CHECK POINT Security Appliance 5600 Next Generation Threat Extraction

The most advanced threat prevention security

- Comprehensive protections include firewall, IPS, application control, anti-bot, antivirus, URL filtering, and the award-winning sandboxing technology in Check Point SandBlast Zero-Day Protection
- Next Generation Threat Prevention package provides uncompromising protection against known threats
- SandBlast threat prevention provides the most advanced protections against unknown threats, vulnerabilities, and zero-day attacks

Complete protection without compromise

- Hardware and software optimized to deliver full advanced threat prevention security, including inspecting SSL encrypted traffic
- Up to 2.1 Gbps of threat prevention throughput
- Up to 8.1 Gbps of Next-Gen Firewall throughput

Modular, expandable chassis design

- Optional redundant power supplies reduce single points of failure
- Centralized control with Lights-Out-Management (LOM) for enhanced serviceability
- Flexible I/O with a 40 Gigabit Ethernet (GbE) option

Features

The Check Point 5000 appliances offer comprehensive and consolidated security available in two packages:

- Next Generation Threat Prevention (NGTP): prevent sophisticated cyber threats with IPS, application control, antivirus, anti-bot, URL filtering, and email security
- Next Generation Threat Extraction (NGTX): advanced next-generation zero-day threat prevention—NGTP with Threat Emulation and Threat Extraction

Prevent unknown threats

The 5000 appliances are built to protect branch offices to midsize enterprises from both known and unknown threats with antivirus, anti-bot, SandBlast Threat Emulation (Sandboxing), and SandBlast Threat Extraction technologies.

As part of the Check Point SandBlast Zero-Day Protection solution, the cloud-based Threat Emulation engine detects malware at the exploit phase, even before hackers can apply evasion techniques attempting to bypass the sandbox. Files are quickly quarantined and inspected, running in a virtual sandbox to discover malicious behavior before it enters your network. This innovative solution combines cloud-based, CPU-level inspection and OS-level sandboxing to prevent infection from the most dangerous exploits and zero-day and targeted attacks.

In addition, SandBlast Threat Extraction removes exploitable content, including active content and embedded objects, reconstructs files to eliminate potential threats, and promptly delivers sanitized content to users to maintain business flow.

Optional high-performance package

Customers with high connection capacity requirements can purchase the affordable High-Performance package. This includes the appliance plus one interface card with transceivers and Lights-Out-Management.

Flexible connectivity options

High-speed connectivity is essential to meeting the needs of today’s enterprise networks. That’s why the 5000 appliances are built to provide maximum port density and flexible connectivity in a compact, single rack unit form factor, including support for 4x1GbE, 4x10GbE (5600 and 5800) as well as 2x40GbE (5800).

Remote management and monitoring

An optional LOM card provides out-of-band remote management to diagnose, start, restart, and manage the appliance from a remote location. Administrators can also use the LOM web interface to remotely install an OS image from an ISO file.

A reliable, serviceable platform

The Check Point 5000 appliances deliver business continuity and serviceability through optional features such as hot swappable redundant power supplies as well as advanced Lights-Out-Management (LOM) for out-of-band management. In combination, these features ensure a greater degree of business continuity and serviceability for customer networks.

Integrated Security Management

Every Check Point appliance can be managed either locally via its available integrated security management or centrally via unified management. An intuitive, web-based administration interface provides local management of up to two 5000 appliances for high-availability deployments.