The Check Point Firewall Kernel is the core component of the Gaia operating system and an integral part of traffic inspection process. There are two procedures available for debugging the firewall kernel. Which procedure/command is used for detailed troubleshooting and needs more resources?
The Check Point Firewall Kernel provides two commands for debugging: 'fw ctl debug/kdebug' and 'fw ctl zdebug', with the former being used for more detailed troubleshooting requiring more resources. The 'fw ctl debug/kdebug' command provides comprehensive debugging information but increases CPU load, making it suitable for in-depth analysis during scheduled maintenance windows.
R81/R81.20 Quantum Security Gateway Administration Guide Kernel Debug Procedure Important: - Debug increases the load on the CPU on the Security Gateway / Cluster Members / Security Group Members. Schedule a maintenance window. - We strongly recommend to connect over serial console to your Security Gateway / each Cluster Member / Scalable Platform Security Group Members. This is to prevent a possible issue when you cannot work with the CLI because of a high load on the CPU. answer D
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_CLI_ReferenceGuide/Topics-CLIG/FWG/fw-ctl-debug.htm