Firewalls Checkpoint : Check Point 1100 Security Appliances Introduction

Today I am going to talk about the Checkpoint Firewalls where i am talking about the Checkpoint 1100 security appliances. There are lot of vendors who have head to head competition on the security domain which includes Palo-Alto, Cisco, Brocade and Checkpoint. The market is moving away from the stateful firewall as they are moving towards the Next generation firewalls which Gartner provide the set of features.

What is Next Generation Firewalls ?

Well I wrote so many articles here in this blog about the Next Generation Firewalls. Next Generation Firewall includes the features like Firewall, IPS, Stability and Reliability with Visibility feature. Below is the basic topology where it is showing where we can deploy the firewalls in the network. The below mentioned network topology showing the firewall is deployed on the gateway and for the internal segmentation of the networks. The network topology uses here is just for the demo purposes and have no relevance with any of the live or enterprise network.

Fig 1.1- Basic Firewall deployment in the Network

Checkpoint Security 1100 appliances

Now let's talk about the checkpoint 1100 security appliances. 

Checkpoint 1100 security appliance line is an all-in-one security appliance that offers robust, multi-layered protection with branch offices in mind, including flexible network interfaces and a compact, desktop form factor.

• Includes the comprehensive protections of our Next Generation Firewall, threat prevention, VPN (IPsec), intrusion prevention, application control, URL filtering, and anti-virus
• Provides an easy and intuitive web-based management interface for local maintenance
• Offers profile-based central management for operating hundreds of devices
• Offers a wide variety of network access options including Ethernet, ADSL, 3G and 4G wireless
• Supports high port density of 10 1GbE interfaces and wireless access
• Delivers outstanding performance of up to 37 SecurityPower Units, 1.5Gbps of firewall throughput and 220Mbps of VPN throughput

Comprehensive security and threat prevention

These all-in-one appliances include our Next-Generation Firewall, which gives branch offices the same level of sophistication and protection as those designed for the corporate network and because the 1100 Appliances leverage the flexible Software Blade Architecture, you can customize your device to deliver a rich set of advanced security functionality.

Flexible network connections with high capacity

• At the branch office, you need all the flexibility you can get. That’s why our 1100 Appliances come with a variety of connectivity options.
• 10 1Gbps Ethernet ports with Optional integrated ADSL modem
• USB and PCI Express card slots for additional WAN connectivity or a redundant Internet link
• Optional WiFi access point (802.11b/g/n) that supports WEP, WPA and WPA2 authentication

Simple configuration and deployment

They designed this appliance class to be as easy as possible to set up. Even non-technical staff can easily perform initial setup and configuration via a simple start-up wizard, and be up and ready in minutes. It means you can easily deploy the checkpoint firewalls in your environment and can simply be configured.

Local and central management capabilities

They make it easy to administer your appliance, whether or not you have IT staff on hand at the remote location. A simple web-based local management interface allows administrators working on-site to secure a branch office in minutes. 

At the corporate headquarters, leverage central tools to define security policy for the entire network, including your 1100 Appliance. For the largest enterprises, They offer SmartProvisioning, a profile-based management tool that lets you define a single security and device profile, and apply it simultaneously to thousands of 1100 Appliances