Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
NeilDavey
Contributor

Client-Initiated TLS Renegotiation DoS

We have had a pen test performed and an issue has been raised for our Gateways A,B and HA external IP's.

I have seen there "may" be a IPS Protection that could help with this:

TLS Client Initiated Renegotiation

But if we enabled this, the CP would potentially block this but we haven't actually fixed the issue at hand.

Would anyone know a fix for the attached or seen it themselves?

Thanks

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

The relevant CVE for this issue is: CVE-2011-1473
This is not something we are vulnerable to per:  https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
Specifically: Check Point puts all sorts of protections against DoS on the gateway (limiting the number of connections, limiting the amount of data, etc.)

0 Kudos