UTM-1 Appliances
All inclusive. All secured.
Overview
Check Point UTM-1™ security appliances are all-inclusive, turn-key solutions that include everything you need to secure your network. Each appliance includes integrated centralized management, along with complete security updates, hardware support, and customer support.

Security Gateway Software Blades
UTM-1 appliances come packaged with the most comprehensive and flexible security solution available. All UTM-1 appliances can include firewall, intrusion prevention (IPS), antivirus, anti-spyware, URL filtering, Web security, and anti-spam Software Blades. Additional blades can be flexibly added as needed.
Key Benefits
- Proven technologies trusted by 100% of the Fortune 100
- Delivers everything you need to secure your network in one appliance: security protections, security updates, management, and hardware warranty.
- Field upgradeable via Check Point’s Software Blade Architecture in order to add functionality to meet new security threats.
- Ensures confidentiality by securing remote access and site-to-site communications
- Protects against emerging threats with Check Point Update Service
Features
- Flexible Software Blade Architecture
- Firewall Software Blade: Proven application control and attack protection
- IPSec VPN Software Blade: Simple site-to-site connectivity and remote access
- IPS Software Blade: Next generation intrusion prevention
- Anti-Virus & Anti Malware Software Blade: Gateway antivirus control and anti-spyware
- Anti-Spam and Email Security Software Blade: Comprehensive messaging security
- URL Filtering Software Blade: Best-of-breed Web filtering
- Extensible with additional Check Point Software Blades
- All inclusive, turn-key solution
- Integrated centralized management
- Centralized automatic updates
- Quick setup
ALL THE SECURITY YOU NEED
Flexible Software Blade Architecture
UTM-1 includes Check Point’s revolutionary Software Blade Architecture. The Check Point Software Blade architecture is the first and only security architecture that delivers total, flexible and manageable security to companies of any size. With this unprecedented capability to flexibly and quickly expand security capabilities, Check Point Software Blades deliver lower cost of ownership and cost-efficient protection that meet any need, today and in the future.
Firewall Software Blade: Proven application control and attack protection
UTM-1 includes the most proven firewall technology, examining hundreds of applications, protocols, and services out-of-the box, including Internet messaging and P2P.
IPSec VPN Software Blade: Simple site-to-site connectivity and remote access
With Check Point UTM-1 appliances, you can simplify the setup of site-to-site VPNs and remote access. Manual setup of node-to-node VPN tunnels and security for an entire VPN is replaced by a One-Click process, where new sites and remote users are added automatically. Check Point UTM-1 appliances can also connect employees and business partners to your trusted network through flexible IPSec remote access, working seamlessly with a variety of VPN agents.
IPS Software Blade: Next generation intrusion prevention
The Check Point IPS Software Blade provides complete, next generation intrusion prevention capabilities at multi-gigabit speeds, resulting in industry-leading total system security and performance. The IPS Blade provides complete client, server, and OS coverage against vulnerabilities, malware/worm infections, and more. The Multi-Tier Threat Detection Engine combines signatures, protocol validation, anomaly detection, behavioral analysis, and other methods to provide the highest levels of network IPS protection. By quickly filtering 90% of incoming traffic without requiring deep inspection, the IPS engine inspects for attacks only on relevant traffic, reducing overhead and increasing accuracy.
Anti-Virus & Anti Malware Software Blade: Gateway antivirus, anti-spyware
Antivirus and anti-spyware protections are core components of UTM-1, complementing Check Point’s endpoint security solutions. Check Point UTM-1 appliances uses an up-to-date list of antivirus and antispyware signatures plus anomaly-based protection to stop viruses and other malware at the gateway. To check for threats hidden inside legitimate content, real-time antivirus scans are performed on POP3, SMTP, FTP, and HTTP services.
Anti-Spam and Email Security Software Blade: Comprehensive messaging security
Messaging Security from Check Point provides comprehensive protection for an organization's messaging infrastructure. The multidimensional approach protects the email infrastructure, provides highly accurate spam protection, and defends organizations from a wide variety of virus and malware threats within email.
| IP reputation anti-spam | Blocks spam and malware at the connection level by checking the sender's reputation against a dynamic database of known malicious IP addresses |
Content-based anti-spam |
Protects against advanced forms of spam, including image-based and foreign-language spam, using pattern-based detection |
| Block/allow list anti-spam | Utilizes block or allow lists to deny obvious email offenders and allow trusted senders |
| Mail antivirus | Protects against a wide range of viruses and malware, including scans of message content and attachments |
| Zero-hour outbreak protection | Defends against new spam and malware outbreaks by using advanced pattern matching and distribution analysis engine |
| Email IPS | Protects against a broad range of threats, including DoS and buffer overflow attacks, that target the messaging infrastructure itself |
URL Filtering Software Blade
Check Point UTM-1 appliances stop inappropriate Web surfing with best-of-breed Web filtering that covers 25-million-plus URLs and dozens of filtering categories, enabling you to define and enforce an online acceptable-use policy for your organization.
Extensible with additional Check Point Software Blades: Quickly meet new security threats
UTM-1 comes with a preconfigured set of software blades. UTM-1 can be quickly and easily extended to meet new and evolving security requirements with additional Check Point Software Blades. Some additional Check Point Software Blades include Web, VoIP, Advanced Networking and Acceleration & Clustering.
THE SIMPLICITY AND FLEXIBILITY YOU WANT
All-inclusive turnkey solution
Everything you need in a UTM network security solution is provided by Check Point UTM-1 appliances. This includes:
- Security protections
- All security updates
- Security management
- Hardware warranty
Integrated security management
Check Point UTM-1 appliances come with integrated gateway management, offering the ability to centrally manage multiple Check Point gateways from a single console. UTM-1 appliances include a Security Management container and the following blades: Network Policy Management, Endpoint Policy Management and Logging & Status blades.
Centralized, automatic updates
Update Services enable you to configure UTM-1 into an active security solution, capable of ensuring your networks are safe from new attacks via ongoing and automatic defense updates.
Quick setup
Check Point UTM-1 appliances can be easily set up with a first-time configuration wizard. This truly simple deployment process is as easy as:
- Plugging in and turning on the appliance
- Following the onscreen wizard
- Launching the management interface

The first-time configuration wizard makes configuring
Check Point UTM-1 appliances easy.
Appliance Highlights
FirewallThroughput |
1.5 Gbps | 1.5 Gbps | 2.5 Gbps | 3 Gbps | 3.5 Gbps | 4.5 Gbps |
VPNThroughput |
120 Mbps | 120 Mbps | 300 Mbps | 350 Mbps | 450 Mbps | 1100 Mbps |
IPSThroughput |
1.0 Gbps | 1.0 Gbps | 1.7 Gbps | 2.2 Gbps | 2.7 Gbps | 4.0 Gbps |
Concurrent Sessions |
600,000 | 600,000 | 650,000 | 1,100,000 | 1,100,000 | 1,100,000 |
| Licensed Users | Unlimited | Unlimited | Unlimited | Unlimited | Unlimited | Unlimited |
| Recommended Sizing | Up to 75 users |
Up to 125 users |
Up to 250 users |
Up to 500 users |
Up to 1000 users |
Up to 1500 users |
| VLANs | 10241 | 10241 | 10241 | 10241 | 10241 | 10241 |
| UTM out of the box | Yes | Yes | Yes | Yes | Yes | Yes |
| Security Acceleration | Yes | Yes | Yes | Yes | Yes | Yes |
| Integrated Multigateway Management | Standalone | Yes | Yes | Yes | Yes | Yes |
Hardware Specifications
Software Specifications
|
UTM-1 136 |
UTM-1 276 |
UTM-1 576 |
UTM-1 1076 |
UTM-1 2076 |
UTM-1 3076 |
||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
Security Gateway Software Blades |
132 |
136 |
272 |
276 |
572 |
576 |
1073 |
1076 |
2073 |
2076 |
3073 |
3076 |
Software Edition |
R65 |
R65 |
R65 |
R65 |
R65 |
R65 |
||||||
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* |
|
* |
|
* |
|
|
|
|
|
|
|
|
* |
|
* |
|
* |
|
* |
|
* |
|
* |
|
|
* |
|
* |
|
* |
|
* |
|
* |
|
* |
|
|
* |
|
* |
|
* |
|
* |
|
* |
|
* |
|
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
* |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- Included
* - Optional
Software Specifications
Firewall Software Blade |
|
|---|---|
| Protocol/application support | 200-plus |
| VoIP protection | SIP, H.323, MGCP, and SCCP with NAT support |
| Instant messaging control | MSN, Yahoo, ICQ, and Skype |
| Peer-to-peer blocking | Kazaa, Gnutella, BitTorrent |
| Network address translation | Static/hide NAT support with manual and automatic rules |
IPSec VPN Software Blade |
|
| Encryption support | AES 128-256 bit, 3DES 56-168 bit |
| Authentication methods | Password, RADIUS, TACACS, X.509, SecurID |
| Certificate authority | Integrated certificate authority (X.509) |
| VPN communities | Automatically sets up site-to-site connections as objects are created |
| Topology support | Star and mesh |
| Route-based VPN | Utilizes virtual tunnel interfaces; numbered/unnumbered interfaces |
| VPN agent support | Complete endpoint security with VPN, desktop firewall |
| SSL-based remote access | Fully integrated SSL VPN gateway provides on-demand SSL-based access |
| SSL-based endpoint scanning | Scans endpoint for compliance/malware prior to admission to the network |
IPS Software Blade |
|
| Network-layer protection | Blocks attacks such as DoS, port scanning, IP/ICMP/TCP-related |
| Application-layer protection | Blocks attacks such as DNS cache poisoning, FTP bounce, improper commands |
| Detection methods | Signature-based, behavioral, and protocol anomaly |
Antivirus & Anti-Malware Software Blade |
|
| Antivirus protection | Protects HTTP, POP3,SMTP and FTP protocols |
| Anti-spyware blocks | Pattern-based spyware blocking at the gateway |
| Updates | Automatic updates from labs or to the file on the local netowrk |
| Options: | Filed-based Av or protocol-based AV |
URL Filtering Software Blade |
|
| URL database | URL database 25 million-plus URLs in more than 90 categories |
| Updates | Automatic and centralized |
Anti-Spam & Email Security Software Blade |
|
| Email IPS | SMTP, POP3, and IMAP attack protection |
| Pattern-based anti-spam | Detects spam based on dynamic database of signatures |
| IP reputation checking | Blocks spam and malware by sender |
| Signature-based antivirus | First layer of protection from viruses and malware |
| Zero-hour outbreak protection | Complements signature-based protection to block new outbreaks |
| Block/allow lists | Provides granular control over specific domains and users |
Management and reporting |
|
| Centralized management | Includes centralized management |
| Monitoring/logging | SmartView Tracker™ provides advanced monitoring and logging |
| Reporting1 | Express reports |
| Command line interface | Telnet, SSH |
Networking
|
|
| DHCP support | SecurePlatform™ DHCP server and relay |
| Routing support1 | OSPF, BGP, RIP v1/2, Multicast |
| Layer-2 bridge support | Transparently integrates into existing network |
Performance and availability
|
|
| High availability | Active/passive and active/active failover options |
| Load balancing1 | ClusterXL® provides near linear scaling |
| Quality of Service1 | Floodgate-1® provides granular QoS control |
| ISP redundancy1 | Automatically reroutes traffic to second interface. |
| Link Aggregation | Load balancing and high availability the interfaces |
Support and Warranty
Check Point offers a range of support programs for customers using our appliances covering both software and hardware issues.
Check Point offers support online, by phone and onsite directly or via its network of partners. Opening a ticket online with Check Point Support via Check Point User Center.
Support Programs for Appliances
Check Point's Appliance Support programs provide technical support, software updates and upgrades, and the replacement of faulty hardware.
Please visit our Support Programs for more information or Compare Programs for a summary of features.
Hardware Warranty
Check Point warrants that hardware components of its appliances shall be free from material defects and will function according to the documentation provided for a period of one year from the date of appliance activation by Check Point. If the unit has a hardware failure during this warranty period, customer can begin a RMA process. Please visit Hardware Warranty for more information.
Check Point Enterprise Support Lifecycle Policy
Check Point Enterprise Support Lifecycle Policy outlines the product support guidelines for a product's lifecycle. The objective of this policy is to standardize and normalize product lifecycle practices, thereby enabling Check Point customers to make more informed purchase, support and upgrade decisions.
All Check Point products (except third-party products sold by Check Point) are covered by this policy. Customers who are operating Check Point products under a valid Support & Maintenance Agreement are entitled to the benefits associated with this policy.
Next Steps
- Find a Partner
- Call US sales: 1-866-488-6691
- Contact Us Online
Resources
- Check Point Appliance Brochure [PDF]
- Appliances Comparison Chart [PDF]
- Certifications
- Environmental Relations
- Success Stories
- What's Next for SecurePlatform and IPSO
Related Products
