Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
RainSky
Explorer

Check Point Setting TCP SYN

Hello

In the R80.40, have any method or policy can setting tcp syn packet max-length ?

ex:

If a remote hosts send tcp syn packet length over the 100 fromt port 80, then deny it.

This is a global setting or source hosts can be specified ?

Thank you.

 

 

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

There is no "easy" method in SmartConsole to do this.
You can try creating a service of type other with the following in the match field: tcp, dport=80, packetlen <= 100
However, I do not know if this will work.
It might be possible through modifying .def files to achieve this result, but it's not exactly obvious how and such changes are likely unsupported.

 

0 Kudos