Check Point vSEC Virtual Edition

The Check Point vSEC Virtual Edition gateway protects dynamic virtualized environments from internal and external threats by securing virtual machines (VMs) and applications with the full range of protections of the Check Point Software Blade architecture. Check Point’s virtualization security supports multiple hypervisors including VMware ESX, Microsoft Hyper-V and KVM.

Benefits

Secure virtual environments

  • Multi-layered security protections for virtual environments including next-generation firewall and advanced threat prevention
  • Inspect all traffic—from inter-VM to perimeter—in the virtual network
  • Permit secure access to remote systems and networks

Unified management of virtual and physical environments

  • Consistent security policy and uniform security management across both physical and virtual infrastructures
  • Visibility into virtualization configuration and security changes
  • Separation of duties between virtualization and security teams
  • Licensing is based on virtual cores used and supports dynamic allocation ideal for elastic workloads

Thanks to Check Point vSEC Virtual Edition (VE), we have a virtual security solution that fully integrates into our dynamic virtualized environment with all the performance, security and functionality we’ve expected from our physical Check Point gateways for years.

Luc Steens

Team Leader Security Managed Services

Getronics


more

Features

Full protections with Check Point Software Blades

Check Point vSEC Virtual Edition provides the full protections of the Check Point Software Blade architecture.

Consolidated logs and reporting for hybrid cloud environments

Get visibility and enforcement across your virtual infrastructures using the Next Generation SmartEvent Software Blade. Simplify compliance and audits with unified logs and reporting.


Centralized management for virtual and physical infrastructures

Manage vSEC VE using your existing on-premise Check Point Unified Security Management Solution. Enforce a consistent security policy for corporate assets across both virtual and physical infrastructures from a single console.


Specifications

Supported HypervisorsSupported Hypervisor releasesMemory and system requirements
VMware ESXivSphere 5, vSphere 5.1, vSphere 5.5, vSphere 632GB HDD

2GB RAM
Microsoft Hyper-V2012 R2 Windows Server32GB HDD

2GB RAM
KVMCentOS 7

RHEL 7
32GB HDD

2GB RAM
Note: For supported Check Point releases, refer to the support matrix in the HCL

Performance

Test case2 Virtual Cores4 Virtual Cores6 Virtual Cores
Security Power300620850
Firewall Only2700mbps4900mbps5100mbps
Firewall + IPS860 mbps1700mbps2630mbps
Firewall + IPS + Application Control820mbps1300mbps1900mbps
Firewall + Anti-Virus + IPS690mbps940mbps1670mbps
Max concurrent connections5.4 million
(12GB RAM )
1.1million ( 2GB RAM )
5.4 million
(12GB RAM )
1.1million ( 2GB RAM )
5.4 million
(12GB RAM )
1.1million ( 2GB RAM )
Test EnvironmentvSEC Virtual Edition Gateway R77.30 for VMWare ESXi 5.5
Using Check Point real world traffic blend, an optimized environment, dedicated virtual cores on Intel E5-2637 v3 and vmxnet3 NIC
Note : VE gateway performance is dependent on the number of virtual CPU cores allocated, CPU type, RAM, traffic blend as well hypervisor release and configuration