Академический Документы
Профессиональный Документы
Культура Документы
Check Point
Junior, A. C. Aguiar
Security Product Manager
junior.aguiar@westcon.com.br
Agenda
Software Blade O que ?
Blades de Gateway
Blades de Gerncia
Blades de Endpoint
Compondo as solues
Software Blade
O que ?
Software blade
construir a segurana
em blocos
Independente
Modular
Gerenciamento
Centralizado
Como trabalha?
Selecione o container
Selecione os blades
Configure o sistema
Event Correlation
Reporting
Messaging Security
Management Extensions
Anti-Malware
Provisioning
Anti Virus
Monitoring
VPN
Data Security
URL Filtering
Log Management
Policy Management
Segurana
Endpoint
Network Firewall
Application Firewall
Gerenciamento
IPS Basic
Segurana de
Rede
Blades de Gateway
Blades de Gateway
Blade comum
sem data de expirao
necessita de suporte para renovar apenas a verso
Blade de servio
inativa aps expirao (normalmente 1 ano)
necessidade de renovao para funcionar
Firewall (FW)
VPN IPSEC (VPN)
Mobile Access (MOB)
Identity Awareness (IA)
Advanced Networking (ADN)
Acceleration & Clustering (ACCL)
Web Security (WS)*
* Dependente da blade de IPS
Tap Check
Point Mobile
Enter your
password
Gain secure
access to
your data!
Deployment Wizard
Identity Sharing
Application Detection
and Usage Controls
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
Logs de eventos
Auditoria
Conexes ativas
Status dos Dispositivos
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
SmartWorkflow (WKFL-x)
Blades de Gerncia
Blades de Gerncia
Blades de Gerncia
Blades de Endpoint
Blades de Endpoint
Blade perptua
sem data de expirao
necessita de suporte para renovar apenas a verso
Blade anual
inativa aps expirao (normalmente 1 ano)
necessidade de renovao para funcionar
* Gerenciamento da soluo Endpoint
j incluso em ambas opes.
Firewall (FW)
Full Disk Encryption (FDE-P)
Media Encryption (ME-P)
Remote Access VPN (VPN-P)
Web Check (WEBC-P)
Total Security (TS-P)*
* TS Perptua no inclui a blade de
Anti-Malware.
Firewall (FW)
Full Disk Encryption (FDE)
Media Encryption (ME)
Remote Access VPN (VPN)
Anti-Malware and Program Control (AM)
Web Check (WEBC)
Total Security (TS)**
* Devem ser renovadas anualmente !!!
** TS Annual inclui todas as blades,
inclusive Anti-Malware.
ATENO!!!
Notas importantes:
Blades de UTM (URLF, AV, ASPM, TS) no rodam em IP
appliance.
Power-1 e IP appliance no tem gerncia inclusa. Devemos
cotar parte.
Power-1 e IP appliance no possui part number de HA.
Blades de HA s podem ser utilizadas em containers de HA.
Bundles ou Packages no podem ter suas blades movidas. As
nicas blades que podem ser movidas para outros containers
so aquelas adquiridas separadamente.
FERRAMENTAS TEIS
Compondo as solues
Duas opes
Opo 1:
A La Carte
Opo 2:
Pre-Defined Systems*
SG103
1 core
3 blades
SG407
4 cores
7 blades
SG805
8 cores
5 blades
*Examples
Compondo um gateway
Passo 1
Passo 2
Passo 3
Selecione o container
# ncleos
# usurios
Selecione as blades
Compondo um gateway
Container*
CPSG-C801
CPSG-C401
CPSG-C201
CPSG-C101
Gateway
CPSB-VPN
CPSB-WS
CPSB-ADN
CPSB-ACCL
CPSB-VOIP
Compondo um gateway
Gateway Servios
CPSB-TS-M
CPSB-TS-S*
CPSB-IPS
CPSB-IPS-S*
CPSB-URLF
CPSB-AV
CPSB-ASPM
CPSB-DLP-U **
CPSB-DLP-1500 ***
CPSP-DLP-500 ****
Gateways pr-definidos
SG1207 - 12 ncleos - ilimitado - FW, IA, VPN, AND, ACCL, IPS e APCL
SG807 - 8 ncleos - ilimitado - FW, IA, VPN, AND, ACCL, IPS e APCL
SG409 - 4 ncleos - ilimitado - FW, IA, VPN, ACC, IPS, ASPM, URLF, AV e
APCL
SG407i - 4 ncleos - ilimitado - FW, IA, VPN, ADN, ACCL, IPS e ACCL
SG405 - 4 ncleos - ilimitado - FW, VPN, IPS, ADN e ACCL
SG203U - 2 ncleos - ilimitado - FW, VPN e IPS
SG209 - 2 ncleos - 500 usurios - FW, IA, VPN, ACCL, IPS, ASPM, URLF, AV e
APCL
SG207i - 2 ncleos - 500 usurios - FW, IA, VPN, ADN, ACCL, IPS e APCL
SG205i - 2 ncleos - 500 usurios - FW, IA, VPN, IPS e APCL
SG205U - 2 ncleos - ilimitado - FW, IA, VPN, IPS e APCL
SG205 - 2 ncleos - 500 usurios - FW, VPN, IPS, ADN e ACCL
SG203 - 2 ncleos - 500 usurios - FW, VPN e IPS
SG108 - 1 ncleo - 50 usurios - FW, IA, VPN, IPS, ASPM, URLF, AV e APCL
SG103 - 1 ncleo - 50 usurios - FW, VPN e IPS
Sufixo HA - Part numbers com desconto para membros adicionais de um cluster (ex: CPSB-WS-HA)
Passo 2
Passo 3
Selecione o container
# gateways
Selecione as blades
Configure seu
SmartCenter
LOGS
Unlimited Gateways
EPM
NPM
LOGS
MNTR
EPM
NPM
25 Gateways
MNTR
10 Gateways
Blades
CPSB-NPM
CPSB-EPM
CPSB-LOGS
Blades (cont.)
CPSB-MNTR
CPSB-MPTL
CPSB-UDIR
CPSB-EVNT-INT
CPSB-PRVS
CPSB-EVS-Cxxx **
CPSB-WKFL-y ***
Gerncias pr-definidas
CPSG-P807-CPSM-PU007
CPSG-P407i-CPSM-PU003
CPSG-P407i-CPSM-P2506
CPSG-P407i-CPSM-P1003
CPSG-P203-CPSM-P1003
CPSG-P203-CPSM-P303
CPSG-P103-CPSM-P303
CPSG-P103-CPSM-P203
Passo 2
Passo 3
Selecione o container
# endpoints
Selecione as blades
Configure seu
Endpoint
1-100 Endpoints
MNTR
LOGS
1001-2500 Endpoints
EPM
+2500 Endpoints
+2500 Endpoints
NPM
MNTR
LOGS
EPM
NPM
101-1000 Endpoints
CPEP-C1-1TO100
CPEP-C1-101TO1000
CPEP-C1-1001TO2500
CPEP-C1-2501TOU
Blades
DICAS!!!
Obrigado!!!
Junior, A. C. Aguiar
Security Product Manager
junior.aguiar@westcon.com.br
+55 11 5186.4316
+55 11 9655.6250