VPN-1 VE
Total Security for Virtual Systems
Overview
Check Point VPN-1 VE™ (virtual edition) protects virtualized environments from both internal and external threats. Based on the same best-in-class security technologies that you rely on for your physical network security, and that protect 100% of the Fortune 100, VPN-1 VE combines firewall, VPN and intrusion prevention (IPS) to secure your virtual machines, applications and traffic. It enables you to meet critical regulatory compliance requirements by segregating virtual systems from each other as well as from external threats. VPN-1 VE is the only solution that inspects inter-VM traffic, protects against both internal and external threats, all managed by a single interface to ensure consistent, efficient security management.
Benefits
- Proven security technologies trusted by 100% of the Fortune 100
- Protect Virtual Applications with Best-of-Class Security
- The only solution to deliver a comprehensive and extensible security solution to protect your VMware environment in a single virtual appliance
- Protects against emerging threats with Check Point Update Service
- Enables unified management of physical and virtual environment
Features
- Protects Virtual Applications from both internal and external threats
- Central, Unified Management
- High Performance, Availability and Load Sharing
- Pre-configured for Rapid Deployment
- Integrated firewall, VPN, IPS and available with full UTM capabilities
- Enforced security for VMotion
- Certified Virtual Appliance by VMware
Protect Virtual Applications with Best-of-Class Security
VPN-1 VE includes the most proven firewall and can examine hundreds of applications, protocols, and services out-of-the-box., protecting your virtual applications with the same best-of-class protection you use to protect your physical network. VPN-1 VE enables you to separate virtual applications, protecting them from each other as well as external threats. Integrated IPS utilizes signature and protocol-anomaly-based intrusion prevention to protect business-critical services like FTP, HTTP, and VoIP from known and unknown attacks. Similarly, VPN-1 VE can block non-business applications like IM and P2P. VPN-1 VE also inspects packets that are designated for the service console and blocks potential attacks. VPN-1 VE is supported by Check Point Update Services, which provide real-time updates to keep protections current with the latest defenses.
Central, Unified Management
VPN-1 VE is managed from the same Security Management/SmartCenter or Provider-1 management server as all other VPN-1 gateways and Check Point appliances. This enables you to ensure consistent security at all gateways and to minimize the expense of separate management consoles.
High Performance, Availability and Load Sharing
VPN-1 VE delivers over 2 Gbps throughput utilizing only 1 vCore, providing a high performance platform for your virtualized environments and ensuring access to mission critical applications. ClusterXL® distributes traffic of all types across a cluster of VPN-1 VE gateways. If a gateway becomes unreachable, all connections are seamlessly redirected to the remaining cluster members.
Pre-configured for Rapid Deployment
VPN-1 VE is packaged as a virtual appliance which is pre-installed and pre-configured which enable quick and smooth deployment. Because VPN-1 VE keeps traffic within the virtual appliance server, it eliminates the complication of adding security appliances and switches to secure your virtual environment. The VPN-1 VE installs with such options as memory allocation and core allocation pre-set, enabling you to get the system secure as quick as possible. You may also customize all setting—including network interfaces and others—to protect your particular environment.
Integrated firewall, VPN, IPS and available with full UTM capabilities
VPN-1 VE offers not only best-in-class firewall, VPN and intrusion prevention (IPS), but also a complete set of unified threat management (UTM) security features including antivirus, anti-spyware, messaging security including anti-spam, Web application firewall, VoIP security, instant messaging (IM) and peer-to-peer (P2P) blocking, Web filtering, as well as secure site-to-site and remote access connectivity. VPN-1 VE simplifies security deployments by consolidating proven security functions within a single solution streamlining deployment and administration.
Enforced security for VMotion
VPN-1 VE protects virtual machines during live migration of operational virtual machines. With full support for VMware VMotion, security policy is enforced for both the firewall and the virtual appliances it protects.
Certified by VMware for VMware ESX
Certified by VMware for use on the ESX Server, VPN-1 VE provides a proven platform for protecting your ESX virtual environments. With the certification, you gain the confidence of securing your mission-critical applications in a market-leading virtual environment.
Specifications
| Feature | Details |
|---|---|
| Supported VMware Servers | VMware ESX Server versions: 3.0.2, 3.5, ESXi 3.5, vSphere 4.0 / 4i |
| Supported Check Point Solutions | VPN-1 Power NGX R65 |
| Minimum Virtual Appliance Requirements | Allocated Memory: 512 MB |
Support
Check Point offers many technical support options for customers. These range from the Standard support plan that provides telephone assistance during normal business hours with next-day shipment of replacement appliances, to the Premium support plan providing 24/7 assistance with same day replacement shipment, up to the Premium+4H plan that provides a qualified engineer on-site within four hours to resolve any appliance-related issues. For additional information, please visit the Support Programs section of our website.
Direct Enterprise Support
| Support Service | Software Subscription | Standard | Premium | Diamond (On Top Of Premium) |
|---|---|---|---|---|
| Basic SLA | N/A | 5 x12 Business Day | 7 x 24 Every Day | 7 x 24 Every Day |
| Latest Hot Fixes & Service Packs | Yes | Yes | Yes | Yes |
| Major Upgrades & Enhancements | Yes | Yes | Yes | Yes |
| Support Focal Point | N/A | Desks Support Engineer | Premium Support Engineer | Designated Diamond Engineer |
| Unlimited Service Requests | N/A | Yes | Yes | Yes |
| Committed Response time to Severity-1 issues | N/A | 30 Minutes | 30 Minutes | 30 Minutes |
| Committed Response time to Severity 2,3 & 4 issues | N/A | 4 Hours | Sev 2 – 2 Hours Sev 3 & 4 – 4 Hours |
Sev 2 – 2 Hours Sev 3 & 4 – 4 Hours |
| Access to Check Point Products Forums | Read | Full Access | Full Access | Full Access |
| Access to Online Support Knowledgebase | N/A | Advanced | Expert | Expert |
| Appliance Support* | ||||
| Default Appliance support (if the appliance is covered within the account rate) | 1st Year Warranty | Standard | Premium | Premium |
| Return Material Authorization (RMA) determination | TAC | TAC | TAC | Customer |
| RMA Shipment Method | Within 7 Business Days from faulty unit return | Same business day shipment1 | Next Flight Out / Express Delivery (when applicable) or Same Business Day Shipment3 | Next Flight Out / Express Delivery (when applicable) or Same Business Day Shipment3 |
| Onsite RMA Shipment Method (must be purchased in addition to the regular program SLA) |
N/A | 5 x 8 x NBD Delivery and basic installation of replacement hardware by a certified engineer2 |
7 x 24 x 4H Delivery and basic installation of replacement hardware by a certified engineer |
7 x 24 x 4H Delivery and basic installation of replacement hardware by a certified engineer |
- For Return Material Authorization determination completed by 15:00 regional hub time; otherwise shipment will occur next business day with delivery target extended by one day
- Available in over 250 locations world wide.
- Next Flight Out / Express Delivery is available in the European Union and mainland US. Appliances are shipped during normal business hours and may arrive during off hours or next business day until 9AM.
* Learn more about Check Point Security Appliances Support Programs
Collaborative Enterprise Support
| Support Service | Co - Standard | Co - Premium | Co - MSP |
|---|---|---|---|
| TAC access by the certified support partner / MSP | 7 x 24 Every Day | 7 x 24 Every Day | 7 x 24 Every Day |
| Latest Hot Fixes & Service Packs | Yes | Yes | Yes |
| Major Upgrades & Enhancements | Yes | Yes | Yes |
| Support Focal Point (to partner/ MSP) | Desks Support Engineer | Premium Support Engineer | Premium Support Engineer |
| Unlimited Service Requests | Yes | Yes | Yes |
| Committed Response time to Severity-1 issues | Indirect 30 Minutes | Direct 30 Minutes | Direct 30 Minutes |
| Committed Response time to Severity 2,3 & 4 issues | 4 Hours | Sev 2 - 2 Hours Sev 3 & 4 - 4 Hours |
Sev 2 - 2 Hours Sev 3 & 4 - 4 Hours |
| Direct Access to Check Point TAC for Severity-1 issues | No | Yes 7 x 24 | Yes 7 x 24 |
| Access to Check Point Products Forums | Full Access | Full Access | Full Access |
| Access to Online Support Knowledgebase | Advanced | Expert | Expert |
| Appliance Support* | |||
| Default Appliance support (if the appliance is covered within the account rate) | Co - Standard | Co - Premium | Co - Premium |
| Return Material Authorization (RMA) determination | TAC | TAC | TAC |
| RMA Shipment Method | Same business day shipment1 | Next Flight Out / Express Delivery (when applicable) or Same Business Day Shipment3 | Next Flight Out / Express Delivery (when applicable) or Same Business Day Shipment3 |
| Onsite RMA Shipment Method (must be purchased in addition to the regular program SLA) |
5 x 8 x NBD Delivery and basic installation of replacement hardware by a certified engineer2 |
7 x 24 x 4H Delivery and basic installation of replacement hardware by a certified engineer |
7 x 24 x 4H Delivery and basic installation of replacement hardware by a certified engineer |
1 For Return Material Authorization determination completed by 15:00 regional hub time; otherwise shipment will occur next business day with delivery target extended by one day.
2 Available in over 250 locations world wide.
3 Next Flight Out / Express Delivery is available in the European Union and mainland US. Appliances are shipped during normal business hours and may arrive during off hours or next business day until 9AM.
* Learn more about Check Point Security Appliances Support Programs
-
Next Steps
- Try VPN-1 VE for 15 days!
- Find a Partner
- Call US sales: 1-866-488-6691
- Contact Us Online
Related Products
