- Products
- Learn
- Local User Groups
- Partners
- More
Are you a member of CheckMates?
×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Hi Guys,
Have been considering enabling PrioQ on an appliance that suffers from spikes from time to time.
Reading PrioQ SK came across the following limitation:
What is this queue? is it safe to disable?
Also, is it not a better core disposition 1 SND and 1 FW for dual core platforms?
What's your take?
Thanks!
As I stated in my book, 2-core firewalls are between a bit of a rock and a hard place. The only documentation I've seen for variable fwmultik_sync_processing_enabled being set to 0 states that "This limits the CPU to handle fewer stack functions simultaneously.. ". The other related kernel parameters are:
- fwmultik_sync_processing_limited = 0
- fwmultik_sync_processing_max = 2048
I guess setting fwmultik_sync_processing_enabled to 0 limits parallel processing or CPU monopolization by a Firewall Worker? Not really sure...
Here are the relevant pages from my book covering how to handle 2-core firewalls:
| User | Count |
|---|---|
| 19 | |
| 12 | |
| 8 | |
| 7 | |
| 7 | |
| 6 | |
| 5 | |
| 5 | |
| 4 | |
| 4 |
Wed 22 Oct 2025 @ 11:00 AM (EDT)
Firewall Uptime, Reimagined: How AIOps Simplifies Operations and Prevents OutagesTue 28 Oct 2025 @ 11:00 AM (EDT)
Under the Hood: CloudGuard Network Security for Google Cloud Network Security Integration - Overview