SonicWall NSa Reviews

SonicWall NSa serves our company's needs in threat management and security operations.

My company can't connect directly with SonicWall's support team, making it an area where improvements are required.

I have been using SonicWall NSa for five years. I am a customer of the tool.

It is a very stable solution. Stability-wise, I rate the solution a ten out of ten.

It is a scalable solution. Scalability-wise, I rate the solution a ten out of ten.

Around 50 people in my company use the tool.

I use the tool on a daily basis.

As per SonicWall's policy, we first have to raise the ticket with the solution's partner, and then, after that, they will raise the ticket with SonicWall's support team. The customer cannot directly connect with SonicWall's support team. I rate the technical support an eight out of ten.

Positive

I have used Sophos. I chose SonicWall because it is a user-friendly, easy-to-access, and easy-to-manage tool.

The product's initial setup phase is very straightforward.

The solution is deployed on an on-premises model.

The solution can be deployed in a week.

The product's deployment phase was completed with the help of the tool's partner.

Our purchase team does the tool.'s procurement part.

SonicWall NSa has been most effective in protecting our company's network with the CFS policy and app-based policy.

My company has not enabled or activated SonicWall NSa's deep packet inspection performance.

If I calculate SonicWall NSa's impact on incident response times, I would say that it just needs 24 hours.

I have not tried using SonicWall NSa's AI features.

I recommend SonicWall NSa to others.

I rate the tool a nine out of ten.

Our company uses the solution as a firewall that provides different levels of protection for our office and factory. We currently have 500 users. 

The solution is very user friendly.

The performance and stability are two key features.

We have not found any vulnerabilities since implementing the solution.

The security standards for space and point of view should be improved so that the solution deploys in critical areas. Normally, the solution wants to deploy in our office or other noncritical areas. 

I have been using the solution for three years. 

The solution is very stable with no issues. 

We have not tried to scale or add new devices. Our load has remained stable since implementation with no increases or decreases.

I contacted technical support for issues related to firmware operations. 

Support is the best so I rate them a nine out of ten. 

Positive

The setup is easy. 

We worked with one of our partners for deployment. 

The solution is very easy to maintain. 

The solution is based on a yearly licensing model that is reasonable compared to other options. We have a viral license and a UTM license. 

At the base level for data central testing, we use Check Point. The solution offers more security and sensitivity levels than Check Point. 

We use the solution and Fortinet for the office and factory locations. We prefer the solution over Fortinet. 

I rate the solution a nine out of ten. 

Firewall/VPN appliance for SMB clients. Firewall provides advanced threat protection to internal hosts. It also provides a secure mechanism for remote access.

For the average SMB, this firewall does the job. Granular user controls, firewall and NAT rules that you would expect. Licensed features provide application control, content filtering, antivirus, and anti-malware all in a single appliance.  Be aware that their ATP is poorly implemented (stops downloads, forcing users to wait and click again).  Also be aware that the IPS/IDS, and Gateway Antivirus will do very little for modern threats such as ransomware.  We have had emotet trojans easily pass the firewall, connect to international foreign (and obviously) some kind of C&C without stopping it.  So little to no protection against modern threats, no HTTPS proxy as an option, poorly implemented ATP - it makes the case for a SonicWall very difficult to justify.  This vendor is frustratingly slow at adapting, evolving or improving their product.  They are unable to keep up with competition.

Application control: It allows us to block applications, i.e., websites by application type category. It is far more capable than content filtering alone. 

SonicWall has weaknesses. During its tenure with Dell, it was severely damaged (its reputation, innovation, etc.).  It is now recovering, but it may take time to get competitive again. They are clueless in some regards, which is unfortunate as they have the potential.

CPU: The CPUs are not able to compete with a similar price point to the Fortinet, WatchGuard, or Palo Alto product. Compare with the need to get 1Gbps throughput with full security (common nowadays), you are looking at NSA 5700. 

Wireless: What a disaster this has been historically. The new SonicWall will tell you it has been resolved and improved. It has improved - it actually works now, but performance is substandard. It is a terrible strategy to have a firewall act as an AP controller, in any case. Perhaps for an SMB, the integrated WiFi in their TZ series has a niche.

Anti-spam: Do not even consider it. It leaks like a shower head. What a mess that offering is. It requires a specific Java version on the server side (do not update it, otherwise it will break). In any case, a firewall doing anti-spam might be a low cost solution, but it is not your best strategy.

Logging/reporting: You need their analyzer to properly generate reports. This is an expensive, licensed feature, with a complex application or appliance back-end. 

MSP: They are not ready for managed security services.  Their Cloud GMS product is weak, barely out of beta (buggy).

VPN: Site-to-site is another problem area - Client-based VPN is another hot mess. Global VPN client issues and mobile connect issues. Do not even consider NetExtender - probably one of the most horrific, nightmare grade Java-based VPN clients. We have but all given up trying to make it work reliably.   If VPN is important for you - look elsewhere.  You have to pay for licenses (most competitive vendors include this by default).  You will have 4 different methods, 3 different clients, 2 licenses and all of this to have a horrible VPN connectivity.  No proper or modern 2FA for additional security.  AVOID!

AGSS / ATP: This is poorly implemented.  A user will click to download a new type of file, and nothing happens.  They have to wait an indeterminate amount of time, and try again to see if it works.  It is so annoying, most clients avoid this capability, just nullifying the whole purpose of it.

App Control:  Be aware that either due to firmware updates, or bugs - app control will behave poorly (cause packet loss, or outright blocking) with normal and legitimate activities.  Resetting and re-configuring it is the work-around (super annoying).

More than ten years.

Yes. The VPN client connectivity and licensing has been a major complaint, especially during COVID-19

Yes. The CPUs are very weak.

During the Dell years, support was terrible. It has since improved.

No. We have always only deployed SonicWall.

Setup is easy. Anyone with basic firewall experience can do it.

In-house only. Level 2 techs can handle most tasks.

All advanced features are licensed capabilities, such as Advanced Gateway Security Suite or Comprehensive Gateway Security Suite.  VPN clients are licensed, and you have to choose a type of license you want (how ridiculous is that). 

We have evaluated Sophos, Fortinet, Palo Alto, Barracuda, WatchGuard and now CheckPoint

Avoid this company.  They have no idea what they are doing, except a slick marketing campaign.  They don't listen to their customers.  The only evolution of the product in the last few years was a slight redesign of the web interface and DNS proxy.   They will push their SonicWall "Capture" but this has nothing to do with the Firewall product itself, it is a windows based NextGen A/V based on Sentinal with ATP.

I'm using SonicWall NSa as an external firewall.

For me, the most valuable feature of SonicWall NSa is the UTM.

A room for improvement in SonicWall NSa is the log server because it could be more user-friendly compared to Fortinet and Palo Alto Networks.

Another area for improvement is the UI of SonicWall NSa, mainly because the rule set is challenging to review, and you always have to export the rule set for review. My company has many rule sets up for review, so sometimes, my team needs to use Excel for filtering, but the UI cannot support the Excel function.

In the next release of SonicWall NSa, I want the solution to be more user-friendly.

I've been working with SonicWall NSa for more than ten years.

SonicWall NSa is a stable solution.

I am still determining how scalable SonicWall NSa is.

SonicWall NSa support is fine overall. My company always gets help from the local vendor.

My company used Check Point ten years ago, but its pricing was higher than SonicWall NSa. The cost to maintain Check Point was also higher, so now the company uses SonicWall NSa.

SonicWall NSa is relatively easy to set up because my company always partners with local support.

It took one month to implement the solution because the company had to migrate from the old to the new, including checking the rule sets. I'm referring to upgrades because the deployment from scratch happened ten years ago, so I don't remember the details.

An in-house team implemented SonicWall NSa together with a local support team.

My company has yet to evaluate any ROI from SonicWall NSa.

SonicWall NSa has reasonable pricing. My company pays for it yearly, but I forgot how much the company pays. From what I remember, you only pay for the license fees.

I believe I'm using the latest SonicWall NSa version, 2700, though I'm not sure.

My whole company in Hong Kong uses SonicWall NSa, so that's about one hundred people. Mainly two people maintain the solution.

A few people took care of the deployment of SonicWall NSa.

I rate SonicWall NSa as nine on a scale of one to ten.

I'm a SonicWall NSa user.

We use the solution on campus for students. We are not a non-profit organization working with financial constraints. We are an academic institute, so not very much security is required. We are required to provide real-time security.

SonicWall's technical support is very good. We get real-time support from them. The product also works fine. There are no issues with the hardware. The security is also good.

One issue with the solution is that no authorization or authentication features exist. We have to use another software, which should be built for authentication.

Other than that, it's become difficult to get the best price from SonicWall.

I've been using SonicWall NSa for the last nine years.

I rate SonicWall NSa's stability a ten out of ten.

I rate SonicWall NSa's scalability an eight out of ten. We have 700 student users on campus, but fewer than 500 concurrencies exist.

The setup process is very simple. I am 100% aware of how to install and configure it and how to make policies and implement them, such as website application blocking. I'm very comfortable with this firewall because it is simple. There is very little complexity.

We are checking the viability of Sophos over SonicWall. When we started using Firewall or UTM, Sophos was Cyberoam. The license was user-based. We saw that Cyberoam was costlier than SonicWall. We could not get financial approval for that.

SonicWall NSA is a good product, and we are not facing any issues. I rate it a ten out of ten.

We use SonicWall NSa as a firewall to protect our branches. We use the solution for intrusion prevention systems (IPS), intrusion detection systems (IDS), and networking. We have VPN connections with our data center and other branches.

SonicWall NSa is very easy to configure. For example, it's very easy to give internet access to a user. We have configured groups, and I can remove and add them whenever required. We use SonicWall NSa for authenticating MAC (media access control) ID from the PC.

SonicWall NSa's reporting could be improved.

I have been using SonicWall NSa for three years.

SonicWall NSa is quite a stable solution. We faced some issues regarding the VPN connectivity. Sometimes it drops, but it also depends on the box on the other side.

SonicWall NSa is not a scalable solution because we are using small boxes and can't scale them. For example, the solution works fine if it's for 20 users. The moment you add more than 20 users, it becomes slow.

Around 20 users are using SonicWall NSa in our organization. The solution is used extensively, 24/7, in our organization.

SonicWall NSa's technical support is quite good because they respond and solve our issues whenever we call them.

Before SonicWall NSa, we previously used Cyberoam.

SonicWall NSa's initial setup is very easy.

Our networking team deploys SonicWall NSam in one or two days. Just one network engineer is required to deploy and maintain SonicWall NSa.

We have seen a return on investment with SonicWall NSa.

Compared to Fortinet and Cisco, SonicWall NSa is a cheaper solution. You have to pay additionally for IPS, which is not part of the solution's license.

I use the latest version of SonicWall NSa.

I would not recommend SonicWall NSa to other users compared to Fortinet or Cisco.

Overall, I rate SonicWall NSa a seven out of ten.

I use SonicWall NSa for bandwidth monitoring and aggregation. I also use it to control browsing.

What I like best about SonicWall NSa is the security it offers compared to other solutions in the market. Its reduction rate is also better than others.

SonicWall NSa has multiple areas for improvement.

One is that it doesn't have a proxy. It also doesn't have the quota management feature required in specific scenarios where you need to limit user bandwidth for a particular day, so one user isn't using up too much bandwidth compared to other users.

Active/Active HA is also missing in the product.

What I want to be added to SonicWall NSa in the future is the bandwidth optimization feature.

I've been using SonicWall NSa for fifteen years.

SonicWall NSa is a stable product.

To scale SonicWall NSa, you need to keep changing the model of the box, but this is the case in any other solution, so you go for hardware appliances, such as Fortinet, Sophos, Palo Alto Networks, and Check Point because after reaching a specific capacity, you need to change the model.

SonicWall NSa has good technical support, so support-wise, I'm giving it a ten out of ten.

Positive

My company chose SonicWall NSa over other products because it was good. It was better than others.

SonicWall NSa is easy to implement. It took two hours to deploy the product completely.

We implemented SonicWall NSa as we're SonicWall resellers.

There's ROI from SonicWall NSa, and its reduction rate is the best.

There are different pricing models for SonicWall NSa.

My company uses a next-generation firewall from SonicWall, SonicWall NSa.

I'm using version 2650 of SonicWall NSa.

My company is a SonicWall NSa reseller.

In the company, everyone uses SonicWall NSa, particularly fifty people.

My advice to people looking into implementing SonicWall NSa is that it depends on the setup. What my company does is first understand the setup and why the customer wants to deploy the product. Based on the customer's answers, my company presents solutions that would work. For example, if you require a proxy or a quota management feature, SonicWall NSa will not be a complete solution. If you need Active/Active HA, SonicWall NSa won't be the right match. You need to understand what you require from the product. If you need browsing and management turnovers, then SonicWall NSa will be good enough. Overall, the product still has some areas for improvement.

My rating for SonicWall NSa is seven out of ten. For me to give it a higher rating, it should have more features. Right now, I'm unable to market it well because it doesn't score very well in Gartner. I can only position SonicWall NSa as having the best reduction rate. The product is relatively good and stable but still needs certain features.

The solution is used basically a parameter firewall and to secure the company network.

The content filtering is very good.

The solution is easy to use.

They offer good antivirus solutions. It's basically a complete package.

The solution is stable. 

There's always room for improvement. 

For example, the monitoring system is in need of improvement. Their monitoring system is too expensive. Most of the company doesn't apply the monitoring system as it's too expensive. Some more monitoring features should be built into the firewall device itself.

Management spends a lot of money on the device, and they want to know what is working, et cetera. To understand this, we need some reports, graphs, and figures. Without these items, management may not be convinced they are spending the money in the right way. Having reports that reflect the work done to keep the network secure would show the benefits and the ROI in a positive way that would help sell management on the product itself.

The ongoing service fees are high.

The solution could use more online educational tools to help users understand the underlying functionality of the product. Things like videos and tutorials could help a lot. 

I've been working with the solution for the last nine years or so at this point. It's been almost a decade.

The solution is very stable. We can do 80% to 90% of tasks with no issues whatsoever. There are no bugs or glitches. It doesn't crash or freeze. It's reliable.

The solution can scale, however, in Pakistan, it's not easy not to spend so much. One device can last over five to six years. You can say scale, however, you need to have an understanding of what functionality you will need over the years. Over four to six years, the device can fulfill your requirements. After six to seven years, you can replace it with another model or another brand to meet your updated needs.

I didn't use support over the last nine years, except for handling the device replacement itself. I needed a device replacement due to some damage, and they fulfilled my request and requirements. In terms of tasks such as configuration issues, I've never actually asked for assistance for those queries and therefore could not rate how helpful or responsive they are when they cover those matters. 

In the past, I have also used Fortinet and FortiGate as well as Juniper. I have 19 years of experience with various solutions. I have used multiple devices including Cisco, Juniper, FortiGate, SonicWall, and others. Basically, FortiGate and SonicWall are more or less the same types of solution. However, the SonicWall is easier to install than FortiGate.

I have deployed the solution myself. I did not need the help of an integrator or consultant.

The pricing is reasonable, however, all firewalls have high prices for subscriptions for their services to cover after warranty needs for content filtering, for antiviruses, for web filtering, et cetera. All firewalls have extra prices. 

After spending so much money year over year, we were surprised that we had to still pay more than the device cost just to covers services. That's why you may find that most companies stop their services and just running the firewall as a box. Most small companies stop their services just due to the high subscription fees. That said, multinationals or larger organizations likely still pay the service fees.

In places like Pakistan, a developing country, it's hard to continuously pay, as we find the continuing service fees expensive. They should work to make an exception for certain regions such as ours.

I'm a customer and an end-user.

I can't remember the exact versions we are using. We may be on version 6, and the models I have used include the 2600, 2500, and 3600 series.

I'd warn new users that the box is huge. The box has multiple functionalities and most users are not trained. They can't benefit from all the functionality as they don't know that it exists. Due to the lack of knowledge, most users don't leverage additional functionalities which they should. While the solution offers good devices and reasonable pricing for the box, companies need to educate themselves on how they can best use the product to their advantage. SonicWall can help by posting more videos and sharing more information.

I'd rate the solution at an eight out of ten.