Setting the Check Point Maximum Concurrent Connections from Linux

book

Article ID: 168011

calendar_today

Updated On:

Products

XOS

Issue/Introduction

How to display the maximum concurrent connections setting via the Check Point command lineN/A

Cause

This article explains how to verify Check Point Maximum Concurrent Connections configuration using the command line instead of the GUI.

Resolution

Check Point has a GUI parameter to set the maximum concurrent connections allowed in a cluster. This parameter can be found under Gateway Cluster Properties -> Capacity Optimization -> Maximum concurrent connections in the Check Point GUI.

By default, VSX uses 15000 and FW1/SG 25000. If you cannot access the GUI to see current setting , the parameter can be displayed using the following commands:

VSX:
 

vsx_1 (X80): [vs0] root$ vsx stat -v -l

<output removed>
Connections number: 0
Connections peak: 0
Connections limit: 15000 (this is the value configured in the GUI)

FW1 or CPSG:
 

fw_1 (x80): root$ fw ctl pstat
Machine Capacity Summary:
Memory used: 1% (10MB out of 800MB) - below low watermark
Concurrent Connections: 0% (1 out of 24900) - below low watermark (25000 is the value configured in the GUI)

<output removed>

Workaround

N/A