Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

AnsweredAssumed Answered

Aggressive aging setting for tcp and udp against ddos

Question asked by Networker Networker on May 21, 2018
Latest reply on May 22, 2018 by Marco Valenti

Like • Show 0 Likes0
Comment • 3

Hello

i want to make setting to resist ddos. what is your suggestion?for example what should be tcp and udp aggresive aging setting?

Thanks

No one else has this question

Outcomes

3 Replies

Enis Dunic May 21, 2018 11:03 AM
Mark Correct
Correct Answer
Hi,

CheckPoint has a sk about "Best Practices - DDoS attacks on Check Point Security Gateway". It includes settings for aggresive aging.

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk112241&partition=Advanced&product=Security
1 person found this helpful
Like • Show 0 Likes0
Actions
Networker Networker May 21, 2018 1:27 PM
Mark Correct
Correct Answer
hi i know this sk. but these values are default values. i want to learn what is the best values?
Like • Show 0 Likes0
Actions
- Marco Valenti @ Networker Networker on May 22, 2018 1:10 AM
  Mark Correct
  Correct Answer
  My guess is that this value should be modified according to the size of the appliance on the site that you are intending to protect , modifying tcp timeout can and will impact performance
  1 person found this helpful
  Like • Show 0 Likes0
  Actions

Recommended Content