- Products
- Learn
- Local User Groups
- Partners
- More
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
Join our TechTalk: Malware 2021 to Present Day
Building a Preventative Cyber Program
Be a CloudMate!
Check out our cloud security exclusive space!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi
I'm evaluating the Threat Emulation and I have to do the sizing.
Is it possibile to find a document that indicates how many files to consider every day for web and email traffic?
Thanks a lot
Never saw such a docu before, maybe other mates do.
Maybe another way would be implementing a PoC in a VM and enabling sizing mode as per sk93598
That depends on the amount of mails your organization sends and receives and the web activity of the users and servers.
In addition it depends on you, if you want all supported files to be emulated and how many exceptions you want to configure, for instance for Windows updates.
Hi
Thanks for your answer.
But if I working for a customer that is not able to calculate the amount of mails I'm looking for a documentation that help to calculate in base of statistical data how to dimension a device.
.
Is it possible to find a document that help to understand eventually traffic for email o http in base on a number of user?
Thanks
Never saw such a docu before, maybe other mates do.
Maybe another way would be implementing a PoC in a VM and enabling sizing mode as per sk93598
The problem is that each organization is different in terms of number of files emulated, etc.
Best approach is to sample from your real environment, which this SK discusses how to do.
sk93598 will help you but every topology has different traffic and file characteristic.
Hi Giancarlo,
as a very rough estimation you could calculate 2 unique files per user per day for mail traffic and 5 unique files per user per day for web traffic.
This is a very rough estimation and as Dameon already mentioned live production traffic could vary.
The best I found is to ask the customer for statistics on their existing mail gateways/servers and web proxies.
Even better for sizing would be to get the different file type distribution within those traffics.
Regards Thomas
Thank for answer, now is clear!
Giancarlo
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY