cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

R80.x Security Gateway Architecture (Logical Packet Flow)

Introduction

This document describes the packet flow (partly also connection flows) in a Check Point R80.10 and above with SecureXL and CoreXL, Content Inspection, Stateful inspection, network and port address translation (NAT), MultiCore Virtual Private Network (VPN) functions and forwarding are applied per-packet on the inbound and outbound interfaces of the device. There should be an overview of the basic technologies of a Check Point Firewall. We have also reworked the document several times with Check Point, so that it is now finally available.

Chapter

More interesting articles:
- R80.x Architecture and Performance Tuning - Link Collection
- Article list (Heiko Ankenbrand)

Flowchart basic (now R80.30+)

New R80.30/R80.40 version with new path names, QoS, and QoS fw monitor inspection poins are added.

r8010_packet_flow_1.6a.jpg

 The following paths for VPN and QoS were only logically drawn in this flowchart. In reality, QoS can be executed in the following paths in CoreXL "FireWall QoS Path" and SecureXL "Accelerated QoS Path". The same is valid for VPN. R80.30 has the following paths here (CoreXL with "F2V" and SecureXL with "Accelerated VPN Path").

Download

Download: R80.30 Flowchart v1.6 PDF

...
TO READ THE FULL POST it's simple and free