Smartdefense Update Problems

View: New views

2 Messages — Rating Filter: Alert me

Smartdefense Update Problems

by Jalal Bouhdada :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hello,
After an update of smartdefense on our checkpoint NG firewall, I have now serious performance troubles. The CPU load of the firewall is 90% and users are unable to establish https session to some sites through the firewall anymore.

Even after disabling most of the application inspection for https and MSQL and restoring the policy to an old one (database revision control), the firewall is just still behaving differentely!

I think that this update have made some modications to the firewall kernel, which explains the strange behaviour of the firewall.

Any idea about the behaviour of smartdefense?

Greetings,
Jalal Bouhdada

Re: Smartdefense Update Problems

by Stefano Zanero-2 :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Jalal Bouhdada wrote:

> After an update of smartdefense on our checkpoint NG firewall, I have
> now serious performance troubles.

Was there a particular reason for the update ? Cannot you just roll back ?

> Even after disabling most of the application inspection for https and
> MSQL and restoring the policy to an old one (database revision control),
> the firewall is just still behaving differentely!

Then just open the case through Checkpoint support.

Also, check out the TCP sequence verifier, which in at least one case I
know gave serious problems with HTTP sessions being continuously truncated.

Stefano