Check Point IP Appliances
All-in-one security and high-performance in a single appliance
- Extensible, on-demand security via modular Software Blade Architecture
- Delivers enterprise-class performance
- Offers multiple connectivity options
Provides high performance and protection across all traffic types
- Includes Firewall, IPsec VPN, IPS, Application Control and Identity Awareness Software Blades—right out-of-the-box
- Includes Acceleration & Clustering and Advanced Networking Software Blades
- Supports various acceleration technologies (ADP, CoreXL and SecureXL)
Low mean time to service and high reliability
- Offers carrier-grade serviceability and redundancy
- IP Clustering provides active-active load sharing
- Modular appliance design for easy field maintenance
Accelerated Data Path (ADP) Modules
Check Point Accelerated Data (ADP) modules are hardware options that can be inserted into IP Appliances to improve traffic performance and extend appliance utilization. With ADP, CPU workloads can be shared between the main processor and the ADP module processor to increase performance without having to completely replace existing hardware.
Advanced Routing and Networking
Advanced routing and networking supports a broad range of traffic types, including PIM, RIP, OSFP, and BGP, and enables remote troubleshooting, capacity planning, and configuration management.
High Performance and High Availability Clustering
To help ensure business continuity and balanced performance, several high availability solutions are available for IP appliances. Virtual Router Redundancy Protocol (VRRP) and patented IP Appliance clustering technology provide robust and scalable high availability for IP appliances. These technologies allow several independent IP appliances to join together for a common security goal as one virtual machine.
Network Voyager
Check Point Network Voyager offers web-based configuration, monitoring and management, allowing network administrators to manage IP Appliances remotely through a feature rich GUI. From the Network Voyager interface, administrators can easily manage hardware, OS and application deployment, networking, routing, troubleshoot systems or optimize a configuration, manage high availability, set role-based administration and monitor network traffic and IP appliance health.
Network Voyager is offered with IPSO only.
Interface Options
Check Point IP Appliances support a large portfolio of interface options including copper and fiber Ethernet with a range of port density and performance options of up to 10 Gbps. They also come with storage options: HDD, flash or hybrid.
Carrier Grade Serviceability and Redundancy
Other features include:
- Hot swappable hard drives, fans, and power supplies available in some models
- Easy access design (slide out trays, slide in cards)
- Retrofit ADP modules to extend the appliance's performance
- DC power supplies available in some models
Integrated into flexible Software Blade Architecture
The Check Point Software Blade architecture is the first and only security architecture that delivers complete, flexible and manageable security to companies of any size. With unprecedented flexibility and expandability, Software Blades deliver lower cost of ownership and cost-efficient protection that meet any need, today and in the future.
Full integration into the modular Software Blade Architecture allows for rapid and easy activation on any Check Point security gateway.
All IP appliances include Firewall, IPSec VPN, IPS, Application Control, Identity Awareness, Acceleration & Clustering and Advanced Networking Software Blades.
The IP Appliance comes with a pre-configured set of Software Blades. It can be quickly and easily extended to meet new and evolving security requirements with additional Check Point Software Blades such as the Web Security Software Blade.
IP Appliances Hardware Specifications
| 10/100/1000 Ports |
6 |
6/8 |
4/8 |
4/12 |
4/16 |
4/28 |
4/32 |
| 10 GbE Ports | - | - | - | - | 61 | 101 | 101 |
| Storage | 40GB | 40GB | 80GB | 80GB | 80GB | 80GB | 80GB |
| Disk-Based or Flash | Disk | Disk or Flash | Disk or Flash | Disk or Flash | Disk or Flash | Disk or Flash | Disk or Flash |
| Virtual System Support | No | No | No | No | No | Yes | Yes |
| Max VS Supported (Default/Max) | N/A | N/A | N/A | N/A | N/A | 10/50 | 50/75 |
| Enclosure | 1U/half rack | 1U/half rack | 1U | 1U | 1U | 2U | 2U |
| Dimensions (Standard) | 8.52 x 18 x 1.71 in. | 8.52 x 18 x 1.71 in. | 17 x 16 x 1.71 in. | 17.23 x 22 x 1.71 in. | 17.23 x 24 x 1.71 in. | 17.23 x 24.11 x 3.46 in. | 17.23 x 24.11 x 3.46 in. |
| Dimensions (Metric) | 216 x 457 x 44 mm | 216 x 457 x 44 mm | 432 x 406 x 44 mm | 438 x 559 x 44 mm | 438 x 610 x 44 mm | 438 x 613 x 88 mm | 438 x 613 x 88 mm |
| Weight | 5.1kg (11.25 lbs) |
5.1kg (11.25 lbs) |
7.71kg (17.0 lbs) |
11.84kg (26.1 lbs) |
12.38kg (27.3 lbs) |
19.6kg (43.2 lbs) |
20.57kg (45.35 lbs) |
| Operating Environment | Temperature: 0° to 40° C, Humidity: 5% - 95% non- condensing, Altitude: 3048m |
Temperature: 5° to 40° C2, Relative Humidity: 10% to 85% non-condensing; Altitude: 2500m |
|||||
| Non-Operating Environment | Temperature: -20°C to 70°C; Relative Humidity: 5% to 95% | ||||||
| Power Input | 100-240V 50-60Hz | ||||||
| Dual, Hot-Swappable Power Supplies |
No |
No |
No |
No |
Included |
Included |
Included |
| Power Supply (Max) |
133W |
133W |
150W |
225W |
250W |
700W |
700W |
| Power Consumption (Max) | 100W | 165W | |||||
| DC Power Supply | - | - | - | - | - | Optional | Optional |
| Compliance |
UL60950-1, First Edition: 2003, CAN/CSAC22.2, No 60950:2000, IEC60950-1: 2001, EN60950-1:2001+A11 with Japanese National Deviations / Emission Compliance: FCC Part 15, Subpart B, Class A, EN50024,EN55022A: 1998, CISPR 22 Class A: 1985, EN61000-3-2, EN61000-3-3 / |
||||||
2 IP395 can go to 50° C
IP Appliances Performance
| SecurityPower3 | 113 | 113 | 116 | 116 | 268 | 670 | 1,112 |
| Firewall Throughput | 1.5Gbps | 1.5Gbps | 3.0Gbps | 7Gbps | 11.7Gbps1 | 17.5Gbps1 | 30Gbps1 |
| VPN Throughput |
1.0Gbps | 1.0Gbps | 677Mbps | 1.7Gbps | 3.3Gbps | 8.3Gbps | 8.3Gbps |
| IPS Throughput |
1.4Gbps | 1.4Gbps | 2.9Gbps | 2.9Gbps | 4Gbps | 7Gbps | 9Gbps |
| Concurrent Sessions | 900,000 | 900,000 | 1M | 1M | 1M | 1M / 3.3M4 | 1M / 3.3M4 |
| VLANS | 10242 | 10242 | 10242 | 10242 | 10242 | 10242 | 10242 |
| ADP Module | - | - | - | - | * | * | * |
| VPN Acceleration |
* | * | ✔ | ✔ | ✔ | ✔ | ✔ |
1 - Performance with ADP
2 - Maximum of 256 VLANs per interface
3 - Check Point's SecurityPower is a new benchmark metric that allows customers to select security appliances by their capacity to handle real-world network traffic, multiple security functions and a typical security policy.
4 - With memory upgrade and GAiA OS
* - Optional
IP Appliances Software Specifications
|
IP Appliances
| |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Software Edition | R65, R70, R71, R75 | R65, R70, R71 ,R75 | R65, R70, R71, R75 | R65, R70, R71, R75 | R65, R70, R71, R75 | R65, R70, R71, R75 | R65, R70, R71, R75 | ||||||
| Firewall | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| IPsec VPN | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| Application Control | * | * | ✔ | * | ✔ | * | ✔ | * | ✔ | * | ✔ | * | ✔ |
| IPS | * | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| Identity Awareness |
* |
* |
✔ |
* |
✔ |
* |
✔ |
* |
✔ |
* |
✔ |
* |
✔ |
| Acceleration & Clustering | * | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| Advanced Networking | * | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| Web Security | * | * | * | * | * | * | * | * | * | * | * | * | * |
| URL Filtering (R75.20 only) | * | * | * | * | * | * | * | * | * | * | * | * | * |
| Anti-Bot | * | * | * | * | * | * | * | * | * | * | * | * | * |
| DLP | * | * | * | * | * | * | * | * | * | * | * | * | * |
| Antivirus | * | * | * | * | * | * | * | * | * | * | * | * | * |
| Anti-Spam & Email Security | * | * | * | * | * | * | * | * | * | * | * | * | * |
* - Optional
- Products A-Z
- Appliances
- Appliances Overview
- 2200 Appliances
- 4000 Appliances
- 12000 Appliances
- 21000 Appliance
- 61000 Security System
- DDoS Protector Appliances
- SecurityPower
- Secure Web Gateway Appliance
- Threat Prevention Appliance
- Series 80
- UTM-1 Edge
- IP Appliances
- Virtual Systems
- Safe@Office
- Smart-1
- Smart-1 SmartEvent
- Integrated Appliance Solution
- IAS Bladed Hardware
- Software Blades
- Software Blades Overview
- Security Gateway
- Firewall
- IPSec VPN
- IPS
- Mobile Access
- Application Control
- Identity Awareness
- DLP
- Web Security
- URL Filtering
- Anti-Bot
- Antivirus
- Anti-Spam & Email Security
- Advanced Networking & Clustering
- Voice over IP (VoIP)
- Threat Prevention
- ThreatCloud™
- Security Management
- Compliance
- Network Policy Management
- Endpoint Policy Management
- Logging & Status
- SmartWorkflow
- Monitoring
- Management Portal
- User Directory
- SmartProvisioning
- SmartReporter
- SmartEvent
- Multi-Domain Security Management
- Virtualization Security
- Security Gateway Virtual Edition
- Cloud Security
- Virtual Appliance for Amazon Web Services
- Security Systems
- Security Systems Overview
- Endpoint Security
- Endpoint Security
- Full Disk Encryption
- Media Encryption
- Anti-Malware & Program Control
- Remote Access VPN
- Firewall & Compliance
- Check Point WebCheck
- Check Point GO
- Solutions
- Remote Access
- Consumer Products
- ZoneAlarm Antivirus
- ZoneAlarm ForceField
- ZoneAlarm Internet Security Suite
