Next Generation Firewall
Your network is under constant threat. To secure it, you need the most advanced firewall protection. Check Point Next Generation Firewall identifies and controls applications by user and scans content to stop threats.
Benefits
Detects and controls application usage
- Identify, allow, block or limit usage of applications, and features within them
- Enable safe Internet use while protecting against threats and malware
- Leverage the world's largest application library with more than 8,000 web 2.0 applications
Supports advanced identity awareness for stress-free policy enforcement
- Create granular policy definitions per user, device and group
- Integrate seamlessly with Microsoft AD, LDAP, RADIUS, Cisco pxGrid, Terminal Servers and 3rd parties via a Web API
- Enforce consistent policy for local and remote users on Windows, macOS, Linux, Android and Apple iOS platforms
Provides proven gateway security in a single, dedicated appliance
- Rely on 24/7 advanced protection
- Reap the benefits of application control and intrusion protection (IPS) and additional security capabilities
- Get greater understanding into security events with integrated, easy-to-use centralized management
Features
Great security involves limiting and tracking access to sensitive data and resources. With the Next Generation Firewall, your administrators get detailed visibility into the users, groups, applications, machines and connection types on your network so they can assign permissions to the right users and devices. The firewall makes it easy and cost-effective to enforce security policy, giving granular permission control over these entities; this results in superior protection across the entire security gateway.
Seamless integrations with leading Identity and Access Management (IAM) vendors such as Microsoft Active Directory provides complete user identification, enabling simple, application-based policy definition per user, device or group directly from the firewall. User identification may be acquired via:
- Integrations with IAM vendors or a Web API
- Through a captive portal
- Installing a one-time, thin client-side agent
Application control
Employees are using more apps than ever, and you’re on the hook to protect them regardless of what they use. Check Point Next Generation Firewall has the industry’s largest application coverage, with more than 8,000 applications and 260,000 social network widgets included. You can create granular security policies based on users or groups to identify, block or limit usage of web applications and widgets like instant messaging, social networking, video streaming, VoIP, games and more.
Logging and status
To help you make sense out of your security event data, we included SmartLog, an advanced log analyzer that delivers split-second search results providing real-time visibility into billions of log records over multiple time periods and domains.
Our unified security management simplifies the monumental task of managing your security environment. You’ll see and control threats, devices and users with a highly intuitive graphical interface providing views, details and reports on your security health. Manage all your Check Point gateways and software blades from one comprehensive, centralized security dashboard.
Intrusion prevention
Next Generation Firewall includes the Check Point IPS Software Blade, which secures your network by inspecting packets traversing through the gateway. It is a full-featured IPS, providing geo-protections and frequent, automated threat definition updates. Because the IPS is part of the integrated Software Blade Architecture, you’ll get all the deployment and management advantages of a unified and extensible solution.
Ease of expansion
As your security needs increase, you can easily add to your solution with additional features and blades, such as the Data Loss Prevention, Threat Emulation, Threat Extraction Software Blades and more.