Check Point Advisories

Supported SmartDefense and Web Intelligence Protections for VPN-1 VSX NGX Gateways

Check Point Reference: SBP-2006-10
Date Published: 11 Oct 2006
Severity: Medium
Last Updated: Tuesday 08 May, 2007
Source: SmartDefense Research Center
Protection Provided by:
Who is Vulnerable?
Vulnerability Description VPN-1 VSX provides a set of virtual components acting as real network devices such as Firewall gateways, routers, switches, and network cables. Using these virtual components, network topologies are created that are functionally equivalent to networks built with physical devices. Each Virtual Firewall, called a Virtual System, functions as a separate Firewall. As packets arrive at a VSX Gateway, the VSX gateway selects the appropriate Virtual System to handle them. Instead of using multiple Firewall/VPN Gateways (each protecting a single internal network) a single VPN-1 VSX Gateway is used to protect multiple networks.

VSX is a security solution designed for large enterprises,data centers and service provider POPs. By aggregating multiple security domains on a single platform, VPN-1 VSX minimizes hardware investment through the use of virtualization.

VSX supports multiple SmartDefense and Web Intelligence protections. For a complete list of the supported protections, click Details.  
Vulnerability DetailsThe following SmartDefense protections are supported in VSX:

  • IP and ICMP
  • Denial of Service
  • TCP
  • Successive Events
  • Dynamic Ports
  • Anti-Spoofing
  • Microsoft Networks
  • DNS
  • VPN Protocols
  • Content Inspection
  • MS-RPC
  • MS-SQL
  • SOCKS
  • Routing Protcols
  • SUN-RPC
  • DHCP

    The following Web Intelligence protections are supported in VSX:
  • Malicious Code
  • HTTP Protocol Inspection

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK