The New Quantum DDoS Protector
Integration with Playblocks
Keep Your Networking Peers Happy
With Secure SD-WAN
Infinity Events Improvements
Help us with the Short-Term Roadmap
Secure the GenAI Revolution!
The All-New GenAI Security from Check Point
CheckMates Toolbox Contest 2024
Make Your Submission for a Chance to WIN up to $300 Gift Card!
CheckMates Go:
Harmony Endpoint -- What's New and Deployment
My preferred architecture is to have layer 2 bridge in front of the addressable L3 device.
In your case,since ASA is directly accessible from the Internet, it is easier to run DDOS against (unless there is additional filtering performed on the border routers).
If you have a firewall/IPS in transparent bridge on the edge, you can drop a lot of stuff before it hits the device that actually has to accept connections.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY
