This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Imad981
Explorer
4 weeks ago
Jump to solution

Throughput Threat Prevention For Firewall Cluster

Hello everyone , 

Our client is requesting for a firewall cluster consisting of two physical appliances in the same Datacenter (Load Balacing mode) .
He has requested a requirement : "Threat prevention throughput of the firewall cluster: minimum 18 Gbps."

Given that the architecture is based on Leaf-Spine . Does this throughput need to be guaranteed for each firewall, given that the traffic will ultimately be handled by a single firewall? Or does this mean that each must ensure a minimum of 9 Gbps? Because we cannot split a single session through 2 firewalls .

Thanks for assistance .

Regards 

Imad

0 Kudos
2 Solutions

Accepted Solutions
Tal_Paz-Fridman
Employee
Employee
4 weeks ago
Jump to solution

Following the answers to the questions Chris raised you might want to consult Appliance Sizing Tool:

https://usercenter.checkpoint.com/ucapps/appliance-sizing-tool

 

View solution in original post

Lesley
Mentor Mentor
Mentor
4 weeks ago
In response to Tal_Paz-Fridman
Jump to solution

This is the best link. What customer does now have also Check Point? If so consider cpsizeme tool. 

Second step is to contact local office. There are to many factors that are important for a good sizeing. 

-------
If you like this post please give a thumbs up(kudo)! 🙂

View solution in original post

0 Kudos
6 Replies
Chris_Atkinson
Employee Employee
Employee
4 weeks ago
Jump to solution

It entirely depends on what the 18Gbps measure is in the customers view, aggregate peak traffic, redundant (protected) traffic?

Minimum might suggest one thing but probably best not to guess and ask him/her to clarify the requirement.

CCSM R77/R80/ELITE
0 Kudos
Imad981
Explorer
4 weeks ago
In response to Chris_Atkinson
Jump to solution

Hi Chris , Thanks for your answer 

 

In fact , the client specified that the operating mode of the proposed firewalls is load balancing , which means that they will both active in the same datacenter . The traffic wil not be redundant , which means that only one firewall in the same time will handle and inspect the traffic .

 

Regards

Imad

0 Kudos
Tal_Paz-Fridman
Employee
Employee
4 weeks ago
Jump to solution

Following the answers to the questions Chris raised you might want to consult Appliance Sizing Tool:

https://usercenter.checkpoint.com/ucapps/appliance-sizing-tool

 

Lesley
Mentor Mentor
Mentor
4 weeks ago
In response to Tal_Paz-Fridman
Jump to solution

This is the best link. What customer does now have also Check Point? If so consider cpsizeme tool. 

Second step is to contact local office. There are to many factors that are important for a good sizeing. 

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos
Imad981
Explorer
4 weeks ago
In response to Lesley
Jump to solution

Hi , 

The client wants that all the checkpoint appliance be active for a maximum throughput 18 gbps and 32M concurrent sessions.

We want to propose maestro MHO 140 and 2 Quantum appliances 7000 .

Can maestro ditribute in this case session between this appliances ? this way each appliance can handle one session to avoid overloading or overflowing .

 

0 Kudos
the_rock
Legend
Legend
4 weeks ago
Jump to solution

I agree with the guys  as well, cpsizeme and your local SE would be your best options here.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events