https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32396#M13649 <HTML><HEAD></HEAD><BODY><P>Proxies are generally less efficient, though in some environments they are required.</P><P>This might be a better discussion to have with someone in your local Check Point office or reseller.</P><P></P><P>SandBlast can prevent in real-time the first time it sees something.</P><P>Does Fortinet do this? I would encourage you to read their product documentation carefully.</P><P></P><P>Other Check Point gateways are immediately informed when one instance of SandBlast sees a malicious file so other gateways can block it.</P><P>For other non Check Point gateways, you could probably pull the necessary data out of the logs to have other gateways block on it.</P><P></P><P>On Why Check Point, I would offer the following&nbsp;(slightly older but the basic points are still valid):&nbsp;<A class="link-titled" href="https://www.slideshare.net/mobile/MotiSagey/why-check-point-the-four-points-90039443" title="https://www.slideshare.net/mobile/MotiSagey/why-check-point-the-four-points-90039443">WHY CHECK POINT – THE FOUR POINTS</A>&nbsp;</P></BODY></HTML> Wed, 13 Feb 2019 05:42:30 GMT PhoneBoy 2019-02-13T05:42:30Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32394#M13647 <HTML><HEAD></HEAD><BODY><P>Hello Dear,</P><P>I am newcomer to Checkpoint solutions but I always knew they were the best in the field of Firewall.</P><P>My employer had a market in a bank which also its first market with the solution of Checkpoint and what made it possible to have this market is especially its "SandBlast" Blades Extraction &amp; Emulation. But this has left grievances, discontent with the old provider of this bank that already provides FORTIGATE solutions.</P><P>We will have a big meeting with this client and the other suppliers&nbsp;; providers like FORTIGATE. So let me ask you a few questions to be ready to convince, reassure the customer again to have chosen Checkpoint as Firewall solution:</P><P>1- You will see attached a type of topology for a transitional phase where the Appliance is in the local network to be like a proxy</P><P>a-What are the advantages and disadvantages of this architecture.</P><P>b-The good practices of this architecture to allow the solution to be efficient.</P><P>&nbsp;</P><P>2- What are the main particularities and the differences between of Checkpoint's SandBlast and other SandBoxing like Forti Sandbox (Fortinet)</P><P>3- Is It possible for the Checkpoint NGTX to inform other security equipment of the signature of detected malware? If <STRONG>YES</STRONG> how and if <STRONG>NO</STRONG> how to solve this problem?</P><P>4- To finish according to you why choose CheckPoint?</P><P>&nbsp;</P><P>I am very grateful for the help you will give me and your answers will allow me to also reassure myself of the CheckPoint solutions because I am a pure product of Cisco.</P><P>Thanks to you.</P><P>&nbsp;</P><P>Yanick DJINZOU</P></BODY></HTML> Tue, 12 Feb 2019 09:29:25 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32394#M13647 Yanick_DJINZOU 2019-02-12T09:29:25Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32395#M13648 <HTML><HEAD></HEAD><BODY><P><STRONG>Moderation note:</STRONG></P><P></P><P>Please avoid multiple posting into different section.&nbsp;</P><P>You second post is now deleted.</P><P></P><P>Thanks for your understanding</P></BODY></HTML> Tue, 12 Feb 2019 10:33:37 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32395#M13648 _Val_ 2019-02-12T10:33:37Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32396#M13649 <HTML><HEAD></HEAD><BODY><P>Proxies are generally less efficient, though in some environments they are required.</P><P>This might be a better discussion to have with someone in your local Check Point office or reseller.</P><P></P><P>SandBlast can prevent in real-time the first time it sees something.</P><P>Does Fortinet do this? I would encourage you to read their product documentation carefully.</P><P></P><P>Other Check Point gateways are immediately informed when one instance of SandBlast sees a malicious file so other gateways can block it.</P><P>For other non Check Point gateways, you could probably pull the necessary data out of the logs to have other gateways block on it.</P><P></P><P>On Why Check Point, I would offer the following&nbsp;(slightly older but the basic points are still valid):&nbsp;<A class="link-titled" href="https://www.slideshare.net/mobile/MotiSagey/why-check-point-the-four-points-90039443" title="https://www.slideshare.net/mobile/MotiSagey/why-check-point-the-four-points-90039443">WHY CHECK POINT – THE FOUR POINTS</A>&nbsp;</P></BODY></HTML> Wed, 13 Feb 2019 05:42:30 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/PARTICULARITIES-OF-CHECKPOINT-S-NGTX-AND-THE-OTHER-PROVIDERS/m-p/32396#M13649 PhoneBoy 2019-02-13T05:42:30Z