Trellix Network Detection and Response vs WatchGuard XTM [EOL] comparison

"It is a good product to implement, especially where the existing technology fails to detect zero day attacks."

"I also like its logging method. Its logging is very powerful and useful for forensic purposes. You can see the traffic or a specific activity or how something entered your network and where it went."

"Over the thirteen years of using the product, we have not experienced a single compromise in our environment. During the COVID period, we faced numerous DDoS attacks, and the tool proved highly effective in mitigating these threats."

"The most valuable feature is MVX, which tests all of the files that have been received in an email."

"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."

"The solution can scale."

"It allows us to be more hands off in checking on emails and networking traffic, as we can set up a bunch of different alerts and have it alert us, giving us a better view of our network and our email environment."

"Very functional and good for detecting malicious traffic."

"I have found the GUI interface to be invaluable, as it is very intuitive and easy to manage."

"Go for it. It's a great product with many security features and offers great protection for your network."

"The VPN to link my system to my clients, the gateway security features as my first defense layer to my client’s networks, and the firewall/NAT policy are excellent, and I also love the alias feature as it allows me to configure items by common names instead of IP address."

"We use WatchGuard XTM as a privileged access management solution; I complained about another unstable product and we switched to WatchGuard, which has been good."

"A WatchGuard creates new ways to secure your network."

"Security is a requirement for any organization, using WG products you can deploy faster solutions to big problems with a fair price."

"This product helped facilitate and protect our environment from the inside out, with features like DLP (data loss prevention) to content filtering all the way to port filtering and traffic shaping."

"The multi-WAN feature allows us to configure multiple external interfaces."

"The problem with FireEye is that they don't allow VM or sandbox customization. The user doesn't have control of the VMs that are inside the box. It comes from the vendor as-is. Some users like to have control of it. Like what type of Windows and what type of applications and they have zero control over this."

"Certain features in Trellix Network Detection and Response, such as using AL-type commands, may initially pose a challenge for those unfamiliar with such commands. However, once users become accustomed to the system, it becomes easier to use."

"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."

"It doesn't connect with the cloud, advanced machine learning is not there. A known threat can be coming into the network and we would want the cloud to look up the problem. I would also like to see them develop more file replication and machine learning."

"I would like to see in Trellix Network Detection and Response more explanation about some details of the threat, and I wish it had more actions that you can take to contain the host or move it somewhere else."

"There is a lot of room for Improvement in the offering, from cost to functionality. It is pretty straightforward to implement which is an advantage. However, it falls short in pricing, detection capabilities, and, most importantly, reporting and policy management."

"Improvements could be achieved through greater integration capabilities with different firewall solutions. Integrating with the dashboard itself for different firewalls so users can also pull tags into their firewall dashboard."

"The initial setup was complex because of the nature of our environment. When it comes to the type of applications and functions which we were looking at in terms of identifying malicious threats, there would be some level of complexity, if we were doing it right."

"We had some problems of instability with older versions of the software."

"In my experience they need to make changes in web filtering access for Skype as that's the time we had problems."

"The issue that we had was that the integration with Active Directory was a bit of a hassle."

"The initial setup is neither simple nor complex. If you know the base in networking and how the firewall works, you will be able to figure it out.​"

"One huge issue with WatchGuard XTM is that I'm not getting reports in a readable format. Readable means, I don't want Excel online. We repeat auditing when we trigger the report or setup calendar. That functionality is what we are looking for from WatchGuard XTM here."

"Using the SSL VPN remote feature is great, but we additionally needed two-factor authentication, and employed a third-party product."

"The problem is the high cost."

"The initial setup is neither simple nor complex. If you know the base in networking and how the firewall works, you will be able to figure it out."

"It's an expensive solution."

"We're partners with Cisco so we get a reasonable price. It's cheaper than Palo Alto in terms of licensing."

"The user fee is not as high but the maintenance fee is expensive."

"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."

"FireEye is comparable to other products, such as HX, but seems expensive. It may cause us to look at other products in the market."

"When I compare this solution to its competitors in the market, I find that it is a little expensive."

"The pricing is fair, a little expensive, but fair. We've evaluated other products, and they're similarly priced."

"When you purchase FireEye Network Security NX, will need to purchase a megabit per second package. You must know your needs from day one."

"Like all other manufacturers, there are a lot of features and different pricing. The best is to talk to a representative.​"

"Get at least a maintenance contract for the updates and take a larger WatchGuard than you need. A WatchGuard creates new ways to secure your network."

"The licensing and renewal is very expensive."

"It costs less than the SO works and others (like SonicWall, Cisco, and Barracuda) without increasing so much CPU use."