Firewall Changes - Knock on effects?

Hi All

We have a sonicwall NSA 3500 filewall appliance and we are thinking about enabling the following features.

Enable TCP handshake enforcement
Enable TCP checksum enforcement

Can anybody explain what effect this will have?

(I have a brief idea but i am playing dumb to make sure i havent overlooked anything).

Thanks for any comments.
LVL 1
ict-torquilclarkAsked:
Who is Participating?
 
Kamran ArshadIT AssociateCommented:
Hi,

The TCP Handshake enforcement requires a successful three way handshake for all TCP connections. It prevents DDOS attacks by dropping connections which are incomplete and only allow a connection after three way handshake. The  Enable TCP checksum enforcement  drops a packet If an invalid TCP checksum is calculated. You can also check the below link;

https://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3768&p=t
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.