Trellix Network Detection and Response vs WatchGuard XTM [EOL] comparison

"Before FireEye, most of the times that an incident would happen nobody would be able to find out where or why the incident occurred and that the system is compromised. FireEye is a better product because if the incident already happened I know that the breach is there and that the system is compromised so we can take appropriate action to prevent anything from happening."

"Before FireEye, most of the times that an incident would happen nobody would be able to find out where or why the incident occurred and that the system is compromised, FireEye is a better product because if the incident already happened I know that the breach is there and that the system is compromised so we can take appropriate action to prevent anything from happening."

"I also like its logging method. Its logging is very powerful and useful for forensic purposes. You can see the traffic or a specific activity or how something entered your network and where it went."

"The sandbox feature of FireEye Network Security is very good. The operating system itself has many features and it supports our design."

"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."

"The most valuable feature is the view into the application."

"FireEye is so effective at blocking attacks that we were even able to defer an upgrade of our IPS solution, saving a significant amount of money."

"It is stable and quite protective. It has a lot of features to scan a lot of malicious things and vulnerabilities."

"After installing the product, we achieved awareness of our data protection needs and email misuse."

"WatchGuard XTM2050A has enterprise class performance with the cost of an SMB class device."

"Go for it. It's a great product with many security features and offers great protection for your network."

"It costs less than the SO works and others (like SonicWall, Cisco, and Barracuda) without increasing so much CPU use."

"Packet filters and proxy policies are valuable features, as they allow you to configure restrictions by domain name and are useful to block web pages that have multiple IP addresses, such as Facebook."

"The product is easy to use and is the fastest way to learn about firewalls."

"Simply, give this tool a try; it will generate great benefits in terms of the scalability and environment."

"A WatchGuard creates new ways to secure your network."

"It doesn't connect with the cloud, advanced machine learning is not there. A known threat can be coming into the network and we would want the cloud to look up the problem. I would also like to see them develop more file replication and machine learning."

"A lot of false positives."

"We'd like the potential for better scaling."

"I would love to see better reporting. Because you can't export some of the reports in proper formats, it is hard to extract the data from reports."

"FireEye Network Security should have better integration with other vendors' firewalls or proxies, such as Palo Alto and Fortinet. Files that are being submitted should happen through the API or automatically."

"It would be very helpful if there were better integration with other solutions from other vendors, such as Fortinet and Palo Alto."

"The initial setup was complex because of the nature of our environment."

"The product's integration capabilities are an area of concern where improvements are required."

"The web interface is easy to use but it looks complicated and could be simplified."

"One huge issue with WatchGuard XTM is that I'm not getting reports in a readable format."

"We still haven't got the Terminal Service agent to work in our Citrix environment Application Signature also doesn't work well especially in SSL traffic"

"Syslog (Dimension) is focused on presentation, but needs more focus on utility like SonicWall syslog (GMS/Analyzer)."

"Now, you need to replace the appliance."

"The support is poor and lazy."

"The initial setup is neither simple nor complex. If you know the base in networking and how the firewall works, you will be able to figure it out.​"

"Expensive Requires client-server application to use some advanced features"

"The pricing is a little high."

"Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis."

"The tool is a bit pricey."

"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."

"There are some additional services that I understand the vendor provides, but our approach was to package all of the features that we were looking to use into the product."

"We're partners with Cisco so we get a reasonable price. It's cheaper than Palo Alto in terms of licensing."

"The user fee is not as high but the maintenance fee is expensive."

"FireEye is comparable to other products, such as HX, but seems expensive. It may cause us to look at other products in the market."

"Get at least a maintenance contract for the updates and take a larger WatchGuard than you need. A WatchGuard creates new ways to secure your network."

"The licensing and renewal is very expensive."

"Like all other manufacturers, there are a lot of features and different pricing. The best is to talk to a representative.​"

"It costs less than the SO works and others (like SonicWall, Cisco, and Barracuda) without increasing so much CPU use."