Check Point CloudGuard Network Security vs WatchGuard Firebox comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Check Point CloudGuard Network Security and WatchGuard Firebox based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Check Point CloudGuard Network Security vs. WatchGuard Firebox Report (Updated: November 2022).
655,711 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The configuration was kind of straightforward from the command line and also from the ASDM. It was very easy to manage by using their software in Java.""The clusters in data centers are great.""Cisco offers a great educational series to train users on their devices.""The most valuable feature we have found to be the VPN because we use it often.""For our very specific use case, for remote access for VPN, ASAs are very good.""We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government.""The most important features are the intrusion prevention engine and the application visibility and control. The Snort feature in Firepower is also valuable.""Cisco ASA provides us with very good application visibility and control."

More Cisco Secure Firewall Pros →

"All our connections are secure.""The comprehensiveness of the CloudGuard’s threat prevention security is great, especially once they integrate Dome9 in the whole thing. That really ties the whole thing together, so you can tie your entire cloud environment together into one central location, which is nice. Previously, we had three or four different tools that we were trying to leverage to do the same stuff that we are able to do with CloudGuard.""The solution is reliable.""This solution brings us closer to having a better security score, which helps us a lot in complying with information regulations based on security.""The initial setup is pretty easy.""The solution has been quite stable.""The most valuable feature is the centralized dashboard, which is used for managing all of the Check Point Security Gateways.""Check Point CloudGuard technical support is good."

More Check Point CloudGuard Network Security Pros →

"The most valuable features are the VPN and web blocker security.""The features that I have found most valuable are the FireWall features. The management side of WatchGuard is quite easy because it supports two ways to manage it - by the web and the other one they call WatchGuard systems manager. I used to be familiar with WSM only, but they improved their GUI in the web browser and now it is much easier to do it within the web browser.""There are no problems with the technical support. If a problem occurs it gets resolved immediately with our technical support partners.""The solution has a useful traffic monitor.""The most valuable features of the WatchGuard Firebox are all the security and updated features. You are able to configure the solution from the cloud platform and the application and web interface are very nice.""I have found the DNS Watch feature for intrusion and prevention response and APT Locker most valuable to me.""Firebox's best feature is the access portal.""What I found most valuable in WatchGuard Firebox is that it's a functional platform that works, and each of its features works well. The solution also has good reporting and dashboard capabilities. I also find the overall performance of WatchGuard Firebox great."

More WatchGuard Firebox Pros →

Cons
"When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance.""The stability is not the best.""It is hard to collaborate with our filtered environment.""One issue with Firepower Management Center is deployment time. It takes seven to 10 minutes and that's a long time for deployment. In that amount of time, management or someone else can ask me to change something or to provide permissions, but during that time, doing so is not possible. It's a drawback with Cisco. Other vendors, like Palo Alto or Fortinet do not have this deployment time issue.""Web filtering needs improvement because sometimes the URL is miscategorized.""It can probably provide a holistic view of different appliances because many customers do not have only one brand, besides the traditional SNMP protocols, to cover all their devices. There are some specific requirements in terms of configurations or actions that sometimes have to be done in a very manual way because of the different versions or brands in a customer's infrastructure. It could also have some additional analytics capabilities. It has some very interesting ways to monitor the traffic and identify false positives from the architecture and the environment. It would be good if there is a way to patch with some other industry-specific solutions and synchronize some of the information, such as what other customers experience in their operations and probably share some additional information that could be leveraged or shared among the industry. Such information would be something interesting to see. It could have AI capabilities related to how the appliances could benefit from learning the current environment and different exposures.""If the implementation was easier, it would be a lot better for us.""Technical support takes a long time to respond."

More Cisco Secure Firewall Cons →

"The cost needs improvement as it is currently quite expensive.""While today we can manage some scopes, there are still some segments in the OSI layer we cannot manage.""The API integration is complex, which is an area that should be improved.""Easier optimization techniques can definitely help with better performance of the OS, as using the vanilla software doesn't actually showcase the real capability of the software.""The memory and hard disk capability could be strengthened.""CheckPoint CloudGuard could be better at solving cases.""The documentation has been rough. Being able to do it yourself can be hit or miss given the constraints of the documentation.""Check Point Virtual Systems is a complete solution, but pricing can be better."

More Check Point CloudGuard Network Security Cons →

"An area for improvement is that when we use a web administration link, there is no security.""I don't think I can get a full-blown DNS client from it. I've been trying to have DNS services. It has forwarding, but I don't get the services of a full DNS client. My main difficulty with it is that I can't run a complete service. I need NTP. I need DNS. I need DHCP for my domain, but I only get forwarding. As far as I can tell, I don't get caching and the kinds of reporting and registration needed to host a DNS for a domain. I have to have a separate solution for that.""The way Secure Sign-On authentication is happening needs to be improved. When the Secure Sign-On portal is turned on, anybody who comes into the campus, whether he or she is a staff member or a guest, has to go past the initial portal. One of the shortcomings is the username. It shouldn't allow permutations or combinations with upper or lower cases. For example, when there is a username abc, it shouldn't allow ABC or Abc. It should not allow the same username, but currently, two separate people can go in. Therefore, its authentication or validation should be improved, and the case sensitiveness should be picked up. If I have restricted someone to two devices, they shouldn't be able to use different combinations of the same username and get into the third or fourth device. It shouldn't allow different combinations of alphabets to be used to log in.""Firebox would be improved with integration for endpoint protection solutions.""There should be better integration and a way to configure multiple vendors into the same data center in order to offer more flexibility.""There could also be better reporting. For example, there should be more out-of-the-box management reports.""WatchGuard Firebox could improve the speed of updates, such as new features or improvements. However, they are frequently improving the solution in many areas, such as geo-locations, definitions, and web blocking.""Some of the configuration options are somewhat confusing."

More WatchGuard Firebox Cons →

Pricing and Cost Advice
  • "If we compare it with FortiGate and the co-existing ASA, FortiGate is better in price."
  • "They seem to be at the top end in terms of pricing, but they are worth the price. They are probably a little bit lower than Palo Alto. If the customers are relying on Cisco products and they are thinking more in terms of scaling to another layer in a year, it is pretty much in a good price range."
  • "We're using the smart license for this firewall. The models that we have require licensing for remote access."
  • "There are licensing costs."
  • "I just bought it off the shelf, and I'm using it with my previous one, so I have not spent that much."
  • "The price is fair. It's not the cheapest, but it's not bad."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The product is very expensive."
  • More Cisco Secure Firewall Pricing and Cost Advice →

  • "Pricing of CloudGuard is pretty fair when you have a single account. It's comparable with other cloud providers. But for our use case, it got really pricey when we had to deploy multiple CloudGuards on multiple accounts in different regions, because you can't have CloudGuard protecting multiple regions. That's the big thing."
  • "The pricing and licensing have been good. We just had to do a license increase for our portion of it. We had that done within a couple of days. Given the fact that it's purely a software-based license, it ends up being even quicker than doing it for an on-prem firewall."
  • "It is not expensive, but it is a little bit above the middle range. There are other solutions that are a little more expensive than this, but they also have some interesting features."
  • "The price could be better."
  • "You get charged only for what resources you choose and how much traffic actually passes through the firewall, which in turn saves a lot of money."
  • "Although I don't have specifics for pricing, based on my overall experience, I can conclude that Check Point provides the best pricing when comparing to other vendors."
  • "Licensing is available on a monthly or yearly basis."
  • "The cost is on the higher side, as it is based on workload, hence we need to decide which VPC or workload needs to be part of CloudGuard."
  • More Check Point CloudGuard Network Security Pricing and Cost Advice →

  • "I spent $600 or $800 on this product and I'm paying a couple of hundred dollars a year in a subscription service to keep the lights on, on it... It works out to $100 or $200 a year if you buy several years at once. It's fair."
  • "The primary reason that we went with Firebox was its cost. It is very economical and it provided us with all the security functions that we were looking for at the time. And the throughput was more than what we required, so it was a very cost-effective device to deploy on our network."
  • "I find the solution to be very affordable."
  • "It's fair pricing, but it could always be reduced."
  • "It has a very good price. It is not the most expensive one, and it is also not the cheapest one. It is just spot-on in terms of price."
  • "They have an annual subscription license. Initially, we had opted for three years. After that, we went for another three years, and after that, we have been doing it yearly. They also have a license for five years."
  • "The licensing contract we have is on a three-year basis. There aren't any costs in addition to the standard licensing fees—usually, every three years, we just purchase or renew the same license and we are okay. Every six years, we completely change the firewall, but that's the usual schema. So after three years, we just renew the licenses for another three years, and then after that particular period of time, we just purchase another firewall equivalent to the ones that we currently use."
  • "The licensing costs are comparatively lower than other providers, and I would rate the pricing as five out of five."
  • More WatchGuard Firebox Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    655,711 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer:One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet… more »
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer:Check Point has pretty simple solutions, like the virtual appliance which you just download and it is imported into… more »
    Top Answer:The cost is on the higher side, as it is based on workload, hence we need to decide which VPC or workload needs to be… more »
    Top Answer:In terms of what could be improved, we have no support with the current Check Point environment. It ended maybe three or… more »
    Top Answer:We are providing our services to all WatchGuard customers in the region. 
    Top Answer:We just use it as a secondary WiFi device. We're a small office and we needed to set up a WiFi device for a few of our… more »
    Top Answer:We're a hospital and we use it for developing our incoming and outgoing policies, and we also use it for VPN.
    Comparisons
    Also Known As
    Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
    CloudGuard IaaS, Check Point vSEC, CloudGuard IaaS, Check Point Virtual Systems, Check Point CloudGuard Network Security
    Learn More
    Overview

    The Cisco Secure Firewall portfolio delivers greater protections for your network against an increasingly evolving and complex set of threats. With Cisco, you’re investing in a foundation for security that is both agile and integrated- leading to the strongest security posture available today and tomorrow.

      From your data center, branch offices, cloud environments, and everywhere in between, you can leverage the power of Cisco to turn your existing network infrastructure into an extension of your firewall solution, resulting in world class security controls everywhere you need them.

      Investing in a Secure Firewall appliance today gives you robust protections against even the most sophisticated threats without compromising performance when inspecting encrypted traffic. Further, integrations with other Cisco and 3rd party solutions provides you with a broad and deep portfolio of security products, all working together to correlate previously disconnected events, eliminate noise, and stop threats faster.

      Check Point CloudGuard provides unified cloud native security for all your assets and workloads, giving you the confidence to automate security, prevent threats, and manage posture – everywhere – across your multi-cloud environment.

      WatchGuard Firebox is a unified security platform that offers organizations protection from cyber threats through a powerful network security device that controls all traffic between an external network and a trusted network. The solution is ideal for small and midsize businesses as well as for distributed enterprises. WatchGuard Firebox protects the entire network from intrusions, phishing attempts, malware, and ransomware by using cloud and virtual firewalls, AI-powered malware protection, and enhanced network visibility.

      WatchGuard Firebox Features

      WatchGuard Firebox has many valuable key features, including:

      • Policy management
      • Strong security
      • High performance
      • Network configuration for multiple clients
      • Built-in SD-WAN
      • Application control
      • Threat detection and response
      • Network discovery
      • Intuitive interface

      WatchGuard Firebox Benefits

      Some of the benefits of using WatchGuard Firebox include:

      • IT administrators can create and implement policies for content filtering, VPNs, and network inspections.
      • The solution is easy to set up, manage, and maintain.

      Reviews from Real Users

      Below are some reviews and helpful feedback written by WatchGuard Firebox users.

      PeerSpot user Kelly C., IT Manager at a hospitality company, mentions, “One of the most valuable features is the Gateway AntiVirus. We scan all traffic as it's coming through. We also use spamBlocker to scrub spam. We use content filtering, which is critical in any corporate environment to make sure that people don't surf things they're not supposed to. WatchGuard has a very easy VPN and branch office VPN setup, so we use those pretty extensively too.It's very easy to use. In terms of performance, WatchGuard has always worked well for us. Regarding the reporting, I was in the Dimension server earlier today. It's very powerful. I like it. And the management features are easy to use. I like the fact that I can open up the System Manager client or I can just do it through the web if I'm making a quick change.”

      A Director of Information Technology at a retailer says, “Among the most valuable features is the ease of use — love the interface — of both the web interface and of the WatchGuard System Manager. It's a stable platform. The devices are pretty rock-solid.”

      Jason M., IT Director at a healthcare company, explains, “The policy monitoring and allowing different traffic flows are the most useful features for us; regulating which traffic comes in and out. In terms of the throughput and performance, we don't have a problem or any bottleneck there. We downgraded the size of our appliance because we're a small facility, and what we had before was actually too big. The one we are now going with seems to be doing a great job.” He also adds, “The management feature is pretty nice.”

      Steve R., President and Owner at Peak Communication Systems, Inc., comments, "It saves us time in the respect that we now have the template built for it so we can get in and get it done. We've had much less problems supporting Voice over IP technologies from different companies. Because our client base has grown over the years, we're probably saving 20 to 30 man-hours a month now that we've got this on a good stable level."

      Offer
      Learn more about Cisco Secure Firewall
      Learn more about Check Point CloudGuard Network Security
      Learn more about WatchGuard Firebox
      Sample Customers
      There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
      Physicians Choice Laboratory Services, Helvetica Insurance
      Ellips, Diecutstickers.com, Clarke Energy, NCR, Wrest Park, Homeslice Pizza, Fortessa Tableware Solutions, The Phoenix Residence
      Top Industries
      REVIEWERS
      Financial Services Firm16%
      Comms Service Provider13%
      Computer Software Company9%
      Government8%
      VISITORS READING REVIEWS
      Comms Service Provider20%
      Computer Software Company19%
      Government7%
      Educational Organization5%
      REVIEWERS
      Financial Services Firm16%
      Computer Software Company16%
      Government11%
      Security Firm8%
      VISITORS READING REVIEWS
      Comms Service Provider23%
      Computer Software Company21%
      Government7%
      Financial Services Firm6%
      REVIEWERS
      Manufacturing Company21%
      Construction Company12%
      Computer Software Company9%
      Healthcare Company7%
      VISITORS READING REVIEWS
      Comms Service Provider21%
      Computer Software Company18%
      Government6%
      Retailer5%
      Company Size
      REVIEWERS
      Small Business36%
      Midsize Enterprise24%
      Large Enterprise40%
      VISITORS READING REVIEWS
      Small Business28%
      Midsize Enterprise19%
      Large Enterprise53%
      REVIEWERS
      Small Business38%
      Midsize Enterprise30%
      Large Enterprise32%
      VISITORS READING REVIEWS
      Small Business24%
      Midsize Enterprise20%
      Large Enterprise56%
      REVIEWERS
      Small Business68%
      Midsize Enterprise23%
      Large Enterprise10%
      VISITORS READING REVIEWS
      Small Business38%
      Midsize Enterprise20%
      Large Enterprise42%
      Buyer's Guide
      Check Point CloudGuard Network Security vs. WatchGuard Firebox
      November 2022
      Find out what your peers are saying about Check Point CloudGuard Network Security vs. WatchGuard Firebox and other solutions. Updated: November 2022.
      655,711 professionals have used our research since 2012.

      Check Point CloudGuard Network Security is ranked 9th in Firewalls with 33 reviews while WatchGuard Firebox is ranked 3rd in Unified Threat Management (UTM) with 22 reviews. Check Point CloudGuard Network Security is rated 8.4, while WatchGuard Firebox is rated 8.2. The top reviewer of Check Point CloudGuard Network Security writes "You can have everything under a single pane of glass". On the other hand, the top reviewer of WatchGuard Firebox writes "Competent, basic front-end; the ports that I have assigned appear to be unattainable to outsiders". Check Point CloudGuard Network Security is most compared with Azure Firewall, VMware NSX, Fortinet FortiGate, Palo Alto Networks VM-Series and Sophos XG, whereas WatchGuard Firebox is most compared with Fortinet FortiGate, pfSense, Sophos XG, Meraki MX and Sophos UTM. See our Check Point CloudGuard Network Security vs. WatchGuard Firebox report.

      We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.