This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Cypress
Contributor
‎2024-10-04 02:37 PM
Jump to solution

Check Point session timeout question

Sorry I have another newbie question.  In TCP Services, you have the ability to click Advanced and change the session timeout from the default value (3600 seconds - 1 hour).

My question is, is this timeout only a factor for IDLE connections?  i.e. if a TCP session is actively passing traffic, sending and receiving keep-alive packets, etc.. then the session will NOT time out?

Just trying to sanity check some "First packet isn't SYN" drops.  I can filter by source port (s_port:xxxx) and see that the session was established with an Accept, and then exactly 1 hour later, I see the "First Packet isn't Syn" drop which to me may mean the app is using long-lived sessions without keepalives... OR it might mean the app is configured to send a keepalive every 60 minutes and is just barely not making the cutoff? 

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2024-10-04 03:52 PM
Jump to solution

It's an idle timer, yes.

View solution in original post

1 Reply
PhoneBoy
Admin
Admin
‎2024-10-04 03:52 PM
Jump to solution

It's an idle timer, yes.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events