vFirewall

Check Point Firewall & SDN/NFV Network Security Application


Telco Systems’ vFirewall SDN & NFV application enables service providers to provide their customers with the best-of-breed security gateway functionality as a service.

vFirewall is based on CheckPoint’s world renowned, proven firewall securing more than 200 applications, protocols and services, that features the most adaptive and intelligent inspection technology.

Telco Systems’ CloudMetro NFV product family provides operators with the ability to centrally manage and execute vFirewall instances over demarcation and aggregation SDN & NFV devices, based on end customers’needs and agreements.
Download vFirewall Data sheetA4 PDF  US Letter PDF  
Telco Systems’ vFirewall SDN & NFV application enables service providers to provide their customers with the best-of-breed security gateway functionality as a service. vFirewall is based on Check Point’s world renowned, proven firewall securing more than 200 applications, protocols and services, that features the most adaptive and intelligent inspection technology.

Telco Systems’ CloudMetro NFV product family provides operators with the ability to centrally manage and execute vFirewall instances over demarcation and aggregation SDN & NFV devices, based on end customers’ needs and agreements.

Check Point Firewall builds on the award-winning technology first offered in Check Point’s FireWall-1 solution to provide the industry’s strongest level of gateway security and identity awareness.

Check Point’s firewalls are trusted by 100% of Fortune 100 companies, and are deployed by over 170,000 customers, demonstrating their industry leadership and continued innovation.

Check Point software architecture supports a complete and increasing selection of security solutions, each delivering a modular security gateway or security management function. Check Point solutions are modular and moveable, enabling users to efficiently and quickly tailor security gateway and management functionality to specific and changing security needs. New features are quickly licensed as needed. without the addition of new hardware.
  • Access Control: users, groups, applications, machines and connection types
  • User and Machine Awareness
  • Authentication
  • Network Address Translation (NAT)
  • Bridge Mode
Protocol Support500 plus protocol types
VoIP ProtectionSIP, H.323, MGCP and SIP with NAT support
Network AddressTranslationStatic/hide NAT support with manual or automatic rules
DHCP GatewaysSecurity gateways can have dynamic IP addresses
VLANUp to 1024 interfaces (physical and virtual)
Link Aggregation802.3ad passive and 802.3ad active
Bridge Mode/Transparent ModeInspect traffic without interfering with the original IP routing
Extensive Set of Policy ObjectsIndividual node, networks, groups, dynamic objects
IP VersionsIPv4 and IPv6
Fail-Safe ProtectionsDefault filter provides protection during boot time and prior to initial policy
Secure Internet Communications (SIC)Certificate-based, secure communications channel among all Check Point distributed components belonging to a single management domain
Authentication 
Multiple Authentication MethodsActive Directory query, browser based captive portal and Kerberos SSO, identity agents, RADIUS accounting, Remote Access VPN SSO
Local UsersLocal database user store included
RADIUS and RADIUS GroupsMultiple servers and MS-CHAPv2, MS-PAP methods
LDAP and LDAP GroupsMicrosoft Active Directory, Novell Directory Server, Red Hat Directory Server, OPSEC certified LDAP server
TACACS+Supported
RSA SecurIDSupported
X.509 CertificatesSupported using the included Certificate Authority or third party CAs
Customizable Authentication MessagesSupported
Data Sheets
vFirewall Data sheet
A4 PDF (2.23 MB) • Letter PDF (2.23 MB) • updated: 2014-10-15
Checkpoint + Telco Systems vFirewall Solution Brief
Letter PDF (486.98 KB) • updated: 2016-01-14