This article describes a situation in which application monitor occasionally reports that Check Point R75.40 application is down during policy installation.Application monitor can report the Check Point application as Down for a short period (typically 5 seconds), even though the application is not suffering from any apparent issues:
<-- policy installation -->
Nov 15 23:21:00 cpsg_1 kernel: [fw_0];FW-1: No license for Performance Pack (SecureXL).
Nov 15 23:21:00 CBS cbshmonitord: [N] Violation (s=1, no alarm) occurred: module:7, item:1501 (H_ID_APP_RUNNING), component:Application, time:[1321395648]"Tue Nov 15 23:20:48 2011"
Nov 15 23:21:00 CBS cbsalarmlogrd: AlarmID 2814 | Tue Nov 15 23:21:00 2011 | minor | ap5 | applicationDown | Application down
Nov 15 23:21:00 CBS cbsalarmlogrd: AlarmID 2816 | Tue Nov 15 23:21:00 2011 | info | ap5 | moduleStateChange | Module state change (up)
Nov 15 23:21:00 CBS cbsalarmlogrd: AlarmID 2818 | Tue Nov 15 23:21:00 2011 | info | ap5 | vapStateChange | VAP state change (up)
Nov 15 23:21:05 CBS cbshmonitord: [N] Violation (s=1, no alarm) cleared: module:7, item:1501 (H_ID_APP_RUNNING), component:Application, time:[1321395665]"Tue Nov 15 23:21:05 2011"
Nov 15 23:21:05 CBS cbsalarmlogrd: AlarmID 2819 | Tue Nov 15 23:21:05 2011 | clear | ap5 | applicationDown | Application down | CorrelationID 2814
Nov 15 23:21:05 CBS cbsalarmlogrd: AlarmID 2820 | Tue Nov 15 23:21:05 2011 | info | ap5 | moduleStateChange | Module state change (active)
Nov 15 23:21:05 CBS cbsalarmlogrd: AlarmID 2822 | Tue Nov 15 23:21:05 2011 | info | ap5 | vapStateChange | VAP state change (active)