KerioControl vs Trellix Intrusion Prevention System comparison

KerioControl vs. Trellix Intrusion Prevention System

Download the complete report

Helped 890,088 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

KerioControl

Ranking in Intrusion Detection and Prevention Software (IDPS)

15th

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Firewalls (27th), Unified Threat Management (UTM) (8th)

Trellix Intrusion Preventio...

Ranking in Intrusion Detection and Prevention Software (IDPS)

13th

Average Rating

8.4

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2026, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of KerioControl is 2.7%, down from 3.7% compared to the previous year. The mindshare of Trellix Intrusion Prevention System is 3.0%, up from 2.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
Product	Mindshare (%)
Trellix Intrusion Prevention System	3.0%
KerioControl	2.7%
Other	94.3%

Intrusion Detection and Prevention Software (IDPS)

Featured Reviews

Constantnos Achilleos

Product manger at Asbis Mediteranean

Leveraging geo-tagging and web filtering for enhanced network security

The solution is used for site-to-site VPN connections and it is valued for its cost efficiency and easy connectivity. It is especially beneficial for multi-site VPNs and is used in about fifteen different components KerioControl has provided a financial benefit as it allows purchasing one license…

Read full review

Bhupesh-Sharma

Large account Manager at Softcell Technologies Limited

Has offered reliable threat protection and detailed network insights but could expand features beyond existing capabilities

The best features of Trellix Intrusion Prevention System include advanced ATP (Advanced Threat Protection), which uses signatures, behavior analysis, and machine learning to stop zero-day exploits and malware advanced persistent threats (APTs). They track and collect data from APTs, which allows them to track malicious files entering the environment. The system offers inline prevention and real-time automatic blocking of malicious packets before they reach the network. It integrates with the Trellix ecosystem and provides application visibility and control. The solution provides deep insight into network traffic, applications, and protocols for better information. All packets coming through the application are analyzed and reported. They share intelligence updates regularly to protect from different malicious files and sector-specific threats. It supports both on-premise and cloud environments.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The top features are ones that we're not using yet but we soon will be because we've just had broadband upgraded in Australia. We've got something called the National Broadband Network, which is forced onto you, so you have to take it when it arrives. We'll be trying the high availability out soon. We tried that with some load balancing, it didn't quite work as we expected, but I think that was more of a configuration thing rather than a product thing."

"This solution has improved my organization because we can access remotely."

"We use Kerio Control for controlling access to the web, and to protect the inside of the network."

"It helps us better control internal and external communications."

"The most valuable feature is the reliability of VPN capabilities. The VPN has been very reliable and secure. The security has been very good and the VPN connections are reliable in that they stay up. We don't have a lot of problems with downtime and that type of thing."

"The fact that the setup is so easy is one of the solution's great selling points."

"Our clients see ROI with Kerio Control, as they are saving bandwidth costs."

"Kerio Control is easy to use and provides the ability to deliver customized solutions."

More KerioControl pros

"The product is worth the investment."

"McAfee NSP is much more stable than Cisco."

"The threat intelligence updates are very accurate."

"The feature I found most valuable is the network threat analyzer in the security platform. It also integrates with GTI, or Global Threat Intelligence. Otherwise, I just use the basic features."

"The most valuable features are the customization of the signature and the unlimited amount of signatures in IPS."

"It has a lot of functions, such as firewall. We are administrators, and we create some rules to protect our network. We also monitor the traffic in and out and have disk encryption on-premises. When we detect malware, we scan for the virus on the PC. We can then delete or block the malware."

"Overall the solution is very good. It offers great protection and gives us a good overview of what is on the network."

"The initial setup is straightforward."

More Trellix Intrusion Prevention System pros

Cons

"Because of Kerio Control, we failed to protect kids from such content, and we expected them to respond to it with the urgency it required, but their support was pathetic."

"There's also room for improvement in the Traffic Rules. We define networks to use a specific outgoing interface, say VSAT, shore, or marine WiFi, which is okay. But then all we have is a checkbox that says "Use other internet interfaces if this one is unavailable." What we would prefer would be to have a priority list. So if VSAT is unavailable, try to use 4G, etc. We haven't really found a reliable way of doing that in the current release."

"They should improve the remote connectivity feature for users."

"I would like it if the interface section had multiple failovers. Although I do have three connections, just in case our physical cables get disconnected, I can only set up one failover as a backup. So, if for some reason our fiber and our AFM went down together, I would have to have it search for our 4G modem. I'd love to have extra backups running."

"I find it a bit costly to pay for the products that I am not using. They need to change their model in such a way that you don't have to pay for the products that you are not using. Its local support and scalability are also not good. I am looking forward to a more scalable product that will be able to grow with time and technology."

"Effectively, I can't use the WiFi facility in the appliance and had to purchase a separate web that supports VLANs."

"I can no longer renew my subscription directly with GFI but we have to go through third-party resellers like CDW. The first time I did it with CDW, I went to CDW and it was almost like they didn't even know anything."

"They don't provide content filtering when it comes to search engine results. We had an incident on the network where a blocked site was showing up in search results. We are in a school environment, so we have blocked a site with some of the explicit content so that kids wouldn't see it. When one of them did a search, the results came on the search engine part. When you try to drill down to the website, it blocks, but when you search by image, it brings up all the images. That's one of the reasons why we are looking at Juniper."

More KerioControl cons

"The pricing could be improved."

"Currently, the settings and confirmations on the McAfee console are complex and complicated for our branches."

"The solution needs to improve the graphical interface. They had a limitation in some of the sensor modems as well."

"The platform’s GUI could be the latest."

"The Network Security Managers could be more stable, agile, and work faster."

"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated."

"The management console needs to be less complex and easier to navigate."

"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated. I want the management console to be simpler."

More Trellix Intrusion Prevention System cons

Pricing and Cost Advice

"The fixed model of users and devices is a bit of a problem for us. We want to be able to expand it fast and not have to contact our supplier first to get a license... If they had a larger fixed price with unlimited users or devices, that would help. Now, it's five users each time. A pack of 100 or 200 users for a certain price would make it more dynamic and user-scalable."

"Its licensing is yearly. You renew every year. Its price is all-inclusive."

"Licensing is easier with Kerio Control. With FortiGate, we realized the licensing is really hectic, because if you skip one year, you have to back pay that year. If you skip two years, you have to back pay two years. With Kerio Control, if a license expires, one year later you can just reactivate and go on."

"Pricing is good, but the licensing took a lot of time."

"Its price is fair. There are no additional costs."

"We have to pay approximately EUR 175 for the product."

"It is a good fit for SMBs because of its maintainability. When you want to keep your costs low, then Kerio Control is a very good solution. It's not an expensive product that is well integrated. It has a complete set of features within it that make it a very strong product."

"There's a one-time fee. For KerioConnect, it's just a server. With KerioControl, you have an option. You can virtualize it on a VMware system or have the hardware. I think mid-range or desktop KerioControl hardware could cost around 2000 dollars for a 25 user client. You need annual renewal for additional features like antivirus."

More KerioControl pricing and cost advice

"I rate the product’s pricing an eight out of ten."

"The tool is competitively priced."

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

890,088 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Comms Service Provider

11%

Financial Services Firm

Manufacturing Company

12%

Comms Service Provider

11%

Financial Services Firm

11%

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	44
Midsize Enterprise	9
Large Enterprise	3

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	6
Large Enterprise	6

Questions from the Community

What is your experience regarding pricing and costs for KerioControl?

KerioControl offers good pricing as one license covers all features needed without extra payment. The price for the product is rated as ten out of ten.

What needs improvement with KerioControl?

Regarding KerioControl's application awareness and control feature, I have not used it much.

What is your primary use case for KerioControl?

With KerioControl, we usually use them for site-to-site VPNs for most of our clients. With multiple offices, we use KerioControl as our solution.

What needs improvement with McAfee Network Security Platform?

Trellix Intrusion Prevention System does not provide virtual patching. Patching involves updates on the OS side to address vulnerabilities, which is a different functionality. Trellix Intrusion Pre...

What is your primary use case for McAfee Network Security Platform?

We do not use Trellix Intrusion Prevention System; rather, we sell the Trellix Intrusion Prevention System solution. The typical use case for our clients is to find out what vulnerable files exist....

What advice do you have for others considering McAfee Network Security Platform?

I have experience working with other tools, specifically Trellix solutions such as DLP, EDR, and MDR, as well as with other Imperva tools. My team has worked with Trellix Intrusion Prevention Syste...

Netgate pfSense vs KerioControl

Comparisons

Compared 11% of the time

Fortinet FortiGate vs KerioControl

Compared 11% of the time

OPNsense vs KerioControl

Compared 10% of the time

Sophos UTM vs KerioControl

Compared 8% of the time

More KerioControl Competitors

TrendAI Tipping Point vs Trellix Intrusion Prevention System

Compared 12% of the time

Palo Alto Networks Advanced Threat Prevention vs Trellix Intrusion Prevention System

Compared 12% of the time

Cisco Secure IPS (NGIPS) vs Trellix Intrusion Prevention System

Compared 9% of the time

Fortinet FortiGate vs Trellix Intrusion Prevention System

Compared 9% of the time

Hillstone I-Series Server Breach Detection System vs Trellix Intrusion Prevention System

Compared 5% of the time

More Trellix Intrusion Prevention System Competitors

Product Reports

KerioControl

Download KerioControl product report

Trellix Intrusion Prevention System

Download Trellix Intrusion Prevention System product report

Trellix Intrusion Prevention System report

Also Known As

No data available

McAfee Network Security Platform, McAfee NSP, IntruShield Network Intrusion Prevention System, IntruShield Network IPS

Overview

KerioControl is a comprehensive network security solution integrating firewall, antivirus, and VPN in an easy-to-use interface for small to medium businesses seeking robust protection.

KerioControl offers a blend of essential security features wrapped in a user-friendly graphical interface that enables effective network management. It supports firewall protection, intrusion detection, real-time monitoring, and flexible VPN capabilities ensuring high reliability and productivity. Despite being suitable for small to medium enterprises, improvements could enhance its overall performance, such as better GUI updates, stronger connectivity, and advanced VPN functionality. Common uses include unified threat management, bandwidth management, remote access, and web filtering.

What are the important features of KerioControl?

Ease of Use: Intuitive interface for effortless security management.
Firewall and VPN Integration: Combines essential security tools seamlessly.
Real-time Monitoring: Offers constant insight into network activities.
Intrusion Detection: Advanced system for prevention and alerts.
Bandwidth Management: Efficient allocation for optimized network usage.

What benefits and ROI should users consider?

Cost Savings: Economical security solution for smaller businesses.
Productivity Gains: Simplified management increases operational efficiency.
Enhanced Security: Comprehensive coverage with antivirus and malware protection.
Remote Access: Streamlined management of multiple sites and networks.

KerioControl is effectively implemented in industries needing strong security measures, supporting small to medium businesses in sectors like IT services, retail, and education. It's particularly well-suited for companies requiring efficient threat management and convenient internet service management across various sites.

GFI

Trellix Intrusion Prevention System provides robust network protection with signature-based detection, zero-day protection, and advanced threat prevention using machine learning and behavior analysis. It integrates with Trellix's ecosystem for detailed traffic insight and real-time threat blocking.

Businesses utilizing Trellix Intrusion Prevention System benefit from enhanced security in remote offices and data centers, comprehensive malware detection, and effective network monitoring. The system offers robust perimeter protection and Smart Blocking capabilities to detect and block harmful data. Companies favor Trellix for its endpoint security and vulnerability assessment functionalities. Despite its strong offerings, improvements are needed in AI-driven threat detection, user-friendliness of the management console, and flexibility in SaaS integration. Users highlight the absence of virtual patching and outdated GUI as areas for improvement.

What are the key features of Trellix Intrusion Prevention System?

Signature-Based Content: Delivers powerful detection of existing threats using pre-defined signatures.
Customization of Signatures: Allows businesses to tailor threat detection to their specific environment.
Zero-Day Protection: Detects and mitigates new threats that exploit unknown vulnerabilities.
Advanced ATP: Utilizes behavior analysis and machine learning for early threat identification.
Central Management: Provides streamlined operation and threat management.

What benefits can users find in reviews of Trellix Intrusion Prevention System?

Enhanced Security: Offers robust protection against diverse threats.
Effective Monitoring: Enables comprehensive oversight of network activities.
Real-Time Blocking: Helps immediately neutralize identified threats.
Threat Intelligence Updates: Keeps security measures up-to-date with the latest data.
Scalability: Supports growth with enterprise-level performance.

Trellix Intrusion Prevention System is implemented across industries such as finance, healthcare, and manufacturing for its ability to detect malware and enhance network safety. Its threat intelligence capabilities help sectors where data security and operational continuity are imperative, providing tailored protection solutions that align with specific industry needs.

Trellix

Sample Customers

Triton Technical, McDonald's

Desjardins Group, HollyFrontier, Nubia, Agbar, WNS Global Services, INAIL, Universidad de Las Américas Puebla (UDLAP), Cook County, China Pacific Insurance, Bank Central Asia, California Department of Corrections and Rehabilitation, City of Chicago, Macquarie Telecom, Sutherland Global Services, Texas Tech University Health Sciences Center, United Automotive Electronic Systems

KerioControl vs. Trellix Intrusion Prevention System