Manualshelf

User guide

ManualsBrandsCheck Point Software Technologies ManualsNetworkingSafe@Office 1000NW
481482483484485486487488489490
SmartDefense Categories
Chapter 14: Using SmartDefense 467
Max Ping Size
PING (ICMP echo request) is a program that uses ICMP protocol to check whether a
remote machine is up. A request is sent by the client, and the server responds with a reply
echoing the client's data.
An attacker can echo the client with a large amount of data, causing a buffer overflow.
You can protect against such attacks by limiting the allowed size for ICMP echo requests.
Table 86: Max Ping Size Fields
In this field…
Do this…
Action Specify what action to take when an ICMP echo response exceeds the Max
Ping Size threshold, by selecting one of the following:
Block. Block the request. This is the default.
None. No action.
Track Specify whether to log ICMP echo responses that exceed the Max Ping Size
threshold, by selecting one of the following:
Log. Log the responses. This is the default.
None. Do not log the responses.
Max Ping Size Specify the maximum data size for ICMP echo response.
The default value is 548.