This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Hugo_vd_Kooij
Advisor
‎2019-12-03 02:07 AM

Memory leak in 14xx appliances with IPS enabled

Hi,

Do any of you have ticket(s) open in regard to memory leak issue in the 14xx appliances with IPS enabled?

So far we have seen this in 2 distinct setups. In on of these it only happened on 1 of the 30 remote offices. But we have run about a dozen different firmware versions and the issue was never resolved.

If anyone want to share their ticket number(s) in a private message we can join forces and make Check Point more aware of the problem.

Regards, Hugo.

<< We make miracles happen while you wait. The impossible jobs take just a wee bit longer. >>
0 Kudos
6 Replies
Nik_Bloemers
Advisor
Advisor
‎2019-12-03 02:22 AM

Hi Hugo,

In the environment I'm currently working in we have multiple, different model 14xx series appliances running IPS and I'm not aware of any memory leak issues in the R77.20.86 / .87 releases. We're running the Optimized profile on these models.

Nik
0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-12-03 03:44 AM

Did you follow Optimizing an IPS profile for SMB and use a specially created SMB IPS profile ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Hugo_vd_Kooij
Advisor
‎2019-12-03 08:05 AM
In response to G_W_Albrecht

I have not gone into those details as another team member is doing the technical part of the ticket. But we have had a good set of Check point escalation engineers going over the setup in remote sessions as well.
(But we all make mistakes or have our blind spots.)
So I don't know the exact profile specifics. But there is a seperate IPS profile for the 14xx units.
<< We make miracles happen while you wait. The impossible jobs take just a wee bit longer. >>
0 Kudos
HristoGrigorov
Mentor
Mentor
‎2019-12-03 09:11 AM
In response to Hugo_vd_Kooij

These appliances have very limited "ability" to leak memory because the amount of free memory is so low that it goes in aggressive mode real quick and then things go real bad. Are you sure it only leaks memory without any processes crashing or kernel panics ?

0 Kudos
Maarten_Sjouw
Champion
Champion
‎2019-12-03 07:40 AM

Hugo,

Was that specific unit ever replaced by another box?
Recently we had a problem with a 1470 with VPN's that would drop out every early morning, as the company we support these units for is an internationally operating company with some very important site in ASIA, they were calling us every time in the early morning.
We had one in stock preconfigured it and shipped to the site, since then the issue is gone.
Regards, Maarten
0 Kudos
Hugo_vd_Kooij
Advisor
‎2019-12-03 08:01 AM
In response to Maarten_Sjouw

In the most recent case we have a confirmed memory leak that is under investigation by R&D.

In the previous case that customer gave up on IPS after 1 year and about a dozen hardware swaps.
<< We make miracles happen while you wait. The impossible jobs take just a wee bit longer. >>
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events