Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

bv-Control for Check Point® FireWall-1

Product Version Certified: 8.00 (hot fix FSB179587)
Certified for use with: Check Point NG

Product Description: bv-Control for Check Point FireWall-1 helps organizations secure their environment by enabling them to assess their Check Point FireWall-1 logs and audit their firewall configurations. Using both pre-defined and fully customizable reports, users can more easily manage the large amounts of data generated in the firewall logs and report on Check Point FireWall-1 configurations throughout their enterprise.
 
Key Features and Benefits
OPSEC Integration 		   
 

Company Description: Symantec is a leading provider of proactive business policy, IT security and directory management software worldwide. Our solutions enable customers to centralize and automate policy compliance, vulnerability assessment and directory administration across the entire organization. Customers benefit from reduced risk and improved operational efficiencies with a verifiable return on investment.

Symantec Vulnerability Management solutions enable organizations to proactively audit, assess, and secure multi-platform environments from internal and external attacks. The award-winning software suite helps IT professionals properly configure and protect their operating environments, avoid unplanned downtime, and realize desired returns on IT investments.
 
 
Key Features and Benefits
Benefits
  • Detecting and assessing potentially harmful network traffic, such as:
    • Firewall backdoors
    • Behavior that may indicate a firewall breach
  • Analyzing compliance with corporate usage policies and promoting proper use of corporate resources by detecting:
    • "Chat" or instant messaging applications
    • Use of music file-sharing networks
    • Gaming applications
  • Auditing firewall configurations
    • Use a baseline to show deltas
    • Identify potential configuration issues

Out-of-the-Box Reporting
bv-Control for Check Point FireWall-1 ships with numerous reports to help organizations get a quick start on their security assessment. Reports can be modified or easily created. With so much data to monitor, bv-Control for Check Point FireWall-1 provides the ability to maintain control of an ever-changing firewall environment.

Architectural Advantage
Because bv-Control for Check Point FireWall-1 does not require an agent to be installed on each managed firewall or each management server, performance is not degraded, and there is nothing extra to manage. Even without agents, bv-Control for Check Point FireWall-1 allows users to report on their firewall logs and configuration across their enterprise, even if the firewalls are behind different management servers.

 
OPSEC Integration

bv-Control for Check Point FireWall-1 is integrated with the OPSEC via LEA (Log Export API) to pull current as well as historical log records from the Check Point Management Server that the product points to and generates various reports based on the user queries. bv-Control for Check Point FireWall-1 connects to Management Server using user configurable Check Point authentication methods.

The crucial Management Server configuration reporting is achieved through integration via CPMI.

In order to keep the product configuration easy for the administrators the product also leverages CPRA.