[177740] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Checkpoint IPS

daemon@ATHENA.MIT.EDU (Eugeniu Patrascu)
Tue Feb 3 10:21:28 2015

X-Original-To: nanog@nanog.org
In-Reply-To: <54CF733C.1030205@free.fr>
Date: Tue, 3 Feb 2015 17:21:13 +0200
From: Eugeniu Patrascu <eugen@imacandi.net>
To: mh@xalto.net
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

On Mon, Feb 2, 2015 at 2:53 PM, Michael Hallgren <m.hallgren@free.fr> wrote:

> Hi,
>
> Someone has positive or negative experience running
> Checkpoint IPS cluster over ``long distance'' synch.
> network? Real life limitations? Alternatives? Timers?
>
>
You can do "stretched" with Check Point as long as the network delay is
less than around 70-100 msec RTT or so. If you do this, run your firewalls
in Active/Standby modes.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[177740] in North American Network Operators' Group

Re: Checkpoint IPS

daemon@ATHENA.MIT.EDU (Eugeniu Patrascu)Tue Feb 3 10:21:28 2015

daemon@ATHENA.MIT.EDU (Eugeniu Patrascu)
Tue Feb 3 10:21:28 2015