This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Elias
Contributor
‎2023-12-23 08:49 AM
Jump to solution

IPS Protection - Scrambling

Hi team, I search information about IPS protection Scrambling but , I find nothing, what does this DNS protection refer to?

0 Kudos
2 Solutions

Accepted Solutions
Chris_Atkinson
Employee Employee
Employee
‎2023-12-23 05:14 PM
Jump to solution

From memory this relates to cache poisoning mitigations

https://sc1.checkpoint.com/documents/R80.20/SmartConsole_OLH/EN/html_frameset.htm?topic=documents/R8...

Refer also: sk35624, sk106246, sk107527

 

Scrambling.png

CCSM R77/R80/ELITE

View solution in original post

(1)
Timothy_Hall
Champion Champion
Champion
‎2023-12-24 05:26 AM
Jump to solution

Never enable this protection.  Along with Network Quota and Small PMTU, enabling any of these will cause all traffic traversing the gateway to go F2F/slowpath!  

Gateway Performance Optimization R81.20 Course
now available at maxpowerfirewalls.com

View solution in original post

(1)
5 Replies
Chris_Atkinson
Employee Employee
Employee
‎2023-12-23 05:14 PM
Jump to solution

From memory this relates to cache poisoning mitigations

https://sc1.checkpoint.com/documents/R80.20/SmartConsole_OLH/EN/html_frameset.htm?topic=documents/R8...

Refer also: sk35624, sk106246, sk107527

 

Scrambling.png

CCSM R77/R80/ELITE
(1)
Elias
Contributor
‎2023-12-24 08:29 AM
In response to Chris_Atkinson
Jump to solution

Thank you 

0 Kudos
michaelgo
Employee
Employee
‎2024-02-29 02:39 AM
In response to Elias
Jump to solution

I do not want to sound rude, but why did you ask? The protection indicates critical performance impact together with low confidence and low severity which must be a very strong indication that you should never enable it for multiple reasons (see response from Timothy_Hall for example).

0 Kudos
Timothy_Hall
Champion Champion
Champion
‎2023-12-24 05:26 AM
Jump to solution

Never enable this protection.  Along with Network Quota and Small PMTU, enabling any of these will cause all traffic traversing the gateway to go F2F/slowpath!  

Gateway Performance Optimization R81.20 Course
now available at maxpowerfirewalls.com
(1)
_Val_
Admin
Admin
‎2024-02-29 03:28 AM
Jump to solution

This is one of the legacy IPS features that should have been dropped ages ago. It is about manipulating some parameters of IP packet to scramble certain signs of the OS you are using. The last time it was relevant was in the early 90s of the last century. 

As mentioned multiple times here, don't even think about enabling it 🙂

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events