Check Point VPN-1 Power VSX NGX – Virtual Firewalls Get Clustered


Clustered Firewalls? What on earth next, beowulf IDS systems?

Check Point has added cluster support and more granular controls to its virtual firewall software, memorably named Check Point VPN-1 Power VSX NGX.

Virtual firewalls can now be distributed around a server cluster, with standby firewalls on alternative servers. System administrators can also shift processor power around, taking it from low priority systems and giving to to high priority ones.

“We are seeing a growing market within data centres to have clustered environments so there is no single point of failure,” said Check Point security engineer Caroline Ikomi.

Virtual servers are getting pretty big though, for all kinds of purposes.

“Within the VSX scalability pack, you can allocate virtual systems to specific cluster members based on their performance requirement, and have alternative virtual systems backed up to the same blade as a standby, so making maximum use of resources.”

Check Point claimed that the new clustering capability in VSX enables linear growth in performance, plus real-time monitoring of traffic load distribution, and reduced synchronisation traffic.

The program, which costs from $24,000 for 10 virtual system licences, is a version of Check Point’s firewall, VPN and anti-intrusion software that runs as a virtual application. The company said that it allows a single physical server to run up to 250 virtual security devices.

It’s aimed at large organisations with multiple VLANs so it might interest some of you. It’s also good for running multiple ‘firewall’ devices with different policy sets from the same bit of hardware.

Source: The Register

Posted in: Countermeasures, Security Software


Latest Posts:


dSploit APK Download - Hacking & Security Toolkit For Android dSploit APK Download – Hacking & Security Toolkit For Android
dSploit APK Download is a Hacking & Security Toolkit For Android which can conduct network analysis and penetration testing activities.
Scallion - GPU Based Onion Hash Generator Scallion – GPU Based Onion Hash Generator
Scallion is a GPU-driven Onion Hash Generator written in C#, it lets you create vanity GPG keys and .onion addresses (for Tor's hidden services).
WiFi-Dumper - Dump WiFi Profiles and Cleartext Passwords WiFi-Dumper – Dump WiFi Profiles and Cleartext Passwords
WiFi-Dumper is an open-source Python-based tool to dump WiFi profiles and cleartext passwords of the connected access points on a Windows machine.
truffleHog - Search Git for High Entropy Strings with Commit History truffleHog – Search Git for High Entropy Strings with Commit History
truffleHog is a Python-based tool to search Git for high entropy strings, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.
AIEngine - AI-driven Network Intrusion Detection System AIEngine – AI-driven Network Intrusion Detection System
AIEngine is a next-generation interactive/programmable Python/Ruby/Java/Lua and Go AI-driven Network Intrusion Detection System engine with many capabilities.
Sooty - SOC Analyst All-In-One CLI Tool Sooty – SOC Analyst All-In-One CLI Tool
Sooty is a tool developed with the task of aiding a SOC analyst to automate parts of their workflow and speed up their process.


Comments are closed.