This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
flachance
MVP Silver
MVP Silver
‎2026-01-28 07:57 AM
Jump to solution

out of the box DoS protection

I can't seem to find clear information for that anywhere. When deploying a gateway is there any DoS protection included/activated by default?

Or do you have to configure Rate limiting rules (sk112454)?

We're on R81.20

0 Kudos
1 Solution

Accepted Solutions
Tal_Paz-Fridman
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2026-01-28 09:05 AM
Jump to solution

Please refer to:

Important changes in the IPS "SYN Attack" (SYN Defender) protection

https://support.checkpoint.com/results/sk/sk120476 

 

Also to:
sk112454 - How to configure Rate Limiting rules for DoS Mitigation in R80.20 - R81.20

https://support.checkpoint.com/results/sk/sk112454 

View solution in original post

6 Replies
Tal_Paz-Fridman
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2026-01-28 09:05 AM
Jump to solution

Please refer to:

Important changes in the IPS "SYN Attack" (SYN Defender) protection

https://support.checkpoint.com/results/sk/sk120476 

 

Also to:
sk112454 - How to configure Rate Limiting rules for DoS Mitigation in R80.20 - R81.20

https://support.checkpoint.com/results/sk/sk112454 

flachance
MVP Silver
MVP Silver
‎2026-01-28 10:32 AM
In response to Tal_Paz-Fridman
Jump to solution

thanks. So nothing out of the box. Both have to be configured / enabled.

SYN Defender is fairly straight forward.

Rate limiting rules not so much. From the examples it looks like you have to specify a source IP. Maybe I’m not reading these rights but then you’d have to know about a problematic IP in advanced?

Also what would be a good general number for the maximum number of concurrent active connections to start with?

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2026-01-28 10:39 AM
In response to flachance
Jump to solution

I would enable below, if I were you. That way, fw would adjust memory/cpu usage based on amount of connections.

Screenshot_1.png

Best,
Andy
"Have a great day and if its not, change it"
flachance
MVP Silver
MVP Silver
‎2026-01-28 10:52 AM
In response to the_rock
Jump to solution


Thanks it's already configured this way. So i guess there is something out of the box 😁

the_rock
MVP Diamond
MVP Diamond
‎2026-01-28 10:53 AM
In response to flachance
Jump to solution

If you say so ; - )

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2026-01-28 10:18 AM
Jump to solution

I would also refer to links Tal provided.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events