Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
iSu10
Participant

Connections/sec

Jump to solution

Using a Check Point GW 6400... in the specs it has:

Connections/sec = 90,000

Concurrent connections = 2/4/8

 

What happens to the UDP and TCP packet 90,000+1 ?

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
Just to explain the two numbers:
Concurrent connections refer to the number of connections where state can be maintained and are expressed in millions.
This is mostly a function of available memory.
Connections per second is a function of what the hardware is able to actually pass traffic on.
If you exceed the threshold, packets will get delayed and/or dropped at the hardware level before they are processed in software.
Note that not every connection passes packets every second.

That said, these numbers only apply under ideal conditions.

View solution in original post

6 Replies
PhoneBoy
Admin
Admin
Just to explain the two numbers:
Concurrent connections refer to the number of connections where state can be maintained and are expressed in millions.
This is mostly a function of available memory.
Connections per second is a function of what the hardware is able to actually pass traffic on.
If you exceed the threshold, packets will get delayed and/or dropped at the hardware level before they are processed in software.
Note that not every connection passes packets every second.

That said, these numbers only apply under ideal conditions.
iSu10
Participant

Is there a way or command that I can run to view these numbers live on our current FW? We have 4600 and 4800 running R77.30

We are looking to upgrade but want to make sure we go with the right sizing without going too 'overkill'.

0 Kudos
Timothy_Hall
Champion
Champion

Yep just run cpview and that live connection data is right on the Overview screen, you might need to scroll down slightly.

New 2021 IPS/AV/ABOT Immersion Self-Guided Video Series
now available at http://www.maxpowerfirewalls.com
iSu10
Participant
Got it, but does cpview have a way to see, averages and max points? Any tricks recommended here?
0 Kudos
Timothy_Hall
Champion
Champion

Not directly, but run cpview in historical mode with -t.  Use + and - to step forward/back in time while on the Overview screen, and you should be able to get a pretty good idea of these values over time.  Also try looking around in the System reports on the Gateway & Servers tab of SmartConsole, especially the Firewall History report.

New 2021 IPS/AV/ABOT Immersion Self-Guided Video Series
now available at http://www.maxpowerfirewalls.com
MartinTzvetanov
Collaborator
6400 has 3 models : Base/Plus/Max with 8/16/32 GB of RAM respectfully.
Concurrent connections = 2/4/8 means Base model gets 2 Millions of Concurrent connections, Plus gets 4 M and Max gets 8 M.
0 Kudos