PDA

View Full Version : Blackhole



erasme
2013-04-02, 07:50
Hi all,

I’m setting up an architecture based on checkpoint appliances and i need to route all the traffic witch is not wanted to a blackhole and most importantly log this traffic. I am using 4800 appliances running Gaia R75.40 and I know that I can define the firewalls to “blackholed” the unwanted traffic with a static default route. But my question is : Can I in any way log the traffic which goes through the default route?
I have been searching on Checkpoint’s website and the web without any results, so here i am.

Thanks in advance.

Sebastien


PS : Sorry if my thread is not at the good place.

jesmith15
2013-04-02, 15:12
I don't understand. Why not simply define a rule to drop the unwanted traffic and set the rule to log?

Jason

erasme
2013-04-02, 17:14
Thank you Jason for your answer.

Indeed this is the best and easiest way.
I misunderstood the packet processing order and thought the routing was done before rulebase filtering.

My bad...

Sebastien