This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ITTech
Explorer
‎2024-07-03 12:12 AM

vpn problem with high ports

good morning

I have a problem with my cluster XL R81.10 Take 139.

Client has configured a monitoring task with the application Teenable, when it launches the monitoring, you can see that the computer cpu is saturated, but only happens with high ports, keep in mind that this monitoring is done through vpn.

I attach evidence:

cpview.PNGsmartview.png

0 Kudos
5 Replies
PhoneBoy
Admin
Admin
‎2024-07-03 02:24 PM

You should probably fw fast_accel the traffic so it doesn't get inspected by the higher-level blades.
https://support.checkpoint.com/results/sk/sk156672 

ITTech
Explorer
‎2024-07-03 10:11 PM
In response to PhoneBoy

Hi Phoneboy

Thans for your answer, Actually the appliance has the vpn accel in state on

0 Kudos
PhoneBoy
Admin
Admin
‎2024-07-08 06:56 AM
In response to ITTech

Traffic that hits Medium Path is accelerated, but it's more heavy than fully accelerated traffic.
Output of Super Seven commands might be helpful here: https://community.checkpoint.com/t5/Scripts/S7PAC-Super-Seven-Performance-Assessment-Commands/m-p/40... 

0 Kudos
the_rock
Legend
Legend
‎2024-07-03 03:43 PM

I agree with Phoneboy, makes most logical sense in your case.

Andy

0 Kudos
emmap
Employee
Employee
‎2024-07-03 06:47 PM

Tenable puts out a lot of connections that then have to be decrypted/encrypted by the gateway in your case, so it's not too surprising that there's a load issue. Is there a way to 'turn down' tenable so that it's doing its work more slowly? 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top