Try our new research platform with insights from 80,000+ expert users
Check Point IPS Logo

Check Point IPS pros and cons

Vendor: Check Point Software Technologies
4.3 out of 5
Leave a review

Pros & Cons summary

Check Point IPS excels in real-time threat prevention using exploit signatures and behavioral analysis. It integrates seamlessly with firewall and VPN setups, allowing policy customization. Advanced threat intelligence and sandboxing enhance network protection. However, reporting capabilities lag behind competitors, and performance issues may occur with high CPU usage during substantial traffic. Pricing is steep for smaller businesses, and installation challenges exist, including complex firmware updates and frequent false positives.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Check Point IPS provides exceptional real-time prevention by using extensive protections based on known exploit signatures and behavioral analysis, effectively detecting and blocking threats.
The integration of Check Point IPS with firewall and VPN configurations simplifies the learning curve and enhances cybersecurity defenses.
Check Point IPS allows for the customization of granular policies and rules based on severity, protocol, or threat source, making it adaptable to organizational needs.
Check Point IPS’s advanced threat intelligence and sandboxing features significantly enhance protection by handling threats before penetration into the organization's network.
Check Point IPS offers robust signature-based threat prevention, yielding a positive ROI by reducing incidents, malicious activities, and potential security breaches.

CONS

The reporting capabilities of Check Point IPS need enhancement, with competitors like Cisco Stealthwatch and Darktrace providing far superior visibility over large infrastructures.
Check Point IPS experiences performance issues with high CPU utilization, particularly when the IPS blade is activated amid heavy traffic, leading to potential downtime.
There are frequent occurrences of false positives, and the threat intelligence data require regular updates to accurately reflect IP locations and minimize unnecessary alerts.
The integration and updating process for Check Point IPS faces challenges such as a cumbersome firmware upgrade procedure, leading to confusion when documentation isn't fully updated.
The pricing for Check Point IPS is considered high, making it less accessible for smaller organizations, who would benefit from a more budget-friendly cost structure.
 

Check Point IPS Pros review quotes

Jeroen Devroede - PeerSpot reviewer
Jeroen Devroede
IT Network Administrator at DHL
Nov 14, 2019
The solution's IPS functionality and firewall functionality are the solution's most valuable features.
Read full review
KK
Kristaps Krauklis
Head of IT Department at AS Attīstības finanšu institūcija Altum
Mar 4, 2020
The reports are well written so that you can understand what type of attack has occurred, the originating IP address, and other details.
Read full review
Oleg P. - PeerSpot reviewer
Oleg P.
Senior Network and Security Engineer at a computer software company with 201-500 employees
Jul 23, 2020
The number of the IPS protections is amazing - after the latest update I see more than 11000 in the SmartConsole.
Read full review
Buyer's Guide
Check Point IPS
December 2025
Free Report: Check Point IPS Reviews and More
Learn what your peers think about Check Point IPS. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
DOWNLOAD NOW
879,422 professionals have used our research since 2012.
KP
Kirtikumar Patel
Network Engineer at LTTS
Aug 7, 2020
IPS can protect our organization with any old vulnerabilities or if any vulnerability detected minutes ago IPS can protect us as per our configured policy.
Read full review
reviewer1098015 - PeerSpot reviewer
reviewer1098015
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
Sep 23, 2020
The most valuable feature is that it protects us against hundreds of different attack vectors, like ransomware. The protection is always being triggered. People try to access websites that are categorized as malware, so when the users do a DNS request for the IP of those malware websites, the IPS Blade replaces the real IP of the website that is malware with a bogus IP. The user gets an IP that doesn't exist and when he tries to access, it won't work.
Read full review
reviewer1474608 - PeerSpot reviewer
reviewer1474608
Consultor at a government with 201-500 employees
Jan 30, 2021
This is a very stable product.
Read full review
BD
Basil-Dange
Chief Information Security Officer at Abcl
Mar 30, 2021
It protects against specific known exploits but also, with SandBlast integration, it is able to protect against unknown or zero-day attacks at the perimeter level.
Read full review
it_user1573887 - PeerSpot reviewer
it_user1573887
CTO at a computer software company with 11-50 employees
May 6, 2021
I can easily monitor all of our connected devices and I get instant notification of reconnections and new connections, which removes some of the monitoring burden.
Read full review
reviewer1572915 - PeerSpot reviewer
reviewer1572915
System and Network Administrator at Auriga - The banking e-volution
May 8, 2021
The Check Point IPS module allows me granularity in creating rules.
Read full review
PD
PRAPHULLA DESHPANDE
Associate Consult at Atos
Sep 2, 2021
There's an automatic update after every 2 hours which makes sure that the database is up to date and providing zero-day vulnerability protection.
Read full review
Show 10 more reviews (out of 63)
 

Check Point IPS Cons review quotes

Jeroen Devroede - PeerSpot reviewer
Jeroen Devroede
IT Network Administrator at DHL
Nov 14, 2019
The solution needs enhanced reporting. The reporting on Cisco Stealthwatch and Darktrace is much bigger. The visibility that they grant for the filtering capabilities over large infrastructures are far superior.
Read full review
KK
Kristaps Krauklis
Head of IT Department at AS Attīstības finanšu institūcija Altum
Mar 4, 2020
Occasionally there are glitches and errors like false positives, which would be a nice area of this solution to improve upon.
Read full review
Oleg P. - PeerSpot reviewer
Oleg P.
Senior Network and Security Engineer at a computer software company with 201-500 employees
Jul 23, 2020
In my opinion, the Check Point software engineers should works on the performance of the blade - when it is activated with the big number of the protections in place, the monitoring shows us the significant increase in the CPU utilization for the gateway appliances - up to 30 percents, even so we are cherry-picking only the profiles that we really needed.
Read full review
Buyer's Guide
Check Point IPS
December 2025
Free Report: Check Point IPS Reviews and More
Learn what your peers think about Check Point IPS. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
DOWNLOAD NOW
879,422 professionals have used our research since 2012.
KP
Kirtikumar Patel
Network Engineer at LTTS
Aug 7, 2020
I observed on our management that sometimes IPS does not connect to the threat cloud, we have to check and improve it. Otherwise, all of the features are good.
Read full review
reviewer1098015 - PeerSpot reviewer
reviewer1098015
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
Sep 23, 2020
The only thing they could maybe improve is that we notice right away that the performance decreases when we enable the IPS, especially beyond the CPU and memory usage. If you want to enable the IPS and you have a lot of traffic, it can have an impact. The performance could be improved.
Read full review
reviewer1474608 - PeerSpot reviewer
reviewer1474608
Consultor at a government with 201-500 employees
Jan 30, 2021
We have a lot of false positives and the list of IPs are not up to date in terms of their location.
Read full review
BD
Basil-Dange
Chief Information Security Officer at Abcl
Mar 30, 2021
There is a performance impact on the NGFW post-enabling the IPS blade/Module, which can even lead to downtime if IPS starts to monitor or block high-volume traffic.
Read full review
it_user1573887 - PeerSpot reviewer
it_user1573887
CTO at a computer software company with 11-50 employees
May 6, 2021
It is generally good, but improving the performance would be the one thing I'd take a look at right now.
Read full review
reviewer1572915 - PeerSpot reviewer
reviewer1572915
System and Network Administrator at Auriga - The banking e-volution
May 8, 2021
Having additional reports available would be helpful.
Read full review
PD
PRAPHULLA DESHPANDE
Associate Consult at Atos
Sep 2, 2021
After the R80 release, there are almost all feature sets available under IPS Configuration. However, further to this, adding a direct vulnerability scan based on ports and protocol for every zone (LAN, DMZ, or Outside) will make Check Point very different compared to other vendors on the market.
Read full review
Show 10 more reviews (out of 63)

Product Categories

Product Categories
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Check Point IPS Logo
Fortinet FortiGate vs Check Point IPS
Darktrace vs Check Point IPS Logo
Darktrace vs Check Point IPS
Vectra AI vs Check Point IPS Logo
Vectra AI vs Check Point IPS
KerioControl vs Check Point IPS Logo
KerioControl vs Check Point IPS
Trend Micro Deep Discovery vs Check Point IPS Logo
Trend Micro Deep Discovery vs Check Point IPS
Trend Micro TippingPoint Threat Protection System vs Check Point IPS Logo
Trend Micro TippingPoint Threat Protection System vs Check Point IPS
Palo Alto Networks Advanced Threat Prevention vs Check Point IPS Logo
Palo Alto Networks Advanced Threat Prevention vs Check Point IPS
Cisco IOS Security vs Check Point IPS Logo
Cisco IOS Security vs Check Point IPS
Cisco Secure IPS (NGIPS) vs Check Point IPS Logo
Cisco Secure IPS (NGIPS) vs Check Point IPS
Cisco Sourcefire SNORT vs Check Point IPS Logo
Cisco Sourcefire SNORT vs Check Point IPS
Palo Alto Networks URL Filtering with PAN-DB vs Check Point IPS Logo
Palo Alto Networks URL Filtering with PAN-DB vs Check Point IPS
Trellix Intrusion Prevention System vs Check Point IPS Logo
Trellix Intrusion Prevention System vs Check Point IPS
Zscaler Cloud IPS vs Check Point IPS Logo
Zscaler Cloud IPS vs Check Point IPS
NSFOCUS NGIPS vs Check Point IPS Logo
NSFOCUS NGIPS vs Check Point IPS
See all alternatives

Product Categories

Product Categories
Intrusion Detection and Prevention Software (IDPS)

Popular Comparisons

Popular Comparisons
Fortinet FortiGate vs Check Point IPS Logo
Fortinet FortiGate vs Check Point IPS
Darktrace vs Check Point IPS Logo
Darktrace vs Check Point IPS
Vectra AI vs Check Point IPS Logo
Vectra AI vs Check Point IPS
KerioControl vs Check Point IPS Logo
KerioControl vs Check Point IPS
Trend Micro Deep Discovery vs Check Point IPS Logo
Trend Micro Deep Discovery vs Check Point IPS
Trend Micro TippingPoint Threat Protection System vs Check Point IPS Logo
Trend Micro TippingPoint Threat Protection System vs Check Point IPS
Palo Alto Networks Advanced Threat Prevention vs Check Point IPS Logo
Palo Alto Networks Advanced Threat Prevention vs Check Point IPS
Cisco IOS Security vs Check Point IPS Logo
Cisco IOS Security vs Check Point IPS
Cisco Secure IPS (NGIPS) vs Check Point IPS Logo
Cisco Secure IPS (NGIPS) vs Check Point IPS
Cisco Sourcefire SNORT vs Check Point IPS Logo
Cisco Sourcefire SNORT vs Check Point IPS
Palo Alto Networks URL Filtering with PAN-DB vs Check Point IPS Logo
Palo Alto Networks URL Filtering with PAN-DB vs Check Point IPS
Trellix Intrusion Prevention System vs Check Point IPS Logo
Trellix Intrusion Prevention System vs Check Point IPS
Zscaler Cloud IPS vs Check Point IPS Logo
Zscaler Cloud IPS vs Check Point IPS
NSFOCUS NGIPS vs Check Point IPS Logo
NSFOCUS NGIPS vs Check Point IPS
See all alternatives
Related questions
  • 119
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 24
When evaluating Intrusion Detection, what aspect do you think is the most important to look for?
  • 124
What is your recommended cost-effective solution to detect and prevent APT attacks?
  • 16
What product do you recommend for a Campus IPS appliance implementation?
  • 62
How do you use the MITRE ATT&CK framework for improving enterprise security?
  • 181
What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?
  • 174
Which alternative solutions (other than Darktrace) do you recommend for an SMB?
  • 23
Which is the best intrusion detection and prevention solution?
  • 13
What is the best IDPS security tool and why?
  • 523
What is Cognitive Cybersecurity and what is it used for?