Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Which policy will work first threat prevention or access control

i am very much concerned with the checkpoint incoming traffic flow which policy will work first threat prevention or access control.

If anyone have idea please reply me

0 Kudos
2 Replies

To keep it simple and not involve protocol inspection and application control, I would say:

First the access control on the initial connect and then threat prevention on every packet.

0 Kudos
Highlighted

Please see my response in this thread, which presents simplified firewall order of operations from a policy layer perspective:

https://community.checkpoint.com/t5/Policy-Management/What-traffic-does-Gateway-scan-first-FW-IPS-th...

For way way more detail see this:

https://community.checkpoint.com/t5/General-Topics/R80-x-Security-Gateway-Architecture-Logical-Packe...

 

Book "Max Power 2020: Check Point Firewall Performance Optimization" Third Edition
Now Available at www.maxpowerfirewalls.com
0 Kudos