Competing in a crowded SSL VPN market, Check Point’s Connectra 2.0 is positioned as not just a secure remote access solution, but also a complete Web security gateway. As such, Connectra not only validates client PCs for anti-virus and personal firewall status, but also scans for malware and quarantines unruly clients. Further, by tying into Check Point’s SmartCenter management platform, Connectra takes advantage of other Check Point technologies such as SmartDefense packet inspection and the Integrity personal firewall.
Connectra is a software-based SSL VPN solution available for existing Intel-based hardware, though you can order it on hardware through Check Point. I installed the software on one of my test servers without any problems and had the system operational within 30 minutes. Its administrative interface is lean and easy to navigate.
User authentication is available via RADIUS, LDAP, Active Directory via LDAP, digital certificates, and local database. The VPN supports browser access to Web-based applications, Windows file shares, and e-mail. Connectra also supports Layer 3 tunneling for network-level access, but as with other SSL solutions, this support is limited to Windows clients. Connectra offers no TCP-based “thin client” access like that found in SSL VPNs such as the Juniper SA-5000.
End-point security is one of Connectra’s greatest strengths. Check Point includes its Integrity Secure Browser for secure, sandboxed sessions, in which all session information is encrypted in transit and deleted from the client upon close. I like the built-in firewall and application layer protection, too. SmartDefense looks for various packet-level attacks while Application Intelligence and Web Intelligence look for malformed application and HTTP traffic.
Cost: Starts at $8,000
Available: Now shipping
You may still be better off sticking with Win7 or Win8.1, given the wide range of ongoing Win10...
Early results look promising: the many-hours-long Win7 waits may be behind us
Now that we're down to the wire, many upgraders report that the installer hangs. If this happens to...
Emergencies like the Dyn DDoS attack will keep occurring. The only solution is a better, more secure...
The reason: Microsoft hasn't taken the vagaries of on-the-go-environments seriously enough
The tool, now called Microsoft Cognitive Toolkit, gets a big performance boost and adds reinforcement...
By treating cloud transformation as simply an IT project, you can surely expect the rest of the...