Check Point CloudGuard Network Security Reviews

We use it for security in public cloud implementations, specifically in AWS and Azure. 

For my customer's organization, it's important because they can work with the same kind of solution. They don't need many different solutions in many different use cases. And then they have better management of the solution in general.

CloudGuard Network Security provides unified security management across hybrid clouds as well as on-prem. It's very important because when I have unified security, I have better control of the situation. 

If there's an attack or something like that, we can react faster. It's easier for everyone in the organization to work with the Infinity platform.  

The integration in the Infinity portal. It's very important for someone to consider the solution if you need to work through a purchase partner. Because they can manage the entire solution consistently with the on-premise Quantum solution and the cloud solution in Azure or AWS without that integration, it's valuable.  

It needs to cover additional kinds of infrastructure, like containers and serverless options. It's somewhat limited in that area.

I have been using it for six months. 

It is a stable product. I haven't heard any problems or complaints from my customers. 

It's quite scalable because we scale by compute units. It's very easy for us to make a new deployment.

We used to replace cloud-native solutions from Azure directly or AWS. We don't implement those originally.

It's important for us because we have had a lot of traditional customers. Then, it's a good way to extend this security to the new deployments in public clouds. It's very important for us. 

Additionally, the customer is going to find another choice in the market.

The deployment is easy.  

The price is fair for most of the customers. We don't find the price excessive. It's okay. We can sell it. It's not really hard.

So, the pricing is good. 

I would recommend using it. 

Overall, I would rate the solution a nine out of ten. It is very good. Because it's very well integrated with the traditional platform, especially the Infinity portal part. The unified security concept is very sound for that.

However, there is always room for improvement, we always have to extend the capabilities to other use cases.

I use CloudGuard Network Security to enhance our cloud exchange points' security. Our customers can seamlessly connect across multiple clouds within the region, and CloudGuard provides next-generation firewall services to ensure their data and applications are protected.

CloudGuard Network Security has significantly improved our organization by helping us tap into the Check Point customer market.

The VPN features in CloudGuard Network Security have been the most valuable for us. It allows us to scale securely within our infrastructure, providing both strong security and VPN capabilities.

In the next release, including VRF support would be highly beneficial. Many customers have been requesting this feature, as it is currently lacking in Check Point's offerings, which can make architectural designs more cumbersome compared to competitors.

I have been working with CloudGuard Network Security for two and a half years.

As for scalability, it could be even better with VRF support, as it would allow for more efficient scaling without the need to deploy separate firewalls for different workloads.

CloudGuard Network Security has been quite stable.

I would rate technical support for CloudGuard as an eight out of ten.To make it a ten, I would expect more proactive assistance and smoother transitions between support levels.

Positive

When comparing CloudGuard Network Security to other solutions like Fortinet and Palo Alto Firewalls, they are similar in terms of identifying security threats. They all offer robust features such as antivirus, deep packet inspection, and IPS. Some of our customers have transitioned from Palo Alto to Check Point. While I don't have specific reasons, it could be related to factors like pricing.

We deployed it across multiple locations, utilizing AWS for SMS management. The environment was designed to ensure security and privacy, with all deployments being private despite being in the public cloud. Our implementation strategy was flexible, depending on the customer's needs, focusing on workload security first and then gradually migrating workloads. The initial deployment was straightforward.

One significant difference between CloudGuard Network Security and other solutions is the lack of VRF support. This means that when dealing with customers who have multiple segments and exchange points, deploying new firewalls becomes necessary. Competitors' solutions typically include VRF support, making scaling much easier and eliminating the need for additional firewall purchases.

We chose CloudGuard over other vendors because it allows us to provide unified security across multiple cloud providers like AWS, Azure, and Google Cloud. Unlike native cloud firewalls, CloudGuard offers scalability and the ability to expand across different platforms, meeting our customers' needs for consistent security across diverse cloud environments.

We implemented CloudGuard Network Security to meet our customers' demands for enhanced security features and centralized management. They specifically requested Check Point CloudGuard for its robust capabilities, including SMS and MDS for global management.

Using CloudGuard Duo Security has provided us with the ability to manage globally through MDS, which has been a valuable capability. It is convenient to have multiple pockets of global management from UniFi OS.

We realized the benefits of CloudGuard Duo Security quickly after deployment. Understanding the architecture, especially the MDS setup for higher-level organization control, allowed us to establish multiple pockets of management efficiently.

Unified security management allows us to streamline our security operations significantly. With centralized management through SMS and MDS, we can efficiently oversee not only the firewalls within our cloud exchange points but also on-premises devices, enabling a cohesive and unified security architecture across all environments.

I'm very confident in CloudGuard Network Security because it helps us secure our global network. With CloudGuard, we can set up rules to protect against risks from on-premises traffic and ensure security through various measures like single sign-on integration and VPN restrictions.

CloudGuard Network Security is a great product that fulfills firewall needs effectively and provides detailed insights. However, in multi-segment environments requiring multiple VRFs, it can be cumbersome and costly due to the need for separate firewalls.

The best lesson I have learned from using CloudGuard Network Security is to carefully consider the scalability requirements of each environment. While Check Point offers robust features, the lack of VRF support can lead to increased costs and complexity, especially in multi-segment setups where separate firewalls are needed for each segment.

Overall, I would rate CloudGuard Network Security as an eight out of ten.

We use the solution for the ingress and egress, often for VMSS auto-scaling groups. This involves linking on-premises to the cloud and managing incoming traffic within the same cloud environment.

Customers appreciate the CME plugin for automatically understanding assets within the cloud. This information appears in the manager, allowing users to tag the assets and adjust policies and rules accordingly.

The IT personnel who transition from on-premises to the cloud experience the same understanding, knowledge, and comfort with the cloud environment, using the familiar interface they had on-premises.

People don't know about the tool's features. There's a lack of skill. Users require more knowledge on how to integrate it into the cloud environment and orchestrate routing. So, it's not necessarily a CloudGuard Network Security or Check Point issue but more about integration, knowledge, and understanding.

I have been using the product for six years. 

The product's stability is good. 

The solution's scalability is good. 

The solution's support is good. 

Neutral

The tool's pricing is good. Customers want it to be cheap. I consider the pricing to be elastic. CloudGuard Network Security is perceived as cost-effective compared to using the built-in tools provided by the cloud. Specifically, the VPN functionality is more economical in CloudGuard Network Security, where users can create multiple VPNs without additional charges for each VPN, paying only for the bandwidth. This is contrasted with cloud providers that may charge for each VPN on a per-minute basis, including Ingress and Egress costs.

Unified Security Management provides a consistent interface and knowledge base, allowing those who were trained in Check Point for on-premise use to apply that same understanding across various cloud environments such as Google, AWS, Alibaba, Oracle, and more.

I rate the product an eight out of ten. There is always work to be done. However, some customers may find other technologies more understandable, and there could be a perceived difficulty in the human-computer interaction with Check Point. This might create challenges in comparison to competitors, as customers may find competitors' solutions easier to use.

We use it for network protection. We're using its latest version.

We're benefiting from the solution. We're protecting all of our assets with it. It's a very good security solution. We don't face any big challenges or problems.

Security effectiveness is the most valuable feature. Operational efficiency, reporting, and support are also good.

The SD-WAN could be better.

I have been using this solution for more than ten years.

Their support is very good. I'd rate them an eight out of ten.

Positive

We have been using the same solution from the beginning. 

The initial setup is very easy. It took two to four hours.

We have a hybrid cloud deployment. We have Azure and AWS.

We used an integrator. Our experience with them wasn't great. 

We've seen an ROI with this solution.

It's not very expensive. It isn't very cheap either. Its price is okay. It depends on how much money you have. It might be expensive for some companies.

Its licensing is on a yearly basis.

We evaluated solutions from Forcepoint, Cisco, and Fortinet. We went for it because of its security effectiveness and operational efficiency.

It's the best solution to use. You can trust it. We don't have any issues with it. It works fine.

Overall, I'd rate it a ten out of ten.

We use the security gateways to protect the virtual data centers. 

The most valuable feature for us is the ability to run the gateways as virtual machines in our virtual data center. The tool protects the virtual data centers. 

The solution's integration with cloud providers has seen significant development in the past months, but there is room for improvement for better integration.

I have been using the product for two years. 

CloudGuard Network security is stable. 

Scaling up is straightforward, involving the purchase of additional licenses and allocating virtual CPUs to the client.

CloudGuard Network Security's support is good. I would like the support to be faster. However, it is not possible all the time. 

Positive

The tool's deployment is straightforward. 

My customers have experienced ROI with the tool's use. If there's a security issue, it can lead to downtime or loss of data, which means losing money. So, the main focus is on the financial aspect. Security is also one of the benefits of using the product. 

We have both cloud and on-premises deployment models. The solution offers protection and full visibility of traffic on cloud solutions. It is rock solid and comes with proven technology. We can benefit from its detection rates and security. I rate the overall product a ten out of ten. It is a straightforward solution that uses existing technology. We don't have to learn new technology. We can use what we know and deploy it on to the cloud. 

I can easily secure communication between our Azure Stack Hub and local Azure environments using CloudGuard gateways. This ensures that when I deploy applications in Azure, I can securely access databases and other resources in my local environment through a VPN channel. It is a straightforward way to keep everything protected as I work between the cloud and on-premises infrastructure.

The central management feature is a big plus, allowing us to manage both local and cloud gateways from one platform. Another advantage is the unified logging system, which makes it easy to track all communications. Index logs enable us to see all of the logs with all of the features in one place. Unlike other solutions like Palo Alto's Panorama, where checking logs can be cumbersome, CloudGuard's interface is user-friendly and efficient. I have to manually click on every log, one at a time. This helps streamline our deployment process, as I focus on the initial setup before handing it off to other departments for ongoing management.

CloudGuard's ease of policy creation and centralized logging are definite strengths.

There is room for improvement in addressing bugs and support issues. Communication with support, particularly with certain teams, can sometimes be challenging and slow, impacting problem resolution. 

I have been working with CloudGuard Cloud Network Security for almost eight years.

We use CloudGuard to manage 15,000 people. We have ten applications and 14 subscriptions.

The Israel tech support is better than other regions because they respond quickly and help us resolve our issues.

Neutral

Check Point's management interface is easier to use compared to products like Palo Alto's Panorama and FortiManager. 

Palo Alto and FortiManager are more complicated than CloudGuard.

When it comes to identifying security threats, CloudGuard is on par with other solutions. While Palo Alto doesn't have zero-day protection, it ultimately depends on how customers configure their security rules.

I'm quite pleased with CloudGuard because it is incredibly easy to deploy. Whether I'm using the marketplace or SmartConsole, setting up the gateway takes just a few seconds or minutes, and connecting to local or cloud management is seamless. 

Deploying Check Point CloudGuard has been generally straightforward, but we have encountered challenges with Azure Stack Hub due to feature discrepancies with public Azure. The absence of a console in Azure Stack Hub and outdated versions can pose issues. However, if project preparation and resource allocation are done correctly, deployments usually go smoothly. Typically, we purchase between two to six cores for our deployments.

If we prepare the right CPUs it's okay.

The pricing is okay. I know the cost for the competitors and CloudGuard pricing is fine. It is cheaper than other firewalls.

Overall, I would rate CloudGuard Cloud Network Security as a ten out of ten.

Check Point CloudGuard Network Security helps to ensure the security and protection of IT systems. We have many API integrations and want to ensure its protection. 

The product gives analytic reports. 

Check Point CloudGuard Network Security should give productive reports as per business requirements. It needs to improve support since the time-limit extended beyond a day. It should include more seamless API integrations. 

I have been using the product for four years. 

The product's stability is good. 

Check Point CloudGuard Network Security is very much scalable. My company has 1000 users. 

Check Point CloudGuard Network Security's deployment is easy and takes one day to complete. You need four resources to handle it. 

The product's licensing costs are yearly. 

I rate the product an eight out of ten. 

We had a big problem with how to protect our host services, which are directly accessed via the cloud. We wanted to protect our organization tenant and workload from any next-generation attack. For this protection, we implemented the Check Point solution named CloudGuard Network.

This NGFW is provided by Check Point and has all of the capabilities that are required to protect against next-generation attacks at the perimeter level.

The modules or security features that we use are provided as part of the base license. These include VPN, IPS, Application Control, and Content Awareness. Together, these are strong and help to protect the organization.

This solution effectively protects us against any next-generation attack.

The most valuable feature is the centralized dashboard, which is used for managing all of the Check Point Security Gateways.

Whether it is hosted on-premises or on the cloud with the NGTX license, it provides additional security capabilities such as SandBlast, which is able to extract and emulate file execution in a virtual sandbox. It will identify activity and actions, and the system can be configured accordingly.

It provides hyperscaling capabilities for both on-premises and cloud-based security gateways. An on-premises security gateway can be configured for hyperscaling using the Maestro 140 or Maestro 170. In the cloud, on AWS it can be hyper-scaled using the AWS gateway load balancer.

It's able to protect against advanced threats and prevent zero-day attacks using both SandBlast and IPS signatures.

Throughput is impacted drastically once the security modules are enabled on the firewall.

As it is a software-based firewall, there is no dedicated throughput available for each module.

In case the device is inaccessible due to some issue such as CPU or memory, there is no separate port or hardware partition provided for troubleshooting purposes.

Throughput on the virtual firewall is an issue in case the organization wants to migrate a workload to the cloud, and it becomes a bottleneck.

We have been using the Check Point CloudGuard Network for between two and five years.

The combination of NGFW + URL Filtering + Antivirus + Anti Bot, with 8 vCore D4 v2, is able to provide a throughput of 4Gbps.

On Azure, the combination of NGFW + URL Filtering + Anit Virus + Anit Bot, with 8vCore c5n 2xlarge, is able to provide a throughput of 4.7Gbps. It is similar to AWS.