Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Arthur_DENIS1
Collaborator

Multipath TCP Connection (MPTCP)

Hi,

I try to integrate Mulipath TCP behing CHeckpoint firewall, but seems to be not possible...

I found this SK:
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

And indeed, TCP flag is stripped.

 

Any ways to allow this flag ?

 

Thanks,
Arthur

0 Kudos
Reply
2 Replies
PhoneBoy
Admin
Admin

From a security perspective, MPTCP means the security gateway will not necessarily be able to see the entire packet flow.
As a result, the security gateway could make incomplete/incorrect security decisions, resulting in unpredictable behavior.

Arthur_DENIS1
Collaborator

Indeed, but the but here is to allow my WAN aggregator to a specific IP (source IP to destination IP only).

And even if is less secure, we should keep the availability to allow this flag, isn't ?

0 Kudos
Reply