asked on checkpoint firewall - efficiency drive
Hello All
we run a 2 node cluster of checkpoint firewall with a number of remote sites coming up to us over a MPLS network presented to us on a Cisco router
this Cisco router is connected to a dedicated interface on the firewall
we are ultimately looking to reduce the amount of spurious traffic that comes up this link and hots the firewall only to be discarded
we have a process to switch the firewall log file at 23.59 every work day
doing some quick and dirty analysis on the fw logs we seem to be seeing approx 15 - 20 percent of log entries being logged as dropped or rejected
my question is; is this a reasonable overhead for the firewall. what sort of percentage of your log entries are dropped or rejected
thank you
Laurence
we run a 2 node cluster of checkpoint firewall with a number of remote sites coming up to us over a MPLS network presented to us on a Cisco router
this Cisco router is connected to a dedicated interface on the firewall
we are ultimately looking to reduce the amount of spurious traffic that comes up this link and hots the firewall only to be discarded
we have a process to switch the firewall log file at 23.59 every work day
doing some quick and dirty analysis on the fw logs we seem to be seeing approx 15 - 20 percent of log entries being logged as dropped or rejected
my question is; is this a reasonable overhead for the firewall. what sort of percentage of your log entries are dropped or rejected
thank you
Laurence
Hardware FirewallsSoftware Firewalls
Last Comment
btan
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.