Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Peddi
Explorer

Checkpoint 12400 EOL, looking for Virtual firewall

Hello,

Hope you are doing well,..!

I would like to know which checkpoint virtual firewall suitable to replace checkpoint 12400, because 12400 EOL.

similar capacity of checkpoint12400 or little lower , virtual firewall works..

feature only firewall, IPS blade only.. 

 

0 Kudos
10 Replies
Bob_Zimmerman
Authority
Authority

https://catalog.checkpoint.com/

You can get software licenses to run on your own hardware, including in various hypervisors. The 12400 had Xeon E5645 (6c, 32nm, 80W). A four-core software license appears to have a list price of $22,420 including one year of the subscriptions. Running on more modern processors, four cores will give you at least as much throughput as six 13-year-old cores.

You should definitely talk to your sales rep in case there are any relevant promotions.

the_rock
Legend
Legend

Not sure if there is recommended one, as most customers I work with, they use mgmt server in virtual environment and physical firewalls.

Andy

0 Kudos
PhoneBoy
Admin
Admin

According to the data sheet, the 12400 did 3.5GB of IPS throughput: https://sc1.checkpoint.com/uc/pdf/datasheets/12400-appliance-datasheet.pdf
Putting that information into our sizing tool (available to Partners), you get the following:

IMG_0212.jpeg

If you have a cpsizeme output, your Check Point partner/SE can give you a more precise recommendation.

0 Kudos
JozkoMrkvicka
Authority
Authority

According to the Check Point Life Cycle Policy, the 12400 appliance reached EOL in Jun-2022.

The successor of 12400 is 15400 which End of Sale was Dec-2022. 15400 appliance is still supported (EOL) till Dec-2025.

For 15400 appliance there is already known successor - 7000 appliance while EOL of 7000 appliance is not known yet, since the successor of 7000 appliances is also not known yet (is currently the latest model).

7000 appliance can have up to 2 NICs, while original 12400 can have up to 3 NICs. This might be problem if you are using more than 8 Fiber ports on current 12400 appliance.

As always, the costs are the main key player. If you want the cheapest option, use VMs, or open servers.

If you have a bigger budget, try to check 7000 Plus appliances.

Kind regards,
Jozko Mrkvicka
the_rock
Legend
Legend

All good point. I once spoke with a customer running CP fw on vmware. Im not sure thats a good idea, but they told me it was super beefed up, they were really happy with it.

Andy

0 Kudos
Chris_Atkinson
Employee Employee
Employee

For Vmware or other virtualization platform?

Vmware/ESX Performance guidelines:
https://www.checkpoint.com/downloads/products/cloudguard-gateway-performance-for-vmware-esxi-datashe... 

 

From there your SE/reseller can help you on pricing likely based on the following SKU (example):

 

SKU: CPSG-VSEC-VEN-BUN-NGTP-1Y

Description: 1 CloudGuard Network virtual core for VMware ESXi, Hyper-V, KVM Gateway. Annual subscription for 1 year.

Quantity: Total number of vCPU needed

CCSM R77/R80/ELITE
0 Kudos
madu1
Contributor

Do you know which ISO I download to install this on VMware?  Is it just the normal R81.20 ISO for open server?

And do you know if this will run on a single CPU core?  I have a requirement for a VMware gateway with extremely low throughput requirements so a single core would do me just fine if this is supported?  (Gateway only - it'll be managed from a separate SmartCenter).

0 Kudos
emmap
Employee
Employee

Normal ISO, single core should be fine. 

0 Kudos
Chris_Atkinson
Employee Employee
Employee

I believe the release notes say 2 cores is the minimum for an open server deployment, there are also OVF files if you prefer those vs an iso.

CCSM R77/R80/ELITE
PhoneBoy
Admin
Admin

Correct, R8x versions require at least two cores.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events