Connectra 2.0 combines SSL VPN, deep packet inspection, and rich end-point security options
Competing in a crowded SSL VPN market, Check Point’s Connectra 2.0 is positioned as not just a secure remote access solution, but also a complete Web security gateway. As such, Connectra not only validates client PCs for anti-virus and personal firewall status, but also scans for malware and quarantines unruly clients. Further, by tying into Check Point’s SmartCenter management platform, Connectra takes advantage of other Check Point technologies such as SmartDefense packet inspection and the Integrity personal firewall.
Connectra is a software-based SSL VPN solution available for existing Intel-based hardware, though you can order it on hardware through Check Point. I installed the software on one of my test servers without any problems and had the system operational within 30 minutes. Its administrative interface is lean and easy to navigate.
User authentication is available via RADIUS, LDAP, Active Directory via LDAP, digital certificates, and local database. The VPN supports browser access to Web-based applications, Windows file shares, and e-mail. Connectra also supports Layer 3 tunneling for network-level access, but as with other SSL solutions, this support is limited to Windows clients. Connectra offers no TCP-based “thin client” access like that found in SSL VPNs such as the Juniper SA-5000.
End-point security is one of Connectra’s greatest strengths. Check Point includes its Integrity Secure Browser for secure, sandboxed sessions, in which all session information is encrypted in transit and deleted from the client upon close. I like the built-in firewall and application layer protection, too. SmartDefense looks for various packet-level attacks while Application Intelligence and Web Intelligence look for malformed application and HTTP traffic.
Cost: Starts at $8,000
Available: Now shipping
Supreme Court's decision is bad news for developers targeting the U.S. market, who will now have to...
Siri gets smarter. Apple Watch gets much more useful. And is Apple Music poised to kill other streaming...
People who have it don’t want it. People who want it don’t have it. Here's how to go from iconed to...
Confusing your self-interest with your customer’s interest is not how you deliver greatness
Windows honcho Terry Myerson just provided details about the Windows 10 rollout. Here's the translation...
Feeling aggressive about getting rid of sensitive records? We've got the answer! Here are a few ways to...
Nothing is safe, thanks to the select few hacks that push the limits of what we thought possible