Check Point 21400 Appliance
Datacenter-grade security appliance (2900 SPU/ 100 Gbps1) with high port density, low latency and acceleration options
Sorry, this unit has been discontinued. Please, contact us for a replacement product!
Today’s firewall is a security device presented with an ever-increasing number of sophisticated threats. As a security gateway it must use multiple technologies to control network access, detect sophisticated attacks and provide additional security capabilities like data loss prevention and protection from web-based threats. The proliferation of mobile devices like iPhones and Tablets and new streaming, social networking and P2P applications requires a higher connection capacity and new application control technologies. Finally, the shift towards enterprise private and public cloud services, in all its variations, changes the company borders and requires enhanced capacity and additional security solutions.
Check Point’s new 21400 Appliance combines fast networking technologies with high performance multi-core capabilities—providing the highest level of security without compromising on network speeds to keep your data, network and employees secure. Optimized for the Software Blades Architecture, the appliance is capable of running any combination of Software Blades—providing the flexibility and the precise level of security for any business at every network location by consolidating multiple security technologies into a single integrated solution.
The 21400 Appliance supports the Check Point 3D security vision of combining policies, people and enforcement for unbeatable protection. To address evolving security needs, Check Point offers Next Generation Security packages of Software Blades focused on specific customer requirements. Threat Prevention, Data Protection, Web Security and Next Generation Firewall technologies are key foundations for a robust 3D Security blueprint.
Check Point 21400 Appliance
Leveraging its multi-core and acceleration technologies, with 2900 SecurityPower Units, the Check Point 21400 appliance supports lightning fast firewall throughput of up-to 110 Gbps1 with sub 5µs latency. The 21400 is designed from the ground up for unmatched flexibility for even the most demanding enterprise and data center network environments.
The 21400 appliance has 3 expansion slots supporting a wide range of network options. The 21400 standard configuration includes a twelve 1 Gigabit Ethernet copper port card. A maximally configured 21400 provides up to 36 Gigabit Ethernet copper or fiber ports or twelve 10 Gigabit Ethernet fiber ports.
Furthermore, the 21400 also has a slot for an optional Security Acceleration Module. In addition to hot-swappable redundant disk drives and power supply units, the 21400 appliance also supports the Lights-Out-Management (LOM) option for remote support and maintenance capabilities. The 21400 Appliance is a highly serviceable chassis. Access to all components is easily available from the front and the back of the unit when mounted in the rack.
1 With Security Acceleration Module
- 2175 - 2900 1 SecurityPower ™
- Simple Deployment and Management
- High Availability and Serviceability
- Optimized for Software Blades Architectur
- Optimized for low latency
- High Port Density
- Maximum Security and Performance
- Security of data center assets
- A modular, serviceable platform fits easily into complex networking environments
- High availability and redundant components eliminates down time
- Centralize control with unified security management and LOM
- Ideal for applications that require low latency transactions
Until today security appliance selection has been based upon selecting specific performance measurements for each security function, usually under optimal lab testing conditions and using a security policy that has one rule. Today customers can select security appliances by their SecurityPower ratings which are based on real-world customer traffic, multiple security functions and a typical security policy.
SecurityPower is a new benchmark that measures the capability and capacity of an appliance to perform multiple advanced security functions (Software Blades) such as IPS, DLP and Application Control in real world traffic conditions. This provides an effective metric to better predict the current and future behavior of appliances under security attacks and in day-to-day operations. Customer SecurityPower Unit (SPU) requirements, determined using the Check Point Appliance Selection Tool, can be matched to the SPU ratings of Check Point Appliances to select the right appliance for their specific requirements.
Security Acceleration Module
The optional Check Point Security Acceleration Module (SAM-108) for the 21400 Appliance is ideal for latency-sensitive applications such as financial trading and VoIP communication. With sub 5 micro-seconds firewall latency, this purpose-built acceleration module boasts 108 SecurityCores accelerating traffic on all Acceleration-Ready interface ports with a single SAM-108. Performance for the 21400 appliance is boosted to 110 Gbps of firewall throughput and 300,000 connections per second and 50 Gbps of VPN throughput. ™
All-inclusive Security Solutions
The Check Point 21400 Appliance offers a complete and consolidated security solution based on the Check Point Software Blade architecture. The appliance is available in four Software Blade packages and extensible to include additional Software Blades for further security protection.
- Next Generation Firewall (NGFW): identify and control applications by user and scan content to stop threats—with IPS and Application Control.
- Next Generation Secure Web Gateway (SWG): enables secure use of Web 2.0 with real time multi-layered protection against web-borne malware—with Application Control, URL Filtering, Antivirus and SmartEvent.
- Next Generation Data Protection (NGDP): preemptively protect sensitive information from unintentional loss, educate users on proper data handling policies and empower them to remediate incidents in real-time—with IPS, Application Control and DLP.
- Next Generation Threat Prevention (NGTP): apply multiple layers of protection to prevent sophisticated cyber-threats— with IPS, Application Control, Antivirus, Anti-Bot, URL Filtering and Email Security.
Prevent Unknown Threats With Threatcloud Emulation
Check Point Appliances are a key component in the ThreatCloud Ecosystem providing excellent protection from undiscovered exploits, zero-day and targeted attacks. Appliances inspect and send suspicious files to the ThreatCloud Emulation Service which runs them in a virtual sandbox to discover malicious behavior. Discovered malware is prevented from entering the network. A signature is created and sent to the ThreatCloud which shares information on the newly identified threat to protect other Check Point customers.
Integrated Security Management
The appliance can either be managed locally with its available integrated security management or via central unified management. Using local management, the appliance can manage itself and one adjacent appliance for high availability purposes.
Inclusive High Performance Package
Customers with high connection capacity requirements can purchase the affordable High Performance Package (HPP) with the Next Generation security package of their choice. This includes the appliance plus an Acceleration Ready 4x10Gb SFP+ interface card, transceivers and 24 GB of memory for high connection capacity. The SAM-108 High Performance Package also includes transceivers, 24 GB of memory in the appliance and 24 GB of memory in the Security Acceleration Module.
A Reliable Serviceable Platform
The Check Point 21400 appliance delivers business continuity and serviceability through features such as hot-swappable redundant power supplies, hot-swappable redundant hard disk drives (RAID), redundant fans and an advanced LOM card for out-of-band management. Combined together, these features ensure a greater degree of business continuity and serviceability when these appliances are deployed in the customer’s networks.
Remote Platform Management And Monitoring
A Lights-Out-Management (LOM) card provides out-of-band remote management to remotely diagnose, start, restart and manage the appliance from a remote location. Administrators can also use the LOM web interface to remotely install an OS image from an ISO file.
GAiA—The Unified Security OS
Check Point GAiA is the next generation Secure Operating System for all Check Point appliances, open servers and virtualized gateways. GAiA combines the best features from IPSO and SecurePlatform into a single unified OS providing greater efficiency and robust performance. By upgrading to GAiA, customers will benefit from improved appliance connection capacity and reduced operating costs. With GAiA, customers will gain the ability to leverage the full breadth and power of all Check Point Software Blades. GAiA secures IPv4 and IPv6 networks utilizing the Check Point Acceleration & Clustering technology and it protects the most complex network environments by supporting dynamic routing protocols like RIP, OSPF, BGP, PIM (sparse and dense mode) and IGMP. As a 64-Bit OS, GAiA increases the connection capacity of select appliances. ™
GAiA simplifies management with segregation of duties by enabling role-based administrative access. Furthermore, GAiA greatly increases operation efficiency by offering Automatic Software Updates. The intuitive and feature-rich Web interface allows for instant search of any commands or properties. GAiA offers full compatibility with IPSO and SecurePlatform command line interfaces, making it an easy transition for existing Check Point customers.
Network Expansion Slot Options (3 slots)
RFC 3511, 2544, 2647, 1242 Performance Tests (LAB)
Operating Environmental Conditions
1With Security Acceleration Module. 2Maximum R77 production performance based upon the SecurityPower benchmark.
Real-world traffic, Multiple Software Blades, Typical rule-base, NAT and Logging enabled.
Check Point recommends 50% SPU utilization to provide room for additional Software
Blades and future traffic growth. Find the right appliance for your performance and security
requirements using the Appliance Selection Tool. 3With the Gaia OS and memory upgrade.
|Advanced Networking & Clustering|
|Mobile Access 1||*|
|Anti-Spam & Email Security||*||*||*|
|Network Policy Management|
|Logging and Status|
|Endpoint Policy Management||*||*||*||*||*|
|NGFW = Next Generation Firewall; NGDP = Next Generation Data Protection; NGTP = Next Generation Threat Prevention; NGSWG = Next Generation Secure Web Gateway
* - Optional
1 Five users are included in default package
Download the Check Point 21400 Appliance Datasheet (PDF).
- Pricing and product availability subject to change without notice.
*The purchase of a Security Gateway container is required per user
Our Price: $4,100.00
Our Price: $3,300.00
Our Price: $3,300.00