Secure virtual hubs using Check Point Harmony Connect

Note

This offering provides limited features compared to the Check Point NVA integration with Virtual WAN. We strongly recommend using this NVA integration to secure your network traffic.

Check Point Harmony Connect is a Trusted Security Partner in Azure Firewall Manager. It protects globally distributed branch office to Internet (B2I) or virtual network to Internet (V2I) connections with advanced threat prevention.

With a simple configuration in Azure Firewall Manager, you can route branch hub and virtual network connections to the Internet through the Harmony Connect security as a service (SECaaS). Traffic is protected in transit from your hub to the Check Point cloud service in IPsec VPN tunnels.

When you enable auto-sync in the Check Point portal, any resource marked as secured in the Azure portal is automatically secured. You don't have to manage your assets twice. You simply choose to secure them once in the Azure portal.

Check Point unifies multiple security services under one umbrella. Integrated security traffic is decrypted once and inspected in a single pass. Application Control, URL Filtering, and Content Awareness (DLP) enforce safe web use and protect your data. IPS and Antivirus protect users from known network exploits. Anti-Bot blocks connections to Command and Control servers and alerts you if a host is infected.

Threat Emulation (sandboxing) protects users from unknown and zero-day threats. Check Point SandBlast Zero-Day Protection is a cloud-hosted sand-boxing technology where files are quickly quarantined and inspected. It runs in a virtual sandbox to discover malicious behavior before it enters your network. It prevents threats before the damage is done to save staff valuable time responding to threats.

Deployment example

Next steps