Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Daniel_Kavan
Advisor

secure a TCP service (non HTTPS)

Hi,

We have software that runs on a TCP high port that we want to secure more.  So, for the object I can't check that its a web server.     Is there any way to lock the service down more.    Customers connect to the port with software and then do their work.  Sometimes we run into a situation where users can't connect.  It's hard to white list this traffic but that seems like it would be an ideal solution.    When we get "attacks" its really in the form of people trying to connect over and over  creating a DoS effect for legitimate users.

0 Kudos
3 Replies
PhoneBoy
Admin
Admin

What specifically is blocking the traffic in the gateway?
0 Kudos
Daniel_Kavan
Advisor

Nothing, the server behind the gw is being overwhelmed.  I'm looking for ways to limit the amount traffic hitting the gateway based on TCP traffic.  IPS is the best defense, but I'm wondering if I can do more.

0 Kudos
PhoneBoy
Admin
Admin

Your best bet is to rate limit traffic.
You could do this with QoS or using our DDoS mitigation mechanisms.
See: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events