HOME

TheInfoList



Click Here for Items Related To - Nokia IPSO
OR:
Nokia IPSO on:   [Wikipedia]   [Google]   [Amazon]

Check Point IPSO is the
operating system An operating system (OS) is system software that manages computer hardware and software resources, and provides common daemon (computing), services for computer programs. Time-sharing operating systems scheduler (computing), schedule tasks for ...
for the 'Check Point firewall' appliance and other security devices, based on
FreeBSD FreeBSD is a free-software Unix-like operating system descended from the Berkeley Software Distribution (BSD). The first version was released in 1993 developed from 386BSD, one of the first fully functional and free Unix clones on affordable ...
, with numerous hardening features applied. The IP in IPSO refers to
Ipsilon Networks Ipsilon Networks, Inc., was a computer networking company which specialised in IP switching during the 1990s. The first product called the IP Switch ATM 1600 was announced in March 1996 for US$46,000. Its switch used Asynchronous Transfer Mode (A ...
, a company specialising in IP switching acquired by
Nokia Nokia Corporation is a Finnish multinational corporation, multinational telecommunications industry, telecommunications, technology company, information technology, and consumer electronics corporation, originally established as a pulp mill in 1 ...
in 1997. In 2009,
Check Point Check Point Software Technologies Ltd. is an Israeli multinational provider of software and combined hardware and software products for IT security, including network security, endpoint security, cloud security, mobile security, data security ...
acquired the Nokia security appliance business, including IPSO, from Nokia.


Variations

IPSO, now at version 6.2, is a fork of FreeBSD 6. There were two other systems, called IPSO-SX and IPSO-LX, that were Linux-based: * IPSO SX was Nokia's first release of a Linux-based IPSO, and was deployed in 2002 on the now-defunct Message Protector, and briefly thereafter on a short-lived appliance version of the "Nokia Access Mobilizer", acquired from Eizel. It had a partitioning scheme somewhat reminiscent of IPSO SB, a LILO configuration and
boot manager A bootloader, also spelled as boot loader or called bootstrap loader, is a computer program that is responsible for booting a computer and booting an operating system. If it also provides an interactive menu with multiple boot choices then it's o ...
also somewhat inspired by IPSO SB, and a software package installer that made
RPM Revolutions per minute (abbreviated rpm, RPM, rev/min, r/min, or r⋅min−1) is a unit of rotational speed (or rotational frequency) for rotating machines. One revolution per minute is equivalent to hertz. Standards ISO 80000-3:2019 def ...
packaging look more familiar to a Nokia IPSO administrator. It did not, however, include a full configuration database or Voyager web interface, the two things that normally define IPSO. * IPSO LX is a nearly
vanilla Vanilla is a spice derived from orchids of the genus ''Vanilla (genus), Vanilla'', primarily obtained from pods of the flat-leaved vanilla (''Vanilla planifolia, V. planifolia''). ''Vanilla'' is not Autogamy, autogamous, so pollination ...
Gentoo-based Linux OS, and is used on Nokia appliances sold with
Sourcefire Sourcefire, Inc was a technology company that developed network security hardware and software. The company's Firepower network security appliances were based on Snort, an open-source intrusion detection system (IDS). Sourcefire was acquired ...
3D. It includes a full Voyager and database implementation—in fact, the Voyager look and feel in IPSO SB 4.0 onwards was based on that implemented for IPSO LX. Check Point offers three lines of security appliances – one based on IPSO 6.x, one based on an operating system called SecurePlatform and the latest based on Gaia platform (RHEL4 based).


Features

IPSO notable features or firsts include: * Effective firewall load-balancing (in conjunction with
Check Point Check Point Software Technologies Ltd. is an Israeli multinational provider of software and combined hardware and software products for IT security, including network security, endpoint security, cloud security, mobile security, data security ...
synchronization), derived from Network Alchemy clustering technology, predating and still independently developed from Check Points ClusterXL. * The first commercial
IPv6 Internet Protocol version 6 (IPv6) is the most recent version of the Internet Protocol (IP), the communication protocol, communications protocol that provides an identification and location system for computers on networks and routes traffic ...
router out of
beta-testing Software testing is the act of checking whether software satisfies expectations. Software testing can provide objective, independent information about the quality of software and the risk of its failure to a user or sponsor. Software testing ...
(ahead of
Cisco Cisco Systems, Inc. (using the trademark Cisco) is an American multinational digital communications technology conglomerate corporation headquartered in San Jose, California. Cisco develops, manufactures, and sells networking hardware, s ...
and
Juniper Networks Juniper Networks, Inc. is an American multinational corporation headquartered in Sunnyvale, California. The company develops and markets networking products, including Router (computing), routers, Network switch, switches, network management so ...
) * Firewall Flows for putting Check Point security rule implementation into the dedicated network processor circuitry on-the-fly (though this is now largely evolved into Check Point's SecureXL)


Versions

IPSO SB was originally derived by
Ipsilon Networks Ipsilon Networks, Inc., was a computer networking company which specialised in IP switching during the 1990s. The first product called the IP Switch ATM 1600 was announced in March 1996 for US$46,000. Its switch used Asynchronous Transfer Mode (A ...
from FreeBSD 2.1-STABLE and cross-compiled on FreeBSD 2.2.6-RELEASE and 3.5-RELEASE platforms. Its major components are: * A configuration database held in memory by the "xpand" daemon, that creates legacy UNIX configuration in /etc on-the-fly. * A partitioning scheme which places a mini-IPSO in a separate boot manager partition for recovery * A partition-slicing scheme which segregates read-only and read-write content * A software packaging scheme which requires all packages to remain in a single location under /opt * A web interface, Voyager, which was closely integrated with the configuration database. (It has now diverged somewhat.) Ipsilon Networks sold IPSO versions up to 2.x as part of the ATM tag-switching solutions that they originally pioneered. IPSO 3.0 onwards were designed to host Check Point
FireWall-1 Check Point Software Technologies Ltd. is an Israeli multinational provider of software and combined hardware and software products for IT security, including network security, endpoint security, cloud security, mobile security, data security ...
and other third party packages. IPSO 3.0 to 3.9 spanned from 1999 to 2005 and, while adding many features and significant performance and hardware refinements, were recognizably the same to the administrator. IPSO 4.0 was not designed as a major update and was internally numbered as IPSO 3.10. However, Check Point software could not process a two-digit dot version, and it also included a refresh of the Voyager HTML interface. Up to that point,
JavaScript JavaScript (), often abbreviated as JS, is a programming language and core technology of the World Wide Web, alongside HTML and CSS. Ninety-nine percent of websites use JavaScript on the client side for webpage behavior. Web browsers have ...
and frames had been avoided in order to facilitate the use of
Lynx A lynx ( ; : lynx or lynxes) is any of the four wikt:extant, extant species (the Canada lynx, Iberian lynx, Eurasian lynx and the bobcat) within the medium-sized wild Felidae, cat genus ''Lynx''. The name originated in Middle Engl ...
as a command line interface. These together resulted in it being renumbered as 4.0. IPSO 4.1 and IPSO 4.2 are incremental releases. IPSO 4.2 will gain source-based routing as its last scheduled new feature. All new development will continue on IPSO 6.x. IPSO 5.0 build 056 was released in 2009 for VSX R65 support on IP Appliance. Nokia announced IPSO 6.0 in relation to the IP2450 and IP690 hardware. It is based on FreeBSD 6.x. Its primary advantage over IPSO 4.x are improved memory management, performance, scheduling, threading, POSIX-compliance, and other operating system features. IPSO 6.0.7 was released in 2009 for IP690 and IP2450 with CoreXL (multi-core) support. IPSO 6.1 contains other enhancements from FreeBSD 6.x but without CoreXL support. Because of the step change, Nokia advertised that IPSO 4.2, 6.07 and 6.1 will run alongside each other for a period of time. When Check Point acquired Nokia IP appliance business, 6.07 and 6.1 development branches were merged and combined to 6.2. Most recent version is IPSO 6.2MR6, released in February 2017. For a while, Nokia offered IPSO 7, which was actually IPSO LX. It was discontinued after 7.2, in 2008. After acquiring the Nokia IP appliance business, Check Point announced project Gaia to combine both IPSO and Secure Platform. The first release is expected in 2011.


References


External links


FreeBSD 2.2.6 base manual pages

Check Point firewall packages

Other packages and directory
{{DEFAULTSORT:Nokia Ipso Nokia platforms