Check Point FireWall-1 is a fully integrated enterprise security suite that includes access control, user authentication, network address translation, content security, auditing, third-party device management; all of
which are managed via a single enterprise policy from a central console.
FireWall-1 is built with Stateful Inspection, a technology patented by Check Point and designed to deliver superior performance with the highest level of network security. Stateful inspection offers multiple performance
advantages, including enhanced throughput. This eliminates the burdensome context switching required by older generation, application layer firewalls - there is no need to copy packets between the firewall application
and the operating system.
A further performance advantage comes from intercepting all communications below the network layer (layer three of the seven layer OSI network model) which reduces latency. Additionally, a reduction in CPU overhead
is achieved by running the Stateful Inspection engine inside the operating system kernel. Together, these technologies give FireWall-1 uncompromising performance in securing today’s connected enterprises.
The VPN-1 range offers VPN (Virtual Private Networking) using DES and
Triple-DES encryption capabilities between firewalls. Check Point also offer
FW-1 on the Nokia IP 200 integrated router/firewall range badged as Check Point’s VPN-1 RemoteLink.
Through the OPSEC (Open Platform for Security Enterprise Connectivity) Alliance Program, FW-1 integrates with over 200 third party products for email content analysis, virus scanning, Java and ActiveX monitoring, load balancing,
high availability, authentication, encryption, intrusion detection, log analysis, VPN and user access technologies. This initiative has resulted in FW-1 becoming the product of choice for network security protection.
Check Point’s latest initiative is Secure Virtual Networking (SVN). SVN integrates FW-1, MetalP and FloodGate-1 into one infrastructure. This enables individual policy-based firewalling and bandwidth management in a DHCP environment.
