Thread: rate limiting?
View Single Post
  #2 (permalink)  
Old 2006-01-08
Sergej Sergej is offline
Senior Member
  
Join Date: 2005-11-21
Location: Europe, Lithuania
Posts: 291
Rep Power: 4
Sergej has an average reputation (10+)
Default Re: rate limiting?
There is "Network Quota" SmartDefence feature in the newest versions of Checkpoint. You can limit the number of concurrent sessions per second. Use object with exception to describe all other hosts (exclude them)

Last Update: 01-February-2005
References: CAN-2002-0957 CAN-2002-0629
Supported from Version: NG R54
Severity: High
Description:
Network Quota enforces a limit upon the number of connections that are allowed from the same source IP, to protect against Denial Of Service attacks.

When a certain source exceeds the number of allowed connections, Network Quota can either block all new connection attempts from that source or track the event.
Last edited by Sergej; 2006-01-08 at 13:33.
Reply With Quote