Create a Post
Showing results for 
Search instead for 
Did you mean: 

Checking the number of connection on a specific IP

Dear Mates

We have a couple of services published on the internet using static NAT on our Check Point Firewalls. I was asked whether it is possible to provide a total number of connections (accepted/dropped) by the firewall for a specific public address configgured on the firewall.

Thanks in advance

0 Kudos
2 Replies

For active connections you could review the connections table (regular firewall or SecureXL).
For drops you probably have to look at the logs to determine this.
0 Kudos

Current entries on the gateway in the connection table. Some of them are double.

# fw tab -t connections -u -f | grep <the ip> | wc -l

For SecureXL:

# fwaccel conns | grep <the ip> | wc -l

Or use the hit counter in the rule.