Try our new research platform with insights from 80,000+ expert users

SonicWall Capture Advanced Threat Protection vs Trellix Network Detection and Response comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

SonicWall Capture Advanced ...
Ranking in Advanced Threat Protection (ATP)
32nd
Average Rating
7.8
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Trellix Network Detection a...
Ranking in Advanced Threat Protection (ATP)
15th
Average Rating
8.4
Number of Reviews
38
Ranking in other categories
Network Detection and Response (NDR) (12th)
 

Mindshare comparison

As of November 2024, in the Advanced Threat Protection (ATP) category, the mindshare of SonicWall Capture Advanced Threat Protection is 1.3%, up from 1.0% compared to the previous year. The mindshare of Trellix Network Detection and Response is 5.1%, down from 6.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP)
 

Featured Reviews

MG
Sep 26, 2019
When compared to other solutions, it is cheaper and more economical
We are migrating our firewall to the latest version: NSA 4650. We use this solution on cloud The most valuable feature is the alerting system. For a small to medium customer, it is a cost-effective value. It does all the basic requirements. It fulfills all of our requirements. We get alert…
BiswabhanuPanda - PeerSpot reviewer
Apr 4, 2024
Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one
The in-depth investigation capabilities are a major advantage. When the system flags something as malicious, it provides a packet capture of that activity within the environment. That helps my team quickly identify additional context that most other tools wouldn't offer – like source IP or base64 encoded data. We can also see DNS requests and other details that aren't readily available in solutions like Check Point or others that we've tried. The detection itself is solid, and their sandboxing is powerful. There's a learning curve – you need a strong grasp of OS-level changes, process forking, registry changes, and the potential impact of those. But with that knowledge, the level of information Trellix provides is far greater than what we've seen elsewhere. The real-time response capability of Trellix has been quite effective, although it's not very fast. The key is this solution's concept of 'preference zero.' They don't immediately act on a zero-day. For example, the solution has seen a piece of malware for the first time. It'll let it in, then do sandboxing. Maybe after four or five minutes, it identifies that specific file's DNX Secure Store as malicious. At that point, they update the static analysis engine, and it gets detected if anything else tries to download the same file. There is that initial 'preference zero' concept, like with Panda. You may not hold traffic in the network. That's standard in the industry; we don't do much about it. To address that, we also have endpoint solutions. We use SentinelOne in our environment, which helps us identify threats like Western Bureaus and others.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The reporting that you get from it is the most valuable feature. You can see it via the appliance itself, and also via the MySonicWall account for the registered device. You are able to select the file if it's malicious, and you can select it in the reporting and see what triggered it, and things like that. I found that to be quite useful."
"The stability of the solution is good. We haven't had any breaches or crashes. It's been very stable for us."
"We get alert messages whenever there is a new threat. We are notified at the firewall level that things are blocked, which keeps us in our comfort zone."
"The ATP (Advanced Threat Protection) on scanning is the most valuable feature."
"It also has an easy configuration. The feedback that we get from our customers is that it's a good product."
"We use it for protection against viruses and ransomware attacks."
"I like this setup for a firewall. You can set things up very easily and you can automate items as well. It's a very robust firewall solution for enterprise as well as small businesses."
"They have a large database of commonly known things that they can catch automatically, then they have anything which is questionable go to the sandbox and be examined there before going into our network."
"The features that I find most valuable are the MIR (Mandiant Incident Response) for checks on our inbound security."
"The most valuable feature is the network security module."
"Application categorization is the most valuable feature for us. Application filtering is very interesting because other products don't give you full application filtering capabilities."
"The most valuable feature is the view into the application."
"The product has helped improve our organization by being easy to use and integrate. This saves time, trouble and money."
"We see ROI in the sense that we don't have to react because it stops anything from hurting the network. We can stop it before we have a bigger mess to clean up."
"The sandbox feature of FireEye Network Security is very good. The operating system itself has many features and it supports our design."
"The most valuable feature is MVX, which tests all of the files that have been received in an email."
 

Cons

"We would like to get immediate alerts from the alerting system without using third-parties."
"If anything at all, it would be some very minor updates that need to be done, but in terms of changes, nothing comes to mind."
"Could provide online training to allow customers to learn more about the product."
"SonicWall should promote their roadmap and improve their marketing to customers."
"Having an on-premise solution as well would be an option for some people, but they'll want to use a cloud solution for their sandboxing. Certain sites would want to keep all the checks done on an on-premise appliance. All the checking, rather than sending that up into a cloud engine."
"I would say the solution needs a much simpler user interface, but the functionality of the firewall is quite extensive. You need the user interface to be that way. However, if there was a way to make the user interface a little easier, that would be great."
"It does fare well against enterprise products."
"SonicWall had a recent layoff. This is a concern for us, because now we are missing the local presence from both the engineering and sales side."
"There is a lot of room for Improvement in the offering, from cost to functionality. It is pretty straightforward to implement which is an advantage. However, it falls short in pricing, detection capabilities, and, most importantly, reporting and policy management."
"The problem with FireEye is that they don't allow VM or sandbox customization. The user doesn't have control of the VMs that are inside the box. It comes from the vendor as-is. Some users like to have control of it. Like what type of Windows and what type of applications and they have zero control over this."
"Its documentation can be improved. The main problem that I see with FireEye is the documentation. We are an official distributor and partner of FireEye, and we have access to complete documentation about how to configure or implement this technology, but for customers, very limited documentation is available openly. This is the area in which FireEye should evolve. All documents should be easily available for everyone."
"I would love to see better reporting. Because you can't export some of the reports in proper formats, it is hard to extract the data from reports."
"It would be very helpful if there were better integration with other solutions from other vendors, such as Fortinet and Palo Alto."
"They can maybe consider supporting some compliance standards. When we are configuring rules and policies, it can guide whether they are compliant with a particular compliance authority. In addition, if I have configured some rules that have not been used, it should give a report saying that these rules have not been used in the last three months or six months so that I disable or delete those rules."
"Stability issues manifested in terms of throughput maximization."
"It is an expensive solution."
 

Pricing and Cost Advice

"We get our value for our money."
"It's thirty dollars per user and we have 30 users."
"The best deal from SonicWall is to buy the HA pair. When you buy the initial one, you receive the second one at a significant discount. If there is an event and something happens to one firewall, then you have the second firewall to roll into. For the price, it's pretty to tough to beat and not a lot of other firewall vendors offer it. You battle for a discount on both. Where with SonicWall, if you buy one, the second one is at half price. It's pretty straightforward."
"When you compare it with other solutions, they are cheaper and more economical."
"When I compare this solution to its competitors in the market, I find that it is a little expensive."
"Pricing and licensing are reasonable compared to competitors."
"Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis."
"There are some additional services that I understand the vendor provides, but our approach was to package all of the features that we were looking to use into the product."
"The user fee is not as high but the maintenance fee is expensive."
"FireEye is comparable to other products, such as HX, but seems expensive. It may cause us to look at other products in the market."
"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."
"The pricing is fair, a little expensive, but fair. We've evaluated other products, and they're similarly priced."
report
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
814,763 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Real Estate/Law Firm
18%
Financial Services Firm
14%
Computer Software Company
12%
Government
12%
Financial Services Firm
19%
Comms Service Provider
9%
Manufacturing Company
9%
Computer Software Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about FireEye Network Security?
We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement an...
What is your experience regarding pricing and costs for FireEye Network Security?
The pricing is fair, a little expensive, but fair. We've evaluated other products, and they're similarly priced. It's a bit on the expensive side, but we don't want to compromise with cheap, less r...
What needs improvement with FireEye Network Security?
The solution's support needs to improve their support.
 

Also Known As

No data available
FireEye Network Security, FireEye
 

Learn More

Video not available
 

Overview

 

Sample Customers

Wonder Cement, Foster Clark Products
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Find out what your peers are saying about SonicWall Capture Advanced Threat Protection vs. Trellix Network Detection and Response and other solutions. Updated: October 2024.
814,763 professionals have used our research since 2012.