Security Gateway Virtual Edition
Security for dynamic virtualized environments and clouds
- Provides hypervisor-level security for inter-VM traffic between guests
- Automatically secures new VMs with no network changes
- Preserves security with zero downtime during virtual machine live migration
Extensible hypervisor-level security with Check Point Software Blade architecture
- Integrates industry-leading security directly in the virtualized environment
- Protects VMs from attack with extensible security using software blades
- Provides antivirus and anti-malware security for VMs without an agent
Unified security management with physical environment
- Consistent security policy across both physical and virtual environments
- Granular policy enforcement based on user and VM identities
- Visibility and auditing of virtualization configuration and security changes
- Separation of duties between virtualization and security teams
Inter-VM Traffic Inspection
Ensure virtual machine security with inter-VM traffic inspection using granular firewall policies and integrated intrusion prevention (IPS). The Security Gateway VE uses VMware VMsafe technology to enforce hypervisor security.
Ensure virtual machine security inter-VM traffic inspection using granular firewall policies and integrated best-in-class Intrusion Prevention (IPS). The Security Gateway VE utilizes VMware VMsafe technology to seamlessly enforce hypervisor security.
Typically, using external security appliances to inspect inter-VM traffic impacts performance and complicates topology. However, with the Security Gateway VE, performance is increased by inspecting virtual machine traffic inside the virtual system.
The Security Gateway VE enables you to separate virtual applications, protecting them from each other as well as external threats. Integrated IPS utilizes signature and protocol-anomaly-based intrusion prevention to protect business-critical services like FTP, HTTP and VoIP from known and unknown attacks. Check Point update services provide real-time updates to keep protections current with the latest defenses.
Security Enforcement for Dynamic Virtualized Environments
Protection for virtual machines is uninterrupted during live migration from one host to another and while new virtual machines are added. Newly added virtual machines are segregated from existing VMs with automatic security policy enforcement.
Protection for virtual machines is uninterrupted during live migration from one host to another and while new virtual machines are added, ensuring zero down time for maintenance and dynamic resource allocation. Full support for VMware VMotion and DRS allows the security policy to be enforced while maintaining open connections.
Virtual machines are so easy to create that it sometimes leads to VM sprawl. The Security Gateway VE alleviates this concern by ensuring that newly added virtual machines are segregated from existing VMs with automatic security policy enforcement.
Complete Virtualized Security Solution
The Security Gateway VE consolidates proven security functions. VMs are protected from internal and external threats with best-in-class integrated firewall, IPS, DLP, application control, identity awareness, VPN, anti-virus, anti-spam, URL filtering, web security and mobile access.
The Security Gateway VE simplifies security deployments by consolidating proven security functions within a single solution, streamlining deployment and administration. Virtual machines are protected from external threats, as well as from each other, with best-in-class integrated firewall, IPS, DLP, application control, identity awareness, VPN, anti-virus, anti-spam, URL filtering, web security and mobile access. Where separation of servers and data is required for compliance, the Security Gateway VE protects segregated applications and information from one another without the need for physical security appliances.
In addition to seamless hypervisor-layer security, the Security Gateway VE also provides the flexibility to be deployed as a Layer 2 or Layer 3 default gateway.
Easy-to-Deploy Security for Virtualized Environments
The Security Gateway VE reduces administration overhead by automatically applying security to virtual machines without the need to change network topology configuration for the VMs, VLANs or VSwitches.
The Security Gateway VE reduces administration overhead by automatically applying security to virtual machines without the need to change network topology configuration for the VMs, VLANs or VSwitches.
Single, Unified Management
The Security Gateway VE is managed from the same security management or Multi-Domain Management (MDM) as all other physical Check Point security gateways and appliances—for consistent security without the expense of separate management consoles.
The Security Gateway VE is managed from the same security management or Multi-Domain Management (MDM) as all other physical Check Point security gateways and appliances. This enables you to ensure consistent security at all gateways without the expense of separate management consoles.
Traffic logging, reporting and full virtualization auditing solutions tailored for the virtual infrastructure enable users to accelerate and achieve compliance, with dedicated reports that are mapped to relevant requirements within the PCI, SOX, HIPAA, COBIT and ISO 17799 regulations and standards.
Check Point security management and MDM can also be deployed on virtual machines.
| Feature | Details |
|---|---|
| Supported VMware Servers |
VMware vSphere |
| Supported Check Point Solutions |
Security Gateway Software Blades R75.40 |
| Minimum Virtual Appliance Requirements | Allocated Memory: 512 MB (recommended 2.5 GB) Disk Space: 12 GB |
- Products A-Z
- Appliances
- Appliances Overview
- 2200 Appliances
- 4000 Appliances
- 12000 Appliances
- 21000 Appliance
- 61000 Security System
- DDoS Protector Appliances
- SecurityPower
- Secure Web Gateway Appliance
- Threat Prevention Appliance
- Series 80
- UTM-1 Edge
- IP Appliances
- Virtual Systems
- Safe@Office
- Smart-1
- Smart-1 SmartEvent
- Integrated Appliance Solution
- IAS Bladed Hardware
- Software Blades
- Software Blades Overview
- Security Gateway
- Firewall
- IPSec VPN
- IPS
- Mobile Access
- Application Control
- Identity Awareness
- DLP
- Web Security
- URL Filtering
- Anti-Bot
- Antivirus
- Anti-Spam & Email Security
- Advanced Networking & Clustering
- Voice over IP (VoIP)
- Threat Prevention
- ThreatCloud™
- Security Management
- Compliance
- Network Policy Management
- Endpoint Policy Management
- Logging & Status
- SmartWorkflow
- Monitoring
- Management Portal
- User Directory
- SmartProvisioning
- SmartReporter
- SmartEvent
- Multi-Domain Security Management
- Virtualization Security
- Security Gateway Virtual Edition
- Cloud Security
- Virtual Appliance for Amazon Web Services
- Security Systems
- Security Systems Overview
- Endpoint Security
- Endpoint Security
- Full Disk Encryption
- Media Encryption
- Anti-Malware & Program Control
- Remote Access VPN
- Firewall & Compliance
- Check Point WebCheck
- Check Point GO
- Solutions
- Remote Access
- Consumer Products
- ZoneAlarm Antivirus
- ZoneAlarm ForceField
- ZoneAlarm Internet Security Suite