Check Point 5200 Security Appliance
Check Point 5200 Security Appliance
Overview:
The Check Point 5200 A ppliance combines the most comprehensive security protections to safeguard your small enterprise and branch office deployme nts . The 5200 is a 1 U appliance with one I/O expansion slot for high er port capacity, a 500 GB h ard disk, and optional Lights – Out Management (LOM) for remote management. This powerful security appliance is optimized to deliver real – world threat prevention to secure your critical assets and environments .
Comprehensive Threat Prevention
The rapid growth of malware, growing attacker sophistication and the rise of new unknown zero – day threats require a different approach to keep enterprise networks and data se cure. Check Point delivers fully integrated, comprehensive Threat Prevention with award – winning SandBlast™ Threat Emulation and Threat Extraction for complete protection against the most sophisticated threats and zero – day vulnerabilities.
Product Benefits
- Enable the most advanced threat prevention security
- Optimal performance even when inspecting SSL encrypted traffic
- Future-proofed technology safeguards against tomorrow’s risks
- Centralized control and LOM improves serviceability
- High performance package optimizes platform performance
- Modular, expandable chassis with flexible I/O options
Product Features
- Simple deployment and management
- Secure remote access to corporate resources from a wide variety of devices
- One network expansion slot to add port density, fiber and fail-open IO card options
- Redundant appliance clustering technologies eliminate a single point of failure
Specification
STT | Tính năng | Checkpoint 5200 |
1 | Performance | |
Enterprise Testing Conditions | ||
Threat Prevention throughput | 1.16 Gbps | |
NGFW throughput | 2.52 Gbps | |
IPS throughput | 3 Gbps | |
Firewall throughput | 7.8 Gbps | |
Ideal Testing Conditions | ||
Firewall throughput (UDP 1518 byte packet) | 16 Gbps | |
VPN throughput AES-128 | 1.88 Gbps | |
Connections per second (64 byte response) | 125,000 | |
Concurrent connections (64 byte response) | 3.2/6.4/6.4 M | |
2 | Additional Features | |
Highlights | ||
Interface support | 5 x 10/100/1000Base-T RJ45 port | |
Management port | 1 x 10/100/1000Base-T RJ45 port | |
USB Port | 2 x USB ports for ISO installation | |
Console port | 1 x RJ45, 1 x Micro USB | |
Network Card Expansion Slot | 1 | |
Lights-Out-Management port | 1 | |
CPU | 1 x CPUs, 2 x physical cores (total) | |
Disk Drives | 1 x 1TB HDD or 1 x 240 GB SSD | |
RAM | 8 and 16 GB memory options | |
Power supply | 1x AC or DC | |
Lights-Out-Management card | Optional | |
Virtual Systems (base/HPP/max mem) | 10/20/20 | |
Network Expansion Slot Options (1 of 1 slots open) | ||
8x 10/100/1000Base-T RJ45 port card, up to 14 ports | Optional | |
4x 1000Base-F SFP port card, up to 4 ports | Optional | |
Fail-Open/Bypass Network Options | ||
4x 10/100/1000Base-T RJ45 port card | Optional | |
3 | Content Security | |
First Time Prevention Capabilities | ||
CPU-level, OS-level and static file analysis | Yes | |
File disarm and reconstruction via Threat Extraction | Yes | |
Average emulation time for unknown files that require full sandbox evaluation is under 100 seconds | Yes | |
Maximal file size for Emulation | 100 MB | |
Emulation OS Support | Windows XP, 7, 8.1, 10 | |
Applications | ||
Use 8,000+ pre-defined or customize your own applications | Yes | |
Accept, prevent, schedule, and apply traffic-shaping | Yes | |
Data Lost Prevention | ||
Classify 700+ pre-defined data types | Yes | |
End user and data owner incident handling | Yes | |
Dynamic User-based Policy | ||
Integrates with Microsoft AD, LDAP, RADIUS, Cisco pxGrid, Terminal Servers and with 3rd parties via a Web API | Yes | |
Enforce consistent policy for local and remote users on Windows, macOS, Linux, Android and Apple iOS platforms | Yes | |
4 | Network | |
Network Connectivity | ||
Total physical and virtual (VLAN) interfaces per appliance: 1024/4096 (single gateway/with virtual systems) | Yes | |
802.3ad passive and active link aggregation | Yes | |
Layer 2 (transparent) and Layer 3 (routing) mode | Yes | |
High Availability | ||
Active/Active L2, Active/Passive L2 and L3 | Yes | |
Session failover for routing change, device and link failure | Yes | |
ClusterXL or VRRP | Yes | |
IPv6 | ||
NAT66, NAT64, NAT46 | ||
CoreXL, SecureXL, HA with VRRPv3 | ||
Unicast and Multicast Routing (see SK98226) | ||
OSPFv2 and v3, BGP, RIP | Yes | |
Static routes, Multicast routes | Yes | |
Policy-based routing | Yes | |
PIM-SM, PIM-SSM, PIM-DM, IGMP v2, and v3 | Yes | |
5 | Physical | |
Power Requirements | ||
Single Power Supply rating | 250W | |
AC power input | 90 to 264V (47-63Hz) | |
Power consumption max | 62.9W | |
Maximum thermal output | 214.6 BTU/hr | |
Dimensions | ||
Enclosure | 1RU | |
Dimensions (WxDxH) | 17.2x16x1.73 in.(438×406.5x44mm) | |
Weight | 13.7 lbs. (6.22 kg) | |
Environmental Conditions | ||
Operating | 0° to 40°C, humidity 5% to 95% | |
Storage | –20° to 70°C, humidity 5% to 95% at 60°C | |
Certifications | ||
Safety | UL, CB, CE, TUV GS | |
Emissions | FCC, CE, VCCI, RCM/C-Tick | |
Environmental | RoHS, WEEE, REACH1, ISO140011 | |
Subscriptions
Support Service | Software Subscription | Standard | Premium | Elite | Diamond |
Check Point PRO Availability | N/A | Yes | Yes | Yes | Yes |
Basic SLA | N/A | 5 x 9 Business Day | 7 x 24 Every Day | 7 x 24 Every Day | 7 x 24 Every Day |
Check Point Engineer On Site for Critical SRs | No | No | No | Yes** | Based on the Support level |
TAC Access | |||||
Support Focal Point | N/A | Desk Support Engineer | Premium Support Engineer | Premium Support Engineer | Designated Diamond Engineer |
Unlimited Service Requests | N/A | Yes | Yes | Yes | Yes |
Committed Response time to Severity-1 issues* | N/A | 30 Minutes | 30 Minutes | 30 Minutes | 30 Minutes |
Committed Response time to Severity 2,3 & 4 issues* | N/A | 4 Hours | Sev 2 – 2 Hours | Sev 2 – 30 Minutes | Based on the Support level |
Sev 3 & 4 – 4 Hours | Sev 3 & 4 – 4 Hours | Sev 3 & 4 – 4 Hours | |||
Allowed number of designated support contact per account | N/A | 5 | 10 | 10 | 10 |
Support Tools | |||||
Latest Hot Fixes & Service Packs | Yes | Yes | Yes | Yes | Yes |
Major Upgrades & Enhancements | Yes | Yes | Yes | Yes | Yes |
Access to Check Point Products Forums | Read | Full Access | Full Access | Full Access | Full Access |
Access to Online Support Knowledgebase | N/A | Advanced | Expert | Expert | Expert |
Hardware Support | |||||
Return Material Authorization (RMA) determination | TAC | TAC | TAC | TAC | Customer |
Specs
System Performance
Firewall throughput | 7.8 Gbps |
Concurrent connections | 3.200.000 / 6.400.000 / 6.400.000 |
New connections/sec | 125,000 |
IPS throughput | 3 Gbps |
NGFW Throughput | 2.52 Gbps |
Threat Protection Throughput | 1.16 Gbps |
Firewall Policies | 16 Gbps of UDP 1518 byte packet firewall throughput |
VPN AES-128 Throughput | 1.88 Gbps |
Physical interfaces
GE RJ45 Ports | 8 x 10/100/1000 Base-T RJ45 port card, up to 14 ports |
GE SFP Slots | 4 x 1000 BaseF SFP port card, up to 4 ports |
SD Card Slot | Micro SDHC Slot |
USB Port | Yes |
Console Port | Yes |
Storage | 1 x 1TB HDD or 240GB SSD storage |
3G/4G Modem Support | Yes |
Dimensions & Enviroment
Mounting | 1 RU |
Dimensions Width x Depth x Height (inches) | 17.2 x 16 x 1.73 |
Dimensions Height x Width x Length (mm) | 438 x 406.5 x 44 |
Weight | 6.22 kg (13.7 lbs) |
Power supply | 90-264 VAC |
Maximum Current | 214.6 BTU/h |
Power Consumption | 62.9 W |
Operating Temperature | 0-40 C |
Storage Temperature | -20-70 C |
Humidity | 5-95% non-condensing |
Certifications | UL/cUL, IEC 60950 CB / EMC: EN55022 Class B, FCC: Part 15 Class B / RoHS, REACH, WEEE |