Check Point Targets Data Centers and Large Enterprise Networks With Integrated Threat Prevention Appliances
Network security firm Check Point has released new hardware appliances designed to provide advanced monitoring and threat prevention, including protection against zero-day threats targeting enterprise networks.
Unveiled on Tuesday, the new Check Point 15000 and 23000 Series appliances are designed for large enterprise and data center networks, and include integrated firewall, IPS, Application Control, AV, AnitBot, URL Filtering, and Check Point’s sandbox solution, SandBlast.
According to Donald Meyer, head of data center marketing at Check Point, the new platforms are more than just a refresh of the old hardware.
“The hardware is optimized for running all protections simultaneously – including full SSL traffic inspection – without creating a performance bottleneck or compromising security effectiveness,” Meyer noted in a blog post.
Here is how the hardware and performance specifications stack up for each:
The Check Point 23500 and 23800 both come as 2U appliances, with five I/O expansion slots for high port capacity, redundant power supplies, a 2x 1TB RAID1 disk array, and Lights-Out Management (LOM), which enables administrators to diagnose, start, restart and manage the appliances remotely.
The 23500 delivers real-world firewall throughput of 33 Gbps and 2.9 Gbps of threat prevention throughput, while the larger 23800 can deliver real-world firewall throughput of 43 Gbps, and 3.6 Gbps of threat prevention throughput, according to Check Point’s specs.
The Check Point 15400 provides 23 Gbps of real-world firewall throughput and 1.5 Gbps of real-world threat prevention throughput, while the 15400 touts 28 Gbps of real-world firewall throughput and 2.2 Gbps of threat prevention throughput. Both are also 2U appliances and include LOM.
Check Point determines maximum production throughput using real-world traffic blend, a typical rule-base size, NAT and logging enabled and the "most secure" threat prevention protection settings.
All of the new appliances allow customers to connect 10 GbE server uplinks to a 40 GbE core network with up to 4x 40 GbE ports.
Additionally, all support Check Point Virtual Systems, which enable enterprises to consolidate infrastructure by creating multiple virtualized security gateways on a single appliance.
All four of the new security appliances are available immediately.