Who rated this post - Check Point CheckMates

Boosting Performance & Stability
with Harmony Endpoint E88.70!

It's Here!
CPX 2025 Content

Get It Now

Zero Trust: Remote Access and Posture
Help us with the Short-Term Roadmap

Take the Survey

The Future of Browser Security:
AI, Data Leaks & How to Stay Protected!

Watch now

CheckMates Go:
Recently on CheckMates

LISTEN NOW

If you have DNS Malware Trap enabled, yes.
See this thread for more details: https://community.checkpoint.com/t5/IPS-Anti-Virus-Anti-Bot-Anti/DNS-Malware-trap-DNS-servers/m-p/53...

The IP address in question I believe is the default.
If you look at the whois record for that IP, you can see that it's assigned to Check Point.
It's a black hole (nothing answers there).
If a given host was trying to reach out to something potentially malicious, they will instead reach nothing.

Who rated this post

Employee

Rating date: