pure
security
™
The security you need. The simplicity you want.
pure
security
™
integrated adsL modem
UTM-1 Edge appliances are also available with integrated,
high-speed ADSL modems, which eliminate the need for
external ADSL modems and provide administrators with
simple deployment options. It supports the latest ADSL stan-
dards, including ADSL v2/2+, and is available with Annex A
and Annex B standards.
superior wireless connectivity
UTM-1 Edge W appliances integrate a WiFi access-point
(802.11b/g) supporting multiple security protocols, including
802.1x, IPSec over WLAN, RADIUS, WEP, WPA and WPA2
authentication. They also have dedicated WLAN interfaces
from which you can set specific security rules for WLAN seg-
ments. This protects wireless interfaces by granting access
only to authorized users, thereby preventing hackers from
attacking corporate applications or resources. In addition, the
wireless interface can be segmented into as many as four vir-
tual access points, each with separate security policies and
encryption methods.
hot spot support
UTM-1 Edge appliances can be used to create guest access
networks by setting up hot-spot networks. Administrators
can easily require Web-based user authentication or terms-
of-use approval prior to providing network access. This
enables convenient, yet controlled access for guest users,
without compromising corporate resources.
Wireless roaming
The Wireless Distribution System (WDS) links, available from
UTM-1 Edge W appliances, allow wireless clients to seam-
lessly connect to other UTM-1 Edge wireless devices and
standards based access points, without changing the client
IP address. The access points can be interconnected by
WDS links or by traditional wired Ethernet connections. WDS
links can also be used to create loop-free topologies (such as
stars or trees of access points), and redundant topologies
(such as loops or meshes of linked access points), with
bridge mode and Spanning Tree Protocol.
perforMance and aVaiLabiLitY
UTM-1 Edge appliances include key high-availability and
Quality of Service features, ensuring that your security keeps
pace with network- and business-critical applications.
UTM-1 Edge appliances support WAN redundancy and
load-balancing to ensure persistent connectivity and service
availability. Dialup backup is also supported, providing either
a primary or a secondary Internet connection if the primary
broadband connection is not available. UTM-1 Edge appli-
ances also provide complete support for PSTN and ISDN, as
well as a wide variety of 3G cellular modems. Out-of-bound
dial-in is also supported, to ensure access to the appliance
even in case the Internet connection fails. Automatic failover
is supported across multiple appliances (high-availability), to
guarantee around-the-clock availability.
integrated Quality of service
Network QoS is important where business-critical traffic, such
as VoIP or VPN traffic, is competing with noncritical traffic over
a single internet connection. UTM-1 Edge appliances include
a comprehensive traffic management system that offers
weighted priorities, bandwidth guarantees, and bandwidth
limits. These allocate connectivity resources as predefined by
business priorities and goals. Additionally, UTM-1 Edge W
appliances are the only remote office solutions that support
Wireless Multimedia QoS, which prioritizes multiple types of
traffic flow from different applications— such as audio, video,
and voice—under various environmental and traffic conditions.
utM-1 edGe appLiance specifications
X8/W8
X16/W16
X32/W32
XU/WU
Users
8
16
32
Unlimited
Firewall Throughput
190 Mbps
VPN Throughput
35 Mbps
Concurrent Sessions
8000
10/100 Interfaces
4
Serial Port
4
USB Port
4
*
Firewall & Security Features
Firewall
Check Point Stateful Inspection with Application Intelligence
SmartDefense IDS/IPS
4
Instant Messenger Blocking/Monitoring
4
P2P File Sharing Blocking/Monitoring
4
Port-based Security (802.1x Network Access Control)
4
Port-based and Tag-based VLANs
4
Gateway Antivirus
HTTP, FTP, NBT, POP3, IMAP, SMTP, User-defined TCP and UDP Ports
VPN
Remote access users
1
10
15
25
Remote Access Client Software
Check Point VPN-1
®
SecuRemote
™
(included) / L2TP IPSEC VPN Client
VPN Tunnels
100
Remote Access VPN Client
4
Remote Access VPN Server
IPSec and L2TP
OfficeMode
4
IPSEC Features
Hardware accelerated DES, 3DES, AES, MD5, SHA-1, Hardware Random Number Generator (RNG), Internet
Key Exchange (IKE), Perfect Forward Secrecy (PFS), IPSEC Compression, IPSEC NAT Traversal (NAT-T)
Route-Based VPN
4
Authentication Methods
Digital Certificates or Pre-Shared Secret
Clientless Remote Desktop
4
L2TP VPN Server
4
