Try our new research platform with insights from 80,000+ expert users

Check Point IPS vs Palo Alto Networks Advanced Threat Prevention comparison

Check Point Software Technologies and Palo Alto Networks are both solutions in the Intrusion Detection and Prevention Software (IDPS) category. Check Point Software Technologies is ranked #3 with an average rating of 8.5, while Palo Alto Networks is ranked #7 with an average rating of 8.3. Check Point Software Technologies holds a 6.1% mindshare in ID, compared to Palo Alto Networks’s 7.5% mindshare. Additionally, 100% of Check Point Software Technologies users are willing to recommend the solution, compared to 100% of Palo Alto Networks users who would recommend it.
Check Point IPS
Read 51 Check Point IPS reviews
  • 3,059 Views
  • 2,116 Comparison Views
100% willing to recommend
Palo Alto Networks Advanced...
Read 26 Palo Alto Networks Advanced Threat Prevention reviews
  • 2,935 Views
  • 1,934 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 19, 2024

Palo Alto Networks Advanced Threat Prevention and Check Point IPS compete in the cybersecurity space focusing on threat prevention. Palo Alto Networks appears to have the upper hand with its advanced threat detection features and firewall integration.

Features: Palo Alto Networks offers next-generation firewall capabilities, advanced anti-malware protection, and its WildFire feature for sandboxing. Check Point IPS provides detailed protections exceeding 11,000 profiles, real-time threat updates, and robust ransomware protection.

Room for Improvement: Palo Alto Networks could improve email filtering, reduce false positives, and simplify setup. Users also mentioned resource consumption as an issue. Check Point IPS users noted performance impacts due to high CPU usage when features are enabled, and requested more intuitive documentation and better support.

Ease of Deployment and Customer Service: Both Palo Alto Networks and Check Point IPS offer deployment in on-premises, hybrid, and cloud environments for flexibility. Palo Alto Networks has mixed feedback on support with some reliance on third-party assistance, while Check Point generally has positive support feedback though premium services vary by region.

Pricing and ROI: Palo Alto Networks is often seen as expensive, especially for smaller organizations, but offers good scalability and ROI in larger setups. Check Point IPS also comes with high costs, with potential savings through bundled licenses. Users suggest thorough cost-benefit analysis to maximize investment returns.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention Report (Updated: March 2025).
Buyer's Guide
Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention
March 2025
Download the complete report
Helped 842,296 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point IPS
Ranking in Intrusion Detection and Prevention Software (IDPS)
3rd
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
51
Ranking in other categories
No ranking in other categories
Palo Alto Networks Advanced...
Ranking in Intrusion Detection and Prevention Software (IDPS)
7th
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
26
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2025, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Check Point IPS is 6.1%, down from 10.2% compared to the previous year. The mindshare of Palo Alto Networks Advanced Threat Prevention is 7.5%, down from 8.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Greg Tate - PeerSpot reviewer
Great for detection and access with the capabilities of defining specific rules
Support is the biggest area for improvement. Check Point is responsive, however, their support agents seem to be very siloed in their ability and/or product knowledge. It takes time and escalation to get through most tickets as they are passed from one group to another and then back again. We are able to navigate our support issues with the aid of our account team, so I want to underscore that support is indeed responsive. However, the processes support techs have to follow seem to be the root cause of the support response issues.
Read full review
Carlos Bracamonte - PeerSpot reviewer
Robust, reliable, simple to install and good technical support
We are attempting to improve the use of URL filtering beyond threat protection. I'm not sure what the remaining threat protection features are off the top of my head. But beyond that, we use URL filtering. We have three approved cases for using external dynamic lists that are stored in a bucket repository. Then, for each URL site that needs to be whitelisted, we add it to the external dynamic list in order to gain access to this email. I would like Wildfire to be implemented. We use the equivalent in Cisco is the integration policies. We have the Wildfire but we are not currently implementing it. We don't have the license to use it, but we are not currently implementing it until we present the use cases that the company gives some value to and they approve the use of it.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The IPS module offers protection against malicious inbound Internet traffic to our DMZ network and inspects and blocks outbound Internet traffic to sites that could be a danger to our internal users."
"Check Point IPS is very easy to configure. It's part of Check Point's blade architecture, where firewall, VPN, and IPS configurations are identical, making the learning curve minimal. The feature can be enabled with a straightforward process, allowing default or customized configurations."
"Check Point is one of the best security brands worldwide."
"Some of the features for views and visualization are already predefined as default files."
"It is also worth noting that many IPS signature comes with detailed background about the vulnerability, and potentially how the vulnerability would affect the network security."
"Among its great features is the ability to detect outgoing malware or extraction of compromised data and stop it, thus safeguarding us by isolating the network, the equipment, or the identity of the affected users."
"The number of the IPS protections is amazing - after the latest update I see more than 11000 in the SmartConsole."
"IPS signatures can be set quite granularly depending on your environment. You can filter on performance impact, severity, and confidence which makes sizing and adapting easier."
More Check Point IPS pros
"We are currently using the URL filtering feature, which is the most popular."
"It is a stable product."
"The most valuable features are that it's user-friendly, has interesting features, URL filtering, and threat prevention."
"The most valuable features are the simplicity, transparency, and overall ease of management."
"It's very easy to use and configure. What is nice about Palo Alto is that even if you don't understand how to use it, you can just click on upload and upload everything that needs to be blocked."
"It effectively prevents malware, ransomware, and other attacks."
"The user interface is a bit more professional than some free products."
"You can scale the product."
More Palo Alto Networks Advanced Threat Prevention pros
 

Cons

"There are a lot of false positives. I would like to see integration with some kind of network detection and response in order to make some automation on IPS configuration."
"Threat Prevention policies are not very easily manageable as there are several profiles/policies/etc. Therefore, there are several ways to add exceptions and check the configuration."
"Occasionally there are glitches and errors like false positives, which would be a nice area of this solution to improve upon."
"After the R80 release, there are almost all feature sets available under IPS Configuration. However, further to this, adding a direct vulnerability scan based on ports and protocol for every zone (LAN, DMZ, or Outside) will make Check Point very different compared to other vendors on the market."
"The hardware-based version of Check Point IPS could be more scalable. Right now, it's not scalable."
"The area with certain shortcomings where improvements are required consist of support availability."
"I observed on our management that sometimes IPS does not connect to the threat cloud, we have to check and improve it. Otherwise, all of the features are good."
"Having additional reports available would be helpful."
More Check Point IPS cons
"The technology firewall anomaly network could stand improvement."
"We are attempting to improve the use of URL filtering beyond threat protection."
"It's not so easy to set up a test environment, because it's not so easy to get the test license. The vendor only gives you 90 days for a test license; it's a tough license to get."
"Mission learning techniques should continue to expand and detect unknown threats on the fly."
"In Africa, the technical support is probably not as good as in Europe and the USA because it's a specific premium support, partner-enabled premium support and all of that. But it's really good, I don't really have any complaints, it's fairly good. I'll give them 80%."
"Generally, to deploy it will take some downtime, about a day."
"Palo Alto's maintenance needs to be improved."
"I think they can use some improvement on FID."
More Palo Alto Networks Advanced Threat Prevention cons
 

Pricing and Cost Advice

"I give the price of the solution a five out of ten."
"Enabling IPS does not require any additional license purchase from OEM, as it comes by default with the NGFW bundle."
"You can pay for Check Point IPS yearly, or you can go with a three-year license. There's no extra cost apart from the standard licensing fee."
"The price of this product should be reduced."
"The pricing model can be more competitive."
"My company pays for the yearly licensing of Check Point IPS. It is a very expensive tool."
"There is a license needed to use the Check Point IPS which is not expensive. However, the Check Point IPS device is expensive."
"The pricing for Check Point IPS is competitive and brings good value for the money."
More Check Point IPS pricing and cost advice
"The product’s pricing is expensive for small companies."
"The pricing and the licensing are pretty competitive at this stage. As a reseller, I would like to see the price come down a little bit so I can compete better against other firewalls because we do that all the time."
"Palo Alto Networks Threat Prevention could improve by having consistent pricing at system levels."
"It's not too expensive."
"If you want to have all of the good features then you have to pay extra for licensing."
"The pricing could be lower."
"It is an expensive solution and I would like to see a drop in price."
"The pricing has improved with the newer generation of their Firewalls, but the price could always be lower."
More Palo Alto Networks Advanced Threat Prevention pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
See recommendations
842,296 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
22%
Financial Services Firm
11%
Government
9%
Manufacturing Company
7%
Computer Software Company
17%
Financial Services Firm
11%
Manufacturing Company
10%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Check Point IPS?
The most valuable feature of the solution is called tunneling. Tunneling is one of the major security features that hackers cannot penetrate through.
See all answers
What is your experience regarding pricing and costs for Check Point IPS?
The price could be lower. It's always better for an end user when prices are reduced. The cost makes it difficult to implement in smaller companies.
See all answers
What needs improvement with Check Point IPS?
Currently, the solution is good for my needs, so I don't have any particular improvements to recommend. However, a reduction in price would always be welcome.
See all answers
Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?
Arbor would be the best bid, apart from Arbor, Palo Alto and Fortinet have good solutions. As this is an ISP, I would prefer Arbor.
See all answers
What do you like most about Palo Alto Networks Threat Prevention?
It is a stable product.
See all answers
What is your experience regarding pricing and costs for Palo Alto Networks Threat Prevention?
The pricing is competitive, and with current campaigns and discounts, it provides an excellent device for a reasonable price.
See all answers
 

Comparisons

Darktrace vs Check Point IPS Logo
Darktrace vs Check Point IPS
Compared 29% of the time
Trend Micro TippingPoint Threat Protection System vs Check Point IPS Logo
Trend Micro TippingPoint Threat Protection System vs Check Point IPS
Compared 12% of the time
Cisco Secure IPS (NGIPS) vs Check Point IPS Logo
Cisco Secure IPS (NGIPS) vs Check Point IPS
Compared 12% of the time
Fortinet FortiGate IPS vs Check Point IPS Logo
Fortinet FortiGate IPS vs Check Point IPS
Compared 11% of the time
Vectra AI vs Check Point IPS Logo
Vectra AI vs Check Point IPS
Compared 5% of the time
More Check Point IPS Competitors
Fortinet FortiGate IPS vs Palo Alto Networks Advanced Threat Prevention Logo
Fortinet FortiGate IPS vs Palo Alto Networks Advanced Threat Prevention
Compared 16% of the time
Forcepoint Next Generation Firewall vs Palo Alto Networks Advanced Threat Prevention Logo
Forcepoint Next Generation Firewall vs Palo Alto Networks Advanced Threat Prevention
Compared 12% of the time
Darktrace vs Palo Alto Networks Advanced Threat Prevention Logo
Darktrace vs Palo Alto Networks Advanced Threat Prevention
Compared 10% of the time
Palo Alto Networks URL Filtering with PAN-DB vs Palo Alto Networks Advanced Threat Prevention Logo
Palo Alto Networks URL Filtering with PAN-DB vs Palo Alto Networks Advanced Threat Prevention
Compared 9% of the time
Trend Micro TippingPoint Threat Protection System vs Palo Alto Networks Advanced Threat Prevention Logo
Trend Micro TippingPoint Threat Protection System vs Palo Alto Networks Advanced Threat Prevention
Compared 8% of the time
More Palo Alto Networks Advanced Threat Prevention Competitors
 

Product Reports

Buyer's Guide
Check Point IPS
March 2025
Check Point IPS reportDownload Check Point IPS product report
Buyer's Guide
Palo Alto Networks Advanced Threat Prevention
March 2025
Palo Alto Networks Advanced Threat Prevention reportDownload Palo Alto Networks Advanced Threat Prevention product report
 

Also Known As

Check Point Intrusion Prevention System
No data available
 

Overview

Check Point IPS is an intrusion prevention system that aims to detect and prevent attempts to exploit weaknesses in vulnerable systems or applications. The solution provides complete, integrated, next-generation firewall intrusion prevention capabilities at multi-gigabit speeds with a low false positive rate and high security. It helps organizations secure their enterprise network, and protect servers and critical data against known and unknown automated malware, blended threats, and other threats.

Check Point IPS Features

Check Point IPS has many valuable key features. Some of the most useful ones include:

  • Real-time protections: IPS is constantly updated with new defenses against emerging threats. Because the solution’s IPS protections are pre-emptive, it provides organizations with defenses before exploits are created or vulnerabilities are even discovered.
  • Virtual patching: The solution combines robust IPS functionality with a concerted patching strategy, allowing network administrators to secure networks between upgrades and patches.
  • Flexible deployment: Check Point IPS was designed to be deployed easily and efficiently.
  • 360 visibility and reporting: To help users achieve an unmatched level of visibility that detects and prevents threats, Check Point IPS integrates with SmartEvent, enabling security operations center (SOC) staff to respond to high-priority events first.

Check Point IPS Benefits

There are many benefits to implementing Check Point IPS. Some of the biggest advantages the solution offers include:

  • Efficient: Check Point IPS includes acceleration technologies that let you safely enable IPS. Additionally, its low false positive rate can save a lot of time.
  • Secure: The solution delivers thousands of signature and behavioral preemptive protections, making it a very secure tool.
  • Unified: With Check Point IPS, users can Enable IPS on any Check Point security gateway, thereby reducing Total Cost of Ownership (TCO).

Reviews from Real Users

Check Point IPS is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it has granularity capabilities for rule creation, quick updates of signatures, and a helpful mechanism that allows users to turn IPS signatures to a different mode automatically.

A System and Network Administrator at Auriga mentions, “The Check Point IPS module allows me granularity in creating rules. I can specify which definition to apply and to which scope or network.” The reviewer also adds, “I can create multiple profiles, which is helpful.”

“The quick updates of the signatures when a new threat is identified are great. For instance, when Microsoft releases patches, we usually see new signatures for those issues that have to be patched in a day. This gives us time to test/deploy the patches while already being protected from the threats. Also, it's very good with reporting. I can generate reports for management automatically based on the threats of the last day/week/whatever is needed,” says a Systems en networks engineer at CB.

Another PeerSpot user, a Network Engineer at VSP Vision Care, writes, “The mechanism where you can let the system automatically turn the IPS signature to a different mode (prevent / monitor / inactive) is a nice feature that allows us to easily adjust the balance between security protection and the risk of business impact.”

Check Point Software Technologies

Palo Alto Networks Advanced Threat Prevention is a cloud-based security service that combines cutting-edge technologies, including machine learning, artificial intelligence, and expert human monitoring, to effectively thwart advanced threats like malware, zero-day attacks, and command-and-control threats. It offers inline protection, scrutinizing all network traffic irrespective of port, protocol, or encryption. An integral component of Palo Alto Networks' security platform, it enjoys widespread adoption across diverse organizations. With its robust security capabilities, it's an ideal choice for entities of all sizes, particularly those in high-risk sectors such as finance, healthcare, and government agencies, seeking to safeguard their networks from a broad spectrum of advanced threats.

Palo Alto Networks
 

Sample Customers

Morton Salt, Medical Advocacy and Outreach, BH Telecom, Lightbeam Health Solutions, X by Orange, Cadence, Nihondentsu, Datastream Connexion, Good Sam, Omnyway, FIASA, Pacific Life, Banco del Pacifico, Control Southern, Xero, Centrify
University of Arkansas, JBG SMITH, SkiStar AB, TRI-AD, Temple University, Telkom Indonesia
Buyer's Guide
Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention
March 2025
Free Report: Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention
Find out what your peers are saying about Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention and other solutions. Updated: March 2025.
DOWNLOAD NOW
842,296 professionals have used our research since 2012.
See our Check Point IPS vs. Palo Alto Networks Advanced Threat Prevention report.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.