Check Point DDoS Protector Reviews

We use this product as our DDoS mitigation solution. This is something that needs to be able to protect against DDoS attacks for Volumetric, Low, and Slow attacks across layer three to layer seven. 

The solution also needs to integrate with a scrubbing center and route traffic in the case of a volumetric attack. It must also have deep knowledge of DNS traffic behavior and must have early and accurate detection/mitigation.

A DDoS mitigation solution must be able to handle high rates of DNS packets and provide the best quality of experience, even under attack. It must also be able to allow or block traffic based on geolocation or a specific IP address.

A DNS Subdomain Whitelist is available, allowing only the good DNS queries through.

This solution is able to mitigate and protect against SSL attacks, which is important because this type of attack is becoming more popular among attackers, as it only requires a small number of packets to cause a denial of service for a fairly large service.

Attackers launch attacks that use SSL because each SSL session handshake consumes more resources from the server-side than from the client-side, meaning the attack has exponentially increased in size without requiring additional bots or bandwidth. As a result of these amplification effects, even a small attack can result in crippling damage

This solution is able to mitigate attacks and provides automated DDoS defense and protection from fast-moving, high volume, encrypted, or very short duration threats. This includes IoT-based attacks like Mirai, Pulse, Burst, DNS, TLS/SSL attacks, and those attacks associated with Permanent Denial of Service (PDoS) and Ransom Denial-of-Service (RDoS) techniques.

The main use case is to protect bank from DDoS attacks. We have it as a service device in network and but it's a common installation.

DDoS Protector is made by a hardware company, and Check Point integrates this solution into its own management and infrastructure.

Check Point DDoS Protector was first used as an add-on infrastructure solution for DDoS mitigation. We as a company have Azure and we wanted to complete it with another security tool capable of protecting against DDoS attacks for volumetric, low, and slow attacks in layer three to layer seven. For this reason, we decided to implement Check Point to do double security both in the Azure cloud and in the perimeter network to have better DNS packet rates and provide the best quality of experience, even under attack.

Check Point DDoS Protector has given us great security in zero-day DDOS protection. Intelligent attack mitigation also gives us the most accurate attack detection and prevention without blocking legitimate user traffic. It also provides full investment and lifetime protection in an extended platform. It is another of the key features why we adopted this technology. It offered complete protection of data center applications against emerging network threats and maintains excellent user response time even under attack.

We are not using it in our organization. I'm working for a system integrator, and we have implemented this solution for various customers from the government, telecoms, and so on. Check Point DDoS Protector is used in line on customer networks to protect web services and data center services.

It hasn't been very beneficial. I'm working in Croatia, which is a very small market for such type of equipment, so it hasn't had a big impact. 

Our company works in the area of developing and delivering online gambling platforms. The Check Point Next-Generation Firewalls are the core security solution we use for the protection of our DataCenter environment, located in Asia (Taiwan).

The environment has about 50 physical servers as virtualization hosts, and we have two HA Clusters consisting of 2x5400 hardware appliances, managed by an OpenServer Security Management Server on a Virtual Machine (KVM), all running on R80.10 with the latest JumboHotfix.

The Check Point DDoS Protector 20 is directly connected to one of the ISPs we are connected to, using LACP and static routing.

Our DataCenter environment in Taiwan serves the incoming user traffic, thus it is connected to the Internet and needs protection from DDoS attacks. Not all of the Internet Service Providers are able to provide DDoS mitigation.

For example, among the three providers we use in Taiwan, only one provides such a service. To protect the other lines, we had to implement the Check Point DDoS Protector as a hardware solution. Now, all the ISP lines are protected and we can switch the users back and forth between them with the same level of security.

We have teams in the cloud and on-premise, and normally many DDoS queries were observed. Some were normal. Others were not. It is at this point that we could have poor quality services due to their denial. Once this problem was raised, we began to see solutions that would allow us to solve these incidents, and help us only to block those that were really malicious or that wanted us to block the services. Check Point is one of the solutions that give us the most value, and they are constantly innovating.

Among the value-added actions, it allowed us to validate, learn and detect which of the requests are true or false and which come from real regions and which are being used - such as attacks on our services and our infrastructure. It gave us that value is having fewer false positives, which is based on network analysis and protection against IPS and SS, protecting applications against known or emerging attacks.

We had a high number of server interruptions, which led to a high cost for denial of services. We looked for solutions that would allow us to solve and avoid these economic losses with a protection solution that would use advanced techniques to detect and block DDoS attacks to improve the overall security of our network. 

Based on all these uncertainties, we looked for a proactive defense against attacks to guarantee the availability and continuity of our business. 

This solution is quite effective and complete. It protects the organization from all the attacks that we have had in recent years, giving us high availability and making it one of the solutions that we have scaled since we can control attacks in real-time. We have worked without any inconvenience. Thus the solution has been a technological ally for our company. It ensures service is delivered to our clients at all times. The solution has many outstanding features, however, offering high availability and real-time analysis services are the most beneficial. 

We needed to establish a solution that allows importing several protection factors within the website traffic to improve security and network availability. We wanted to manage it in a simple, fast, and scalable way. This product meets all these necessary characteristics and is robust and scalable. 

We wanted a product that offered many protections in a single solution. We also needed DDoS ​​attack protection. Check Point detects and automatically mitigates attacks, which helps our organization protect our infrastructure. It has critical applications that fight against the negative effects of attacks. So far, it has made a difference and has given confidence to our corporation. It's also giving us the ability to analyze and report accurately.