Characteristics
IC, ICES-003, Class B

VCCI , V-2/2015.04 , V- Information Technology Equipment - Radio

3/2015.04, Class B Disturbance Characteristics

AS/NZS CISPR 22, Class B Information Technology Equipment - Radio

Disturbance Characteristics
AS/NZS CISPR 32: 2012
Class B (from April 2017)

EN 55022: 2010 / AC: 2011, Information Technology Equipment - Radio

Class B Disturbance Characteristics

EN 55032: 2012 Class B

(from April 2017)

EN 55024

EN 61000-3-2: 2014 Information Technology Equipment - Harmonics

Characteristics

EN 61000-3-3: 2013 Information Technology Equipment - Harmonics

Characteristics

IEC 61000-4-2: 2008 Information Technology Equipment - Flicker

Characteristics

IEC 61000-4-3: 2006 Information Technology Equipment - Radiated

RF Immunity

IEC 61000-4-4 Information Technology Equipment - Fast

Transient Immunity

IEC 61000-4-5 Information Technology Equipment - Surge

Immunity

IEC 61000-4-6 Information Technology Equipment -

Conducted RF Immunity

IEC 61000-4-8 Information Technology Equipment - Power

frequency magnetic field immunity test

IEC 61000-4-11 Information Technology Equipment - Voltage

Dips and Short Interruptions Immunity

IEC 61000-4-12 Information Technology Equipment - Ring wave

immunity test

3000 Appliances Getting Started Guide   |   11

 Table of Contents

Category Technical Specification Description

Safety TUV, GS, EN 60950- Information technology equipment.

1:2006/A2:2013 Safety General requirements, CE LVD

CB, IEC 60950-1(ed.2); Information technology equipment

am1; am2 Safety General requirements

UL/cUL, UL 60950-1, 2nd Information technology equipment

Edition Safety General requirements

Date and Place of issue: PB-10 - April, 2016, Tel Aviv, Israel

3000 Appliances Getting Started Guide   |   12

 Table of Contents

Model Number: QB-1 (3600 and 3800 appliances)

Product Options: All
Date First Applied: January 2020

Category Technical Specification Description

EMC FCC, 47 CFR, Part 15, Class Information Technology Equipment - Radio Disturbance
B Characteristics
IC, ICES-003, Class B

VCCI , V-2/2015.04 , V- Information Technology Equipment - Radio Disturbance

3/2015.04, Class B Characteristics

AS/NZS CISPR 22, Class B Information Technology Equipment - Radio Disturbance

AS/NZS CISPR 32: 2012 Characteristics
Class B

EN 55022: 2010 / AC: 2011, Information Technology Equipment - Radio Disturbance

Class B Characteristics
EN 55032: 2012 Class B

EN 55024

EN 61000-3-2: 2014 Information Technology Equipment - Harmonics

Characteristics

EN 61000-3-3: 2013 Information Technology Equipment - Harmonics

Characteristics

IEC 61000-4-2: 2008 Information Technology Equipment - Flicker

Characteristics

IEC 61000-4-3: 2006 Information Technology Equipment - Radiated RF

Immunity

IEC 61000-4-4 Information Technology Equipment - Fast Transient

Immunity

IEC 61000-4-5 Information Technology Equipment - Surge Immunity

IEC 61000-4-6 Information Technology Equipment - Conducted RF

Immunity

IEC 61000-4-8 Information Technology Equipment - Power frequency

magnetic field immunity test

IEC 61000-4-11 Information Technology Equipment - Voltage Dips and

Short Interruptions Immunity

IEC 61000-4-12 Information Technology Equipment - Ring wave immunity

test

3000 Appliances Getting Started Guide   |   13

 Table of Contents

Category Technical Specification Description

Safety UL GS, EN 60950- Information technology equipment.

1:2006/A2:2013 Safety General requirements, CE LVD
UL-62368-1

CB, IEC 60950-1(ed.2); am1; Information technology equipment

am2 Safety General requirements
IEC62368-1
CE LVD EN62368-1

UL/cUL, UL 60950-1, 2nd Information technology equipment

Edition Safety General requirements

Date and Place of issue: QB-1 - January, 2020, Tel Aviv, Israel

European Union (EU) Electromagnetic and Safety Compatibility Directives

This product is herewith confirmed to comply with the requirements set out in the Council Directive on the
Approximation of the Laws of the Member States relating to Electromagnetic Compatibility Directives
2004/108/EC and 2014/30/EU.
This product is in conformity with Low Voltage Directives 2006/95/EC and 2014/35/EU.
This product complies with the requirements in the Council Directives 2006/95/EC and 2014/35/EU relating
to electrical equipment designed for use within certain voltage limits and the Amendment Directive
93/68/EEC.

Federal Communications Commission (FCC) Statement:

This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to
Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference in a residential installation.
This equipment generates uses and can radiate radio frequency energy and, if not installed and used in
accordance with the instructions, may cause harmful interference to radio communications. However,
there is no guarantee that interference will not occur in a particular installation. If this equipment does
cause harmful interference to radio or television reception, which can be determined by turning the
equipment off and on, the user is encouraged to try to correct the interference by one of the following
measures:
n Reorient or relocate the receiving antenna (*If applicable).
n Increase the separation between the equipment and receiver.
n Connect the equipment into an outlet on a circuit different from that to which the receiver is
connected.
n Consult the dealer or an experienced radio/TV technician for help.
To assure continued compliance, any changes or modifications not expressly approved by the party
responsible for compliance could void the user's authority to operate this equipment. (Example - use only
shielded interface cables when connecting to computer or peripheral devices).

3000 Appliances Getting Started Guide   |   14

 Table of Contents

FCC Radiation Exposure Statement

This equipment complies with FCC RF radiation exposure limits set forth for an uncontrolled environment.
This equipment should be installed and operated with a minimum distance of 20 centimeters between the
radiator and your body. This device complies with Part 15 of the FCC Rules. Operation is subject to the
following two conditions:
1. This device may not cause harmful interference.
2. This device must accept any interference received, including interference that may cause undesired
operation.
This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter.

Canadian Department Compliance Statement

This Class B digital apparatus complies with Canadian ICES-003. Cet appareil numérique de la classe B
est conforme à la norme NMB-003 du Canada.

Japan Class B Compliance Statement:

This is a Class B product based on the standard of the Voluntary Control Council for Interference from
Information Technology Equipment (VCCI).
If this is used near a radio or television receiver in a domestic environment, it may cause radio interference.
Install and use the equipment according to the instruction manual.

CCC Note

标识的涵义: 设备仅适用于海拔2000M以下地区安全使用

BSMI Note
警告使用者：
這是甲類的資訊產品，在居住的環境中使用時，可能會造成射頻干擾，在這種情況下，使用者會被要求
採取某些適當的對策。

3000 Appliances Getting Started Guide   |   15

 Table of Contents

3000 Appliances Getting Started Guide   |   16

 Table of Contents

Remarques Relatives à la Sécurité,

l'environnement et les Émissions
Électroniques
Avant de mettre en place ou d'utiliser l'appareil, veuillez lire les avertissements suivants.

Avertissement: Ne pas obturer les aérations. Il faut laisser au moins 1,27 cm d'espace libre.

Avant de manipuler une appliance ou ses blocs d’alimentations, l’éteindre et débrancher son câble
électrique.
Pour éviter d'endommager les cartes système, il est important de les manipuler avec soin. Les mesures
suivantes sont généralement suffisantes pour protéger votre équipement contre les décharges
d'électricité statique:
n Avant de manipuler la carte, portez aux poignet un bracelet antistatique relié à la terre.
n Touchez un objet métallique relié à la terre avant d'extraire la carte de son sachet antistatique.
n Ne tenez la carte que par ses bords. Ne touchez aucun composant, puce périphérique, module
mémoire ou contact plaqué or.
n Lorsque vous manipulez des processeurs ou des modules mémoire, évitez de toucher leurs
broches ou les pistes de contact dorées.
n Remettez dans leur sachet antistatique la carte système et les périphériques de l'appareil de
communications lorsqu'ils ne sont pas utilisés ou installés dans le châssis. Certains circuits sur la
carte système peuvent rester fonctionnels même si l'appareil est éteint.
n Il ne faut jamais court-circuiter la pile au lithium qui alimente l'horloge temps-réel. Elle risque de
s'échauffer et de causer des brûlures.

Avertissement:DANGER D'EXPLOSION SI LA PILE EST MAL REPLACÉE. NE REMPLACER

QU'AVEC UN TYPE IDENTIQUE OU ÉQUIVALENT, RECOMMANDÉ PAR LE CONSTRUCTEUR.
LES PILES DOIVENT ÊTRE MISES AU REBUT CONFORMÉMENT AUX INSTRUCTIONS DE
LEUR FABRICANT.

n Débrancher l'alimentation de la carte système de sa source électrique avant de connecter ou

déconnecter des câbles ou d'installer ou retirer des composants. À défaut, les risques sont
d'endommager l'équipement et de causer des blessures corporelles.
n Ne pas court-circuiter la pile au lithium: elle risque de surchauffer et de causer des brûlures en cas
de contact.
n Ne pas faire fonctionner le processeur sans refroidissement. Le processeur peut être endommagé
en quelques secondes.
n Produit laser de classe 1: un système laser totalement clos et contenant un laser de classe 1.

Instructions de montage en rack

Les instructions d'installation sont livrées avec les instructions de montage en rack ci-après (ou similaires):

3000 Appliances Getting Started Guide   |   17

 Table of Contents

1. Fonctionnement à température plus élevée: Si l'appareil est installé dans une armoire fermée ou
un rack à plusieurs unités, la température du rack en fonctionnement peut être supérieure à la
température ambiante de la pièce. Avant d'installer l'équipement, il faut donc s'assurer qu'il sera
dans un environnement compatible avec la température ambiante maximale indiquée par le
constructeur.
2. Circulation d'air réduite: L'installation dans un rack doit s'assurer de ne pas limiter la circulation de
l'air nécessaire au bon fonctionnement de l'équipement.
3. Charge mécanique: Lors du montage de l'équipement dans le rack, il faut faire attention à ne pas
déséquilibrer l'ensemble. Un rack se remplit en commençant par le bas.
4. Surcharge: Pour la connexion de l'équipement au circuit électrique, il faut vérifier les risques de
surcharge et les éventuelles conséquences sur la protection contre les surtensions et sur le câblage
électrique. Dans ce contexte, il faut tenir compte des informations mentionnées par l’étiquette
apposée sur l’équipement.
5. Mise à la terre: Les équipements montés en rack doivent être en permanence reliés à un terre
fiable. Il faut faire particulièrement attention aux branchements qui ne vont pas directement à la
source électrique (par exemple des multiprises).

Pour la Californie:
Matériau perchloraté: Manipulation spéciale potentiellement requise. Voir
http://www.dtsc.ca.gov/hazardouswaste/perchlorate.
L'avis suivant est fourni conformément au California Code of Regulations, titre 22, division 4.5, chapitre 33.
Meilleures pratiques de manipulation des matériaux perchloratés. Ce produit, cette pièce ou les deux
peuvent contenir une pile au dioxyde de lithium manganèse, qui contient une substance perchloratée.
Produits chimiques « Proposition 65 »
Les produits chimiques identifiés par l'état de Californie, conformément aux exigences du California Safe
Drinking Water and Toxic Enforcement Act of 1986 du California Health & Safety Code s. 25249.5, et seq.
(« Proposition 65 »), qui sont « connus par l'état pour être cancérigène ou être toxiques pour la
reproduction » (voir http://www.calepa.ca.gov).
AVERTISSEMENT:
La manipulation de ce cordon vous expose au contact du plomb, un élément reconnue par l'état de
Californie pour être cancérigène, provoquer des malformations à la naissance et autres dommages
relatifs à la reproduction. Se laver les mains après toute manipulation.
Attention
Tout changement ou modification qui n’ont pas été approuvés formellement par le titutlaire de l’appareil,
pourrait annuler le droit d’utiliser l’équipement.
Information à l'intention de l'utilisateur:
Le manuel utilisateur ou le manuel d'instruction d'un dispositif rayonnant (intentionnel ou non) doit avertir
que toute modification non approuvée expressément par la partie responsable de la conformité peut
annuler le droit de faire fonctionner l'équipement. Si le manuel n'est pas fourni sous forme imprimée (par
exemple sur le disque d'un ordinateur ou via Internet), les informations requises par cette section doivent
être incluses dans ces versions du manuel, sous réserve que l'utilisateur soit raisonnablement capable d'y
accéder.

3000 Appliances Getting Started Guide   |   18

 Table of Contents

Mise au rebut du produit

Ce symbole apposé sur le produit ou son emballage signifie que le produit ne doit pas être mis au rebut
avec les autres déchets ménagers. Il est de votre responsabilité de le porter à un centre de collecte
désigné pour le recyclage des équipements électriques et électroniques. Le fait de séparer vos
équipements lors de la mise au rebut, et de les recycler, contribue à préserver les ressources naturelles et
s'assure qu'ils sont recyclés d'une façon qui protège la santé de l'homme et l'environnement. Pour obtenir
plus d'informations sur les lieux où déposer vos équipements mis au rebut, veuillez contacter votre
municipalité ou le service de gestion des déchets.

3000 Appliances Getting Started Guide   |   19

 Table of Contents

Hinweise zu Sicherheit, Umwelt und

elektronischen Emissionen
Lesen Sie die folgenden Warnungen, bevor Sie Einstellungen vornehmen oder das Gerät verwenden.

Warnhinweis - Die Lüftungsschlitze müssen frei gehalten werden. Der Mindestabstand beträgt 0,5 Zoll
(1,27 cm).

Schalten Sie das Gerät ab und ziehen Sie den Stecker, bevor Sie ein Gestell anbringen oder entfernen
oder wenn Sie in der Nähe der Stromzufuhr arbeiten.
Es ist wichtig, dabei sorgfältig vorzugehen, um Schäden an den Systemplatinen zu vermeiden. Die
folgenden Maßnahmen reichen in der Regel aus, um Ihre Anlage vor elektrostatischer Entladung zu
schützen:
n Tragen Sie eine geeignete Erdungsmanschette gegen die statische Entladung, wenn Sie die Platine
berühren.
n Berühren Sie einen geerdeten metallischen Gegenstand, bevor Sie die Platine aus der
antistatischen Schutzhülle nehmen.
n Berühren Sie die Platine nur an den Rändern. Berühren Sie nicht die Komponenten, zugehörigen
Chips, Speichermodule oder goldenen Kontakte.
n Wenn Sie mit Prozessor-Chips oder Speichermodulen arbeiten, berühren Sie nicht die Pins oder die
goldenen Einsteckstellen am Rand der Platine.
n Wenn die Systemplatine des Kommunikationsgerätes nicht verwendet oder angebracht wird,
verstauen Sie sie wieder in der antistatischen Schutzhülle. Einige der Schaltkreise auf der
Systemplatine werden unter Umständen auch dann betrieben, wenn die Stromzufuhr unterbrochen
wurde.
n An der Lithiumbatteriezelle, die den Absolutzeitgeber betreibt, sollte unter keinen Umständen ein
Kurzschluss möglich sein. In diesem Fall könnte sich die Batteriezelle erhitzen und eine
Verbrennungsgefahr darstellen.

Warnhinweis - EXPLOSIONSGEFAHR BEI NICHT ORDNUNGSGEM?SS EINGESETZTER BATTERIE.

NUR GEM?SS HERSTELLEREMPFEHLUNGEN DURCH GLEICHEN ODER ?QUIVALENTEN TYP
ERSETZEN. GEBRAUCHTE BATTERIEN GEM?SS HERSTELLERANWEISUNGEN ENTSORGEN.

n Trennen Sie die Stromversorgung der Systemplatine von der entsprechenden Stromquelle, bevor
Sie Kabel ein- bzw. ausstecken oder Komponenten der Systemplatine entfernen. Wenn Sie dies
nicht befolgen, können Personen verletzt und die Anlage beschädigt werden.
n Schließen Sie die Lithiumbatterie nicht kurz; dies kann zur Überhitzung der Batterie und bei
Berühren zu Verbrennungen führen.
n Betreiben Sie den Prozessor nur mit einer geeigneten Lösung für die Wärmekontrolle. Der
Prozessor kann innerhalb von wenigen Sekunden beschädigt werden.
n Produktwarnung Laserklasse 1 – ein vollständig geschlossenes Lasersystem mit einem Laser der
Klasse 1.

Anleitung zur Rackmontage

Die nachfolgende Anleitung zur Rackmontage ist Teil der Installationsanleitung:

3000 Appliances Getting Started Guide   |   20

 Table of Contents

1. Erhöhte Betriebsumgebung – Wenn das Gerät in einer geschlossenen Rackbaugruppe oder in einer
Rackbaugruppe mit mehreren Einheiten installiert wird, ist die Umgebungsbetriebstemperatur des
Racks unter Umständen höher als die Raumtemperatur. Deshalb sollte darauf geachtet werden, die
Anlage in einer Umgebung zu installieren, die mit der vom Hersteller angegebenen
Maximaltemperatur kompatibel ist.
2. Verringerter Luftstrom – Die Anlage sollte so in das Rack installiert werden, dass der für einen
sicheren Betrieb der Anlage benötigte Luftstrom nicht beeinträchtigt wird.
3. Mechanische Ladung – Die Anlage sollte so im Rack installiert werden, dass keine Gefahr durch
ungleichmäßig verteilte mechanische Ladung besteht.
4. Systemüberlastung – Es muss darauf geachtet werden, wie die Anlage an den Versorgungskreis
angeschlossen ist, und wie sich eine Überlastung des Systems auf den Überstromschutz und die
Versorgungskabel auswirken könnte. Bei diesem Thema sollte auf ein angemessenes Typenschild
der Anlage geachtet werden.
5. Zuverlässige Erdung – Die rackmontierte Anlage muss sicher geerdet werden. Besondere Vorsicht
ist bei Versorgungsanschlüssen geboten, die nicht direkt mit dem Netzstromkreis verbunden sind
(z. B. beim Verwenden von Mehrfachsteckdosen).

Für Kalifornien:
Perchloratmaterial – Evtl. spezielle Handhabung erforderlich. Siehe
http://www.dtsc.ca.gov/hazardouswaste/perchlorate
Der vorhergehende Hinweis gilt in Übereinstimmung mit dem „California Code of Regulations“ Titel 22,
Abschnitt 4.5, Kapitel 33. Best Management Practices für Perchloratmaterialien. Dieses Produkt und/oder
Teile davon umfassen eine Lithium-Mangandioxid-Batterie, die eine perchlorate Substanz enthält.
Proposition 65, Chemikalien
Chemikalien, die vom US-Bundesstaat Kalifornien gemäß den Anforderungen des „California Safe
Drinking Water and Toxic Enforcement Act“ von 1986 (California Health & Safety Code s. 25249.5 ff.,
„Proposition 65“) als mögliche Ursache für Krebs oder eine fortpflanzungsgefährdende Toxizität eingestuft
werden (siehe http://www.calepa.ca.gov)
WARNUNG:
Im Kabel dieses Produktes befindet sich Blei; diese Chemikalie wird vom US-Bundesstaat Kalifornien als
mögliche Ursache für Krebs, Geburtsfehler oder Einschränkungen der Fortpflanzungsfähigkeit eingestuft.
Waschen Sie sich anschließend die Hände.
Vorsicht
Alle Änderungen oder Modifikationen die nicht ausdrücklich vom Lizenzgeber dieses Gerätes genehmigt
wurden, können zum Erlöschen der Betriebserlaubnis des Benutzers für das betreffende Gerät führen.

Benutzerinformationen:
Die Betriebs- oder Gebrauchsanleitung eines beabsichtigten oder unbeabsichtigten Radiators dienen
dazu, den Benutzer vor Änderungen oder Umrüstungen zu warnen, die nicht ausdrücklich von der
zuständigen Stelle für Konformität genehmigt wurden, da diese zu einem Entzug der Betriebserlaubnis für
diese Anlage führen können. Wenn das Handbuch nur in anderer als gedruckter Form zur Verfügung
steht, zum Beispiel auf einer Computerfestplatte oder über das Internet, ist die gemäß diesem Abschnitt
erforderliche Information im Handbuch möglicherweise in dieser alternativen Form enthalten, sofern vom
Benutzer erwartet werden kann, dass er auf Informationen dieser Form Zugriff hat.

3000 Appliances Getting Started Guide   |   21

 Table of Contents

Produktentsorgung
Dieses Symbol auf dem Produkt oder dessen Verpackung gibt an, dass das Produkt nicht zusammen mit
Restmüll entsorgt werden darf. Es obliegt daher Ihrer Verantwortung, das Gerät an einer entsprechenden
Stelle für die Entsorgung oder Wiederverwertung von Elektrogeräten aller Art abzugeben. Die separate
Sammlung und das Recyceln Ihrer alten Elektrogeräte zum Zeitpunkt ihrer Entsorgung trägt zum Schutz
der Umwelt bei und gewährleistet, dass die Geräte auf eine Art und Weise recycelt werden, die keine
Gefährdung für die Gesundheit des Menschen und der Umwelt darstellt. Weitere Informationen darüber,
wo Sie alte Elektrogeräte zum Recyceln abgeben können, erhalten Sie bei den örtlichen Behörden, den
Wertstoffhöfen oder dort, wo Sie das Gerät erworben haben.

3000 Appliances Getting Started Guide   |   22

 Table of Contents

Introduction
Welcome
Congratulations on your new 3000 appliance. We hope that you will be satisfied with this Security Gateway
and our support services. Check Point products provide your business with the most up to date and secure
solutions available today.
Check Point also delivers worldwide technical services including educational, professional and support
services through a network of Authorized Training Centers, Certified Support Partners and Check Point
technical support personnel to ensure that you get the most out of your security investment.
For additional information on the Internet Security Product Suite and other security solutions, refer to the
Check Point web site, or call Check Point at 1(800) 429-4391. For additional technical information about
Check Point products, consult Check Point Support.
Welcome to the Check Point family. We look forward to meeting all of your current and future network,
application and management security needs.

3000 Appliances Overview

The 3000 Security Gateway appliance series is built to protect branch offices from both known and
unknown threats with Anti-Virus, Anti-Bot, SandBlast Threat Emulation (Sandboxing), and SandBlast
Threat Extraction technologies.
The Check Point 3000 Security Gateway appliance series combines the most comprehensive security
protections to safeguard your branch and small office deployments. The 3000 Security Gateway appliance
series is available in a compact desktop form factor. This powerful Security Gateway appliance is
optimized to deliver real-world threat prevention to secure your critical assets and environments.
The latest 3000 appliances, 3600 Base and 3800 Base, come with a first year subscription to the full
SandBlast Prevention suite.

3000 Appliances Getting Started Guide   |   23

 Table of Contents

Shipping Carton Contents

This section describes the contents of the shipping carton.

Item Description

Appliance 3100 , 3200, 3600, or 3800

Cables and n 1 power adapter (in 3600/3800 optional 2nd power adapter)
Adapters n 1 standard RJ-45 network cable
n 1 RJ-45 to DB9 serial console cable
n 3100/3200 - 1 miniUSB to USB serial console cable
3600/3800 - 1 USB Type-C console cable
n 1 RJ-45 loopback adapter
n 3100/3200 - Assembly kit bag - Contains the power adapter retaining clip
accessories (clip, bracket, and screw)

Documentation n Quick Start Guide

n User license agreement
n Battery Warning document
n Image Management Guide (only applicable if the software image contains
more than one release)

Terminology
The following terms are used in this guide:
n Security Gateway : The security engine that enforces the organization's security policy and acts as
a security enforcement point.
n Security Policy : The Policy created by the system administrator that regulates the flow of incoming
and outgoing communication.
n Security Management Server: The server used by the system administrator to manage the
Security Policy. The organization's databases and Security Policies are stored on the Security
Management Server and downloaded to the Security Gateway.
n SmartConsole: GUI applications that are used to manage various aspects of Security Policy
enforcement.
n SmartDashboard: A Legacy SmartConsole GUI application that is used by the system administrator
to create and manage specific settings for some Software Blades.
n Locally Managed Deployment: When all Check Point components responsible for both the
management and enforcement of the Security Policy (the Security Management Server and the
Security Gateway) are installed on the same machine.
n Centrally Managed Deployment: When the Security Gateway and the Security Management
Server are installed on separate machines.

3000 Appliances Getting Started Guide   |   24

 Table of Contents

Mounting the 3000 Appliances in a

Rack
For 3100/3200 appliances there is an optional rack mounting kit that lets you mount the appliance in a
standard rack. For more information about installing this kit, see the appliance home page.
For 3600/3800 appliances, see the 1500, 3600, and 3800 Universal Rack Mount User Guide.

Appliance Physical Specifications

These are the physical specifications of the Check Point appliance.

Regulated Maximum Operating Electrical

Appliance Width Depth Height
Model Temperature Specifications

3100 PB-10 8.28 in 8.27 in 1.65 in 32°F - 104°F 100V(2.5A)-

3200 (21.03 (21 cm) (4.19 cm) 0°C - 40°C 240V(1.5A)
cm) 47-63HZ

3600 QB-1 8.28 in 8.27 in 1.65 in 32°F - 104°F 100V(2.5A)-

3800 (21.03 (21 cm) (4.19 cm) 0°C - 40°C 240V(1.5A)
cm) 47-63HZ

Appliance Air Vents

Make sure that the appliance air vents have sufficient airflow from front to rear when the
3100/3200/3600/3800 appliance is mounted in a rack.

Important - If the appliance vents are blocked, the appliance can become too hot and it
can be damaged.

The appliance and rack rails have been tested in extreme conditions and do not block air flow to the
appliance. These appliances are specifically designed to install with these rails.

3000 Appliances Getting Started Guide   |   25

 Table of Contents

3000 Appliances Getting Started Guide   |   26

 Table of Contents

Configuring 3000 Appliances

Starting the Appliance
Connect the appliance to a power source to turn on the appliance. When the appliance is ready, you can
do the First Time Configuration Wizard to configure it.

To start the appliance:

Connect the power adapter cord to the power supply inlet receptacle in the rear panel.
The appliance turns on.

Available Software Images

The 3000 Appliances come with different software images. See the 3000 Appliances home page.
Reverting to a software image takes a few minutes. To follow progress and see when the appliance is
ready, connect to the appliance using a serial console.

Initial Configuration
Configure the appliance with the First Time Configuration Wizard. See the Installation and Upgrade Guide
related to the software version.
Go to the Installing Security Gateways on Appliances section, and see the instructions to use the First
Time Configuration Wizard.

Creating the Network Object

Configure the 3000 Appliance object as a Security Gateway object in the Security Management Server
database.
1. Connect with SmartDashboard (R77.30) or SmartConsole (R80.10 or higher) to the Management
Server.
2. Configure a new Security Gateway object for the appliance.
3. Enter the IP address for the appliance.
4. For a centrally managed deployment, establish Secure Internal Communication (SIC) between the
Security Gateway and the Security Management Server. Enter the activation key you used in the
First Time Configuration Wizard.
5. Configure the topology.
6. Configure and install the Security Policy.

Advanced Configuration
You can configure advanced options on Gaia from the Portal or the CLI.

3000 Appliances Getting Started Guide   |   27

 Table of Contents

Connecting to the 3000 Appliances CLI

To connect to the command line interface of the 3000 Appliances, use one of these:
n An SSH connection to the management interface (if SSHD is configured).
n A serial console cable and terminal emulation software, such as PuTTY (from Windows) or Minicom
(from Unix/Linux).
3000 Appliances support these serial console connectivity options:
l Mini USB - Using the included mini USB to USB console cable in 3100/3200.
l USB Type-C - Using the included USB Typc-C console cable in 3600/3800.
l RJ45 - Using the included DB9 DTE to RJ45 serial console cable.
Connection parameters are: 9600bps, 8 bits, no parity, 1 stop bit (8N1), Flow Control - None.
If you use both the mini USB and RJ45 console ports, the mini USB port has priority. To use the RJ45
port, disconnect the mini USB console cable.
When you have completed using the RJ45 port, reconnect the miniUSB console cable.

Note - To use the miniUSB/USB Type-C console port, a driver must be installed on the console
client machine (desktop/laptop). For installation instructions and download link, see the appliance
home page.

3000 Appliances Getting Started Guide   |   28

 Table of Contents

3000 Appliances Hardware

Front Panel
3100/3200

3600/3800

Item Component Description

1 On board Six 10/100/1000Base-T RJ-45 ports.

Ethernet
ports

2 Identification A slide out card that identifies the appliance and shows its serial number and
service tag MAC address.

3 USB ports Two USB ports.

3000 Appliances Getting Started Guide   |   29

 Table of Contents

Item Component Description

4 RJ45 console For a serial connection to the appliance. See "Connecting to the 3000
port Appliances CLI" on page 28.

5 Console port 3100/3200 - MiniUSB console port for a serial connection to the appliance.
3600/3800 - USB Type-C console port for a serial connection to the
appliance.
See "Connecting to the 3000 Appliances CLI" on page 28.

6 System LEDs System power n Off - System power off

n On (Green) - System power on

Storage device n Off - No storage device activity

activity n On (Green) - Read/write activity

Alert n Off - No faults detected

n Blinking red - System fault
detected

Location In 3100/3200 only -

n Off - Location beacon is turned off
n Blinking blue - Location beacon is
turned on through the Gaia
WebUI software

Power supply In 3600/3800 only -

status
n Off - No power/no status
n Amber - Power supply fault is
detected
n Green - All power supplies are
functioning

7 Reset Insert a pin for 5 to 8 seconds to perform a hardware reset.

8 Factory In 3100/3200 only - Insert a pin to restore the appliance to its factory defaults.

3000 Appliances Getting Started Guide   |   30

 Table of Contents

Rear Panel
3100/3200

3600/3800

Item Component Description

1 Cooling fan
unit

2 Power inlet Connects to the power adapter unit's cable.

receptacle In 3100/3200 - Install the power adapter retainer clip to avoid accidental power
cord removal.
In 3600/3800 - Push in the power plug, then screw in the adapter cable. When
the LED is green, power is switched on.

3 Main power
switch

Installing the Power Adapter Retaining Clip in 3100/3200

Appliances
In 3100/3200 appliances, the Assembly Kit bag that comes in the Accessories bag in the shipping carton
contains the retaining clip parts:

3000 Appliances Getting Started Guide   |   31

 Table of Contents

n Retaining clip
n Bracket
n Screw
Make sure you have these parts and a screwdriver to install the retaining clip.
In 3600/3800 appliances, the adapter cable is screwed (there is no retaining clip).

Item Description

1 Retaining clip

2 Bracket

3 Screw

3000 Appliances Getting Started Guide   |   32

 Table of Contents

Item Description

4 Slot for placing the bracket

5 Hole for the screw

To install the retaining clip:

1. Place the bracket (#2) in its designated slot (#4) on the rear of the appliance.
2. Insert the screw (#3) through the bracket hole and screw it into the hole (#5).
3. Squeeze the retaining clip (#1) sides and insert the hooks into the two bottom holes on the bracket
(#2).

To secure the power adapter cord with the retaining clip:

1. Make sure the retaining clip is in its open position.
2. Connect the power adapter cord to the power outlet.

3000 Appliances Getting Started Guide   |   33

 Table of Contents

3. Push down on the retaining clip to secure the cord.

Dual Redundant BIOS

To ensure resilience in the event of a BIOS failure, 3000 Appliances are equipped with dual redundant
BIOS images.
If an appliance encounters a BIOS failure, it will boot up from a recovery, read-only BIOS image that
enables full functionality of the appliance.
These notifications are shown in the event of a BIOS failure:

3000 Appliances Getting Started Guide   |   34

 Table of Contents

n The appliance's Alert LED on the front panel will blink red.
n The Gaia WebUI Hardware Health window shows that the BIOS sensor is Invalid and its status is
Off.
n An SNMP trap message (if the biosFailure trap was configured in the WebUI or through Clish).

To recover from a BIOS failure, see sk108517 or contact Check Point support. The appliance is fully
functional until the BIOS recovery is completed.

Replacing and Upgrading Components

The 3000 Appliances has parts that you can easily replace to minimize downtime. There are also
components that you can install to upgrade the appliance. These are the parts and components that can
be used with the appliance:
n Shelf rack mounting - Optional for the appliances
n AC Power Adapter
For more information about installing these components, see the appliance home page.
Unless directed to do so by Check Point technical support, you are prohibited by warranty and support
agreements from replacing any parts.

3000 Appliances Getting Started Guide   |   35

 Table of Contents

Restoring Factory Defaults

If necessary, restore the appliance to its factory default settings.

Important - If you restore factory defaults, note that all information on the appliance is deleted.

Restoring from the Gaia Portal

Use the Gaia Portal to restore the appliance to the factory default settings.

To restore a Gaia appliance from the Gaia Portal :

1. In your web browser, connect to the management IP address:
https://<appliance_ip_address>
2. Log in to the Gaia Portal of the appliance with the administrator username and password.
3. In the left navigation tree, click Maintenance > Factory Defaults .
The Factory Defaults window opens. The image installed on the appliance is shown.
4. Click Apply .
The appliance reboots and installs the selected version from scratch.

Restoring from the Boot Menu

To restore the appliance from the Boot Menu:
1. Connect the supplied serial cable's RJ45 or USB type-C connector to the console port on the front of
the appliance.
2. From the computer, open a terminal emulation program such as PuTTY or Microsoft
HyperTerminal.
3. Configure the terminal emulation program:
n In PuTTY select the Serial connection type.
n In the HyperTerminal Connect To window, select a port from the Connect using list.
4. Define the serial port settings:
9600 BPS, 8 bits, no parity, 1 stop bit
5. From the Flow control list, select None.
6. Connect to the appliance.
7. Reboot or turn on the appliance.
The appliance initializes and status messages are shown in the terminal emulation program.

3000 Appliances Getting Started Guide   |   36

 Table of Contents

8. When the message "Press any key to see the boot menu" is shown, you have approximately four
seconds to hit any key to activate the Boot menu.
9. From the Boot menu, select the relevant Reset to factory defaults image.
10. Press Enter.
The appliance initializes and status messages are shown in the terminal emulation program.

Restoring from Gaia Clish

To restore the appliance from Gaia Clish:
1. Connect to the command line on the appliance.
2. Log in to Gaia Clish.
3. Run:

set fcd revert <image_name>

Example:

MyAppliance> set fcd revert Gaia_R80.30

Warning! This command will erase all the current configuration on this appliance and will revert it
to the selected image.
Are you sure you want to continue such action? (Yes/No) [No]yes
Reverting to factory defaults Gaia_R80.30
MyAppliance>
Broadcast message from admin (Tue May 14 12:19:16 2019):
The system is going down for reboot NOW!
INIT: Sending processes the TERM signal

3000 Appliances Getting Started Guide   |   37

 Table of Contents

Registration and Support

Registration
The appliance requires a product-specific Check Point license.
Connect to the Portal of the appliance (from Advanced mode, select Maintenance > Licenses ) to find the
MAC address that is required to obtain a license.
Alternatively, you can read the MAC address off the service tag on the appliance. Refer to "Front Panel" on
page 29.

Support
For additional technical information about Check Point products, consult the Check Point Support Center.

Where To From Here?

You have the basics to get started. The next step is to get more advanced knowledge of your Check Point
software.

3000 Appliances Getting Started Guide   |   38