- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Why do Hackers Love IoT Devices so Much?
Join our TechTalk on Aug 17, at 5PM CET | 11AM EST
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi
Can someone clarify for me if the out of the box service objects are more than just a TCP port match?
For example, if I choose the SSH object as my service in a access policy rule does it behave differently to me creating a from-scratch service object called mySSH that also matches TCP/22? Is there any application awareness in it or is it just a TCP match with some specific timeouts?
Hope that makes sense...
Thanks
It depends on the specifics of the particular service object.
Then if you use objects found in the AppWiki or that otherwise have "protocol signature" enabled then more advanced recognition is performed rather than simple ports.
https://appwiki.checkpoint.com/appwikisdb/public.htm
Please see my post here which should fully answer your question:
You definitely got correct answers from both @Timothy_Hall and @Chris_Atkinson , but I will tell you from my own personal experience, its hit and miss, depending on which service you use. Sometimes, it behaves the same, sometimes not...
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY