UTM-1 Appliances

All inclusive. All secured.

Overview
Features
Specifications
Support & Warranty

Overview

Check Point UTM-1™ security appliances are all-inclusive, turn-key solutions that include everything you need to secure your network. Each appliance includes integrated centralized management, along with complete security updates, hardware support, and customer support.

Security Gateway Software Blades

UTM-1 appliances come packaged with the most comprehensive and flexible security solution available. All UTM-1 appliances can include firewall, intrusion prevention (IPS), antivirus, anti-spyware, URL filtering, Web security, and anti-spam Software Blades. Additional blades can be flexibly added as needed.

Key Benefits

Proven technologies trusted by 100% of the Fortune 100
Delivers everything you need to secure your network in one appliance: security protections, security updates, management, and hardware warranty.
Field upgradeable via Check Point’s Software Blade Architecture in order to add functionality to meet new security threats.
Ensures confidentiality by securing remote access and site-to-site communications
Protects against emerging threats with Check Point Update Service

ALL THE SECURITY YOU NEED

Flexible Software Blade Architecture
UTM-1 includes Check Point’s revolutionary Software Blade Architecture. The Check Point Software Blade architecture is the first and only security architecture that delivers total, flexible and manageable security to companies of any size. With this unprecedented capability to flexibly and quickly expand security capabilities, Check Point Software Blades deliver lower cost of ownership and cost-efficient protection that meet any need, today and in the future.

Firewall Software Blade: Proven application control and attack protection
UTM-1 includes the most proven firewall technology, examining hundreds of applications, protocols, and services out-of-the box, including Internet messaging and P2P.

IPSec VPN Software Blade: Simple site-to-site connectivity and remote access
With Check Point UTM-1 appliances, you can simplify the setup of site-to-site VPNs and remote access. Manual setup of node-to-node VPN tunnels and security for an entire VPN is replaced by a One-Click process, where new sites and remote users are added automatically. Check Point UTM-1 appliances can also connect employees and business partners to your trusted network through flexible IPSec remote access, working seamlessly with a variety of VPN agents.

IPS Software Blade: Next generation intrusion prevention
The Check Point IPS Software Blade provides complete, next generation intrusion prevention capabilities at multi-gigabit speeds, resulting in industry-leading total system security and performance. The IPS Blade provides complete client, server, and OS coverage against vulnerabilities, malware/worm infections, and more. The Multi-Tier Threat Detection Engine combines signatures, protocol validation, anomaly detection, behavioral analysis, and other methods to provide the highest levels of network IPS protection. By quickly filtering 90% of incoming traffic without requiring deep inspection, the IPS engine inspects for attacks only on relevant traffic, reducing overhead and increasing accuracy.

Anti-Virus & Anti Malware Software Blade: Gateway antivirus, anti-spyware
Antivirus and anti-spyware protections are core components of UTM-1, complementing Check Point’s endpoint security solutions. Check Point UTM-1 appliances uses an up-to-date list of antivirus and antispyware signatures plus anomaly-based protection to stop viruses and other malware at the gateway. To check for threats hidden inside legitimate content, real-time antivirus scans are performed on POP3, SMTP, FTP, and HTTP services.

Anti-Spam and Email Security Software Blade: Comprehensive messaging security
Messaging Security from Check Point provides comprehensive protection for an organization's messaging infrastructure. The multidimensional approach protects the email infrastructure, provides highly accurate spam protection, and defends organizations from a wide variety of virus and malware threats within email.

IP reputation anti-spam	Blocks spam and malware at the connection level by checking the sender's reputation against a dynamic database of known malicious IP addresses
Content-based anti-spam	Protects against advanced forms of spam, including image-based and foreign-language spam, using pattern-based detection
Block/allow list anti-spam	Utilizes block or allow lists to deny obvious email offenders and allow trusted senders
Mail antivirus	Protects against a wide range of viruses and malware, including scans of message content and attachments
Zero-hour outbreak protection	Defends against new spam and malware outbreaks by using advanced pattern matching and distribution analysis engine
Email IPS	Protects against a broad range of threats, including DoS and buffer overflow attacks, that target the messaging infrastructure itself

URL Filtering Software Blade
Check Point UTM-1 appliances stop inappropriate Web surfing with best-of-breed Web filtering that covers 25-million-plus URLs and dozens of filtering categories, enabling you to define and enforce an online acceptable-use policy for your organization.

Extensible with additional Check Point Software Blades: Quickly meet new security threats
UTM-1 comes with a preconfigured set of software blades. UTM-1 can be quickly and easily extended to meet new and evolving security requirements with additional Check Point Software Blades. Some additional Check Point Software Blades include Web, VoIP, Advanced Networking and Acceleration & Clustering.

THE SIMPLICITY AND FLEXIBILITY YOU WANT

All-inclusive turnkey solution
Everything you need in a UTM network security solution is provided by Check Point UTM-1 appliances. This includes:

Security protections
All security updates
Security management
Hardware warranty

Integrated security management
Check Point UTM-1 appliances come with integrated gateway management, offering the ability to centrally manage multiple Check Point gateways from a single console. UTM-1 appliances include a Security Management container and the following blades: Network Policy Management, Endpoint Policy Management and Logging & Status blades.

Centralized, automatic updates
Update Services enable you to configure UTM-1 into an active security solution, capable of ensuring your networks are safe from new attacks via ongoing and automatic defense updates.

Quick setup
Check Point UTM-1 appliances can be easily set up with a first-time configuration wizard. This truly simple deployment process is as easy as:

Plugging in and turning on the appliance
Following the onscreen wizard
Launching the management interface

The first-time configuration wizard makes configuring
Check Point UTM-1 appliances easy.

Appliance Highlights

	UTM-1 136 132 136	UTM-1 276 272 276	UTM-1 576 572 576	UTM-1 1076 1073 1076	UTM-1 2076 2073 2076	UTM-1 3076 3073 3076
Firewall Throughput	1.5 Gbps	1.5 Gbps	2.5 Gbps	3 Gbps	3.5 Gbps	4.5 Gbps
VPN Throughput	120 Mbps	120 Mbps	300 Mbps	350 Mbps	450 Mbps	1100 Mbps
IPS Throughput	1.0 Gbps	1.0 Gbps	1.7 Gbps	2.2 Gbps	2.7 Gbps	4.0 Gbps
Concurrent Sessions	600,000	600,000	650,000	1,100,000	1,100,000	1,100,000
Licensed Users	Unlimited	Unlimited	Unlimited	Unlimited	Unlimited	Unlimited
Recommended Sizing	Up to 75 users	Up to 125 users	Up to 250 users	Up to 500 users	Up to 1000 users	Up to 1500 users
VLANs	1024¹	1024¹	1024¹	1024¹	1024¹	1024¹
UTM out of the box	Yes	Yes	Yes	Yes	Yes	Yes
Security Acceleration	Yes	Yes	Yes	Yes	Yes	Yes
Integrated Multigateway Management	Standalone	Yes	Yes	Yes	Yes	Yes

¹Maximum of 256 VLANs per interface

Hardware Specifications

	UTM-1 136 132 136	UTM-1 276 272 276	UTM-1 576 572 576	UTM-1 1076 1073 1076	UTM-1 2076 2073 2076	UTM-1 3076 3073 3076
10/100 Ports	1	-	-	-	-	-
10/100/1000 Ports	4	4	6	6	8	10
Storage	80 GB	160 GB	160 GB	160 GB	160 GB	160 GB
Enclosure	Desktop/1U	1U	1U	1U	1U	1U
Dimensions (standard)	10.6 x 5.7 x 1.6 in.	16.8 x 10 x 1.73 in.	16.8 x 10 x 1.73 in.	16.8 x 10 x 1.73 in.	17.4 x 15 x 1.73 in.	17.4 x 15 x 1.73 in.
Dimensions (metric)	270 x 145 x 40mm	429 x 255 x 44mm	429 x 255 x 44mm	429 x 255 x 44mm	443 x 381 x 44mm	443 x 381 x 44mm
Weight	1.6kg (3.52lbs)	3.7kg (8.1lbs)	3.7kg (8.1lbs)	3.7kg (8.1lbs)	6.5kg (14.3lbs)	6.5kg (14.3lbs)
Operating Environment	Temperature: 5° to 40° C, Humidity: 10%-85% non-condensing, Altitude: 2,500m
Power Input	100~240V, 50~60Hz
Power Supply Spec (Max)	60W	65W	65W	65W	250W	250W
Power Consumption (Max)	46.9W	26.2W	41.1W	40.1W	63.1W	77.5W
Compliance	UL 60950; FCC Part 15, Subpart B, Class A; EN 55024; EN 55022; VCCI V-3; AS/NZS 3548:1995; CNS 13438 Class A (test passed; country approval pending); KN22, KN61000-4 Series, TTA; IC-950; ROHS

Software Specifications

	UTM-1 136 Appliances		UTM-1 276 Appliances		UTM-1 576 Appliances		UTM-1 1076 Appliances		UTM-1 2076 Appliances		UTM-1 3076 Appliances
Security Gateway Software Blades	132	136	272	276	572	576	1073	1076	2073	2076	3073	3076
Software Edition	R65 R70 R71		R65 R70 R71		R65 R70 R71		R65 R70 R71		R65 R70 R71		R65 R70 R71
Firewall
IPSEC VPN
IPS	*		*		*
URL Filtering	*		*		*		*		*		*
Antivirus & Anti-Malware	*		*		*		*		*		*
Anti-Spam & Email Security	*		*		*		*		*		*
Advanced Networking	*	*	*	*	*	*	*	*	*	*	*	*
Acceleration & Clustering	*	*	*	*	*	*	*	*	*	*	*	*
Web Security	*	*	*	*	*	*	*	*	*	*	*	*
Voice over IP	*	*	*	*	*	*	*	*	*	*	*	*
Monitoring	*	*	*	*	*	*	*	*	*	*	*	*
Management Portal	*	*	*	*	*	*	*	*	*	*	*	*
User Directory	*	*	*	*	*	*	*	*	*	*	*	*
Policy Management
Endpoint Policy Management
Logging & Status

- Included
* - Optional

Software Specifications

Firewall Software Blade
Protocol/application support	200-plus
VoIP protection	SIP, H.323, MGCP, and SCCP with NAT support
Instant messaging control	MSN, Yahoo, ICQ, and Skype
Peer-to-peer blocking	Kazaa, Gnutella, BitTorrent
Network address translation	Static/hide NAT support with manual and automatic rules
IPSec VPN Software Blade
Encryption support	AES 128-256 bit, 3DES 56-168 bit
Authentication methods	Password, RADIUS, TACACS, X.509, SecurID
Certificate authority	Integrated certificate authority (X.509)
VPN communities	Automatically sets up site-to-site connections as objects are created
Topology support	Star and mesh
Route-based VPN	Utilizes virtual tunnel interfaces; numbered/unnumbered interfaces
VPN agent support	Complete endpoint security with VPN, desktop firewall
SSL-based remote access	Fully integrated SSL VPN gateway provides on-demand SSL-based access
SSL-based endpoint scanning	Scans endpoint for compliance/malware prior to admission to the network
IPS Software Blade
Network-layer protection	Blocks attacks such as DoS, port scanning, IP/ICMP/TCP-related
Application-layer protection	Blocks attacks such as DNS cache poisoning, FTP bounce, improper commands
Detection methods	Signature-based, behavioral, and protocol anomaly
Antivirus & Anti-Malware Software Blade
Antivirus protection	Protects HTTP, POP3,SMTP and FTP protocols
Anti-spyware blocks	Pattern-based spyware blocking at the gateway
Updates	Automatic updates from labs or to the file on the local netowrk
Options:	Filed-based Av or protocol-based AV
URL Filtering Software Blade
URL database	URL database 25 million-plus URLs in more than 90 categories
Updates	Automatic and centralized
Anti-Spam & Email Security Software Blade
Email IPS	SMTP, POP3, and IMAP attack protection
Pattern-based anti-spam	Detects spam based on dynamic database of signatures
IP reputation checking	Blocks spam and malware by sender
Signature-based antivirus	First layer of protection from viruses and malware
Zero-hour outbreak protection	Complements signature-based protection to block new outbreaks
Block/allow lists	Provides granular control over specific domains and users
Management and reporting
Centralized management	Includes centralized management
Monitoring/logging	SmartView Tracker™ provides advanced monitoring and logging
Reporting¹	Express reports
Command line interface	Telnet, SSH
Networking
DHCP support	SecurePlatform™ DHCP server and relay
Routing support¹	OSPF, BGP, RIP v1/2, Multicast
Layer-2 bridge support	Transparently integrates into existing network
Performance and availability
High availability	Active/passive and active/active failover options
Load balancing¹	ClusterXL® provides near linear scaling
Quality of Service¹	Floodgate-1® provides granular QoS control
ISP redundancy¹	Automatically reroutes traffic to second interface.
Link Aggregation	Load balancing and high availability the interfaces

¹ Optional in R70

Support and Warranty

Check Point offers a range of support programs for customers using our appliances covering both software and hardware issues.

Check Point offers support online, by phone and onsite directly or via its network of partners. Opening a ticket online with Check Point Support via Check Point User Center.

Support Programs for Appliances
Check Point's Appliance Support programs provide technical support, software updates and upgrades, and the replacement of faulty hardware.

Please visit our Support Programs for more information or Compare Programs for a summary of features.

Hardware Warranty
Check Point warrants that hardware components of its appliances shall be free from material defects and will function according to the documentation provided for a period of one year from the date of appliance activation by Check Point. If the unit has a hardware failure during this warranty period, customer can begin a RMA process. Please visit Hardware Warranty for more information.

Check Point Enterprise Support Lifecycle Policy
Check Point Enterprise Support Lifecycle Policy outlines the product support guidelines for a product's lifecycle. The objective of this policy is to standardize and normalize product lifecycle practices, thereby enabling Check Point customers to make more informed purchase, support and upgrade decisions.

All Check Point products (except third-party products sold by Check Point) are covered by this policy. Customers who are operating Check Point products under a valid Support & Maintenance Agreement are entitled to the benefits associated with this policy.

Next Steps

Find a Partner
Call US sales: 1-866-488-6691
Contact Us Online

Resources