No more typing reviews! Try our Samantha, our new voice AI agent.

Check Point IPS vs Cisco Sourcefire SNORT comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 19, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point IPS
Ranking in Intrusion Detection and Prevention Software (IDPS)
3rd
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
68
Ranking in other categories
No ranking in other categories
Cisco Sourcefire SNORT
Ranking in Intrusion Detection and Prevention Software (IDPS)
13th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Check Point IPS is 3.4%, down from 3.7% compared to the previous year. The mindshare of Cisco Sourcefire SNORT is 3.0%, up from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
ProductMindshare (%)
Check Point IPS3.4%
Cisco Sourcefire SNORT3.0%
Other93.6%
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

GR
Support at a security firm with 51-200 employees
Real-Time Blocking Improves Response and Reduces Manual Logs
The best feature in my experience with Check Point IPS is the real-time prevention because it uses thousands of preventive protections based on both known exploit signatures and behavioral analysis to detect and block threats before they reach vulnerable systems. I find the behavioral analysis feature of Check Point IPS to be a most valuable feature because it can detect sophisticated threats that do not match known signatures. For example, when I need to view anomaly detections, instead of relying solely on known attack patterns, Check Point IPS monitors network traffic for unusual behavior such as unexpected protocol use, abnormal data flows, or suspicious command sequences. Check Point IPS impacts my organization positively because it has had a strong positive impact by strengthening our network defense, reducing manual work, and improving our incident response times.
reviewer2772102 - PeerSpot reviewer
Cloud Architect at a consultancy with 1-10 employees
Logging and customizable rules have helped improve threat monitoring and detection
The logging is mainly what I consider one of the best features with Cisco Sourcefire SNORT. Being able to log and store it in a file allows you to push it to a centralized repository. The logging and reporting help improve incident response. You should always be logging threats, any sort of misconfiguration, and anything that could be an issue. It's important to at least log and monitor it. The basic rules provide a good baseline in assessing Cisco Sourcefire SNORT's ability in providing real-time analytics for threat detection, but as a professional, you should look to constantly modify that baseline. They provide extensive customizability so you can define your own rules. The customizability allows it to be adaptable in protecting against diverse network threats to the constant change.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Check Point IPS has positively impacted my organization by automatically blocking intrusion attempts, including SQL injections and port scans, before they reached critical systems."
"It is a stable solution. Stability-wise, I rate the solution a ten out of ten."
"Dome9 has paid for itself through the cost savings of additional headcount."
"The best feature in my experience with Check Point IPS is the real-time prevention because it uses thousands of preventive protections based on both known exploit signatures and behavioral analysis to detect and block threats before they reach vulnerable systems."
"The tool's most valuable feature is its detection panel. Managing and updating policies within Check Point IPS is easy and without issues. It provides a secure network."
"Once we installed our Check Point firewall and activated and configured the various software blades and services, we successfully locked down our network with a near 100% success rate in preventing security threats."
"The solution is user-friendly and the interface is easy to configure."
"The solution's IPS functionality and firewall functionality are the solution's most valuable features."
"We primarily use this solution as an intrusion prevention system for external firewalls and deploy the solution on-premises."
"It is quite an intelligent product."
"The URL filtering is very good and you can create a group for customized URLs."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"The tool's most valuable feature is threat detection, which is important because we have multiple layers not only in Cisco."
"The solution is stable."
"The most valuable feature is the visibility that we have across the virtual environment."
"This solution makes life a lot easier as there are fewer man-hours required and we no longer need too many resources to manage it."
 

Cons

"The IPS inspection throughput goes high in older security gateways that have limited hardware resources, so that can be improved."
"So I don't think Check Point IPS is a great solution."
"Check Point IPS could be improved as the deployment is complex."
"One area where Check Point IPS could be improved is the language in the support, as it is currently only available in English."
"For a smaller organization or smaller environment, the cost for Check Point IPS is a little bit high, so that can be made more budgetary for small organizations."
"The pain point that I have with this solution is contacting technical support."
"Signature tuning should be more user-friendly in the tool because, as per my experience, signature tuning is tough in Check Point IPS."
"The scalability of Check Point IPS is on point, while the customer support is sometimes a bit slow."
"Sometimes the solution will offer up false positives."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"The cloud can be improved."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"There are problems setting up VPNs for some regions."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"Cisco Sourcefire SNORT can scale, but if you have too much, you could fill up your log files, which I consider when discussing scalability."
"The customization of the rules can be simplified."
 

Pricing and Cost Advice

"I rate the product price an eight on a scale of one to ten, where one means it is very cheap and ten means it is very expensive. The product is expensive."
"The price of this product should be reduced."
"The pricing for Check Point IPS is competitive and brings good value for the money."
"I give the price of the solution a five out of ten."
"You can pay for Check Point IPS yearly, or you can go with a three-year license. There's no extra cost apart from the standard licensing fee."
"It is a reasonably priced product."
"The module has a considerable cost but you can save by purchasing a package with several modules instead of making a single purchase."
"There is a license needed to use the Check Point IPS which is not expensive. However, the Check Point IPS device is expensive."
"We have a three-year license for this solution."
"Licensing for this solution is paid on a yearly basis."
"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."
"The cost is per port and can be expensive but it does include training and support for three years."
"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
903,871 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Outsourcing Company
18%
Financial Services Firm
12%
Computer Software Company
8%
Educational Organization
7%
Construction Company
12%
Financial Services Firm
10%
Comms Service Provider
8%
University
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business51
Midsize Enterprise22
Large Enterprise22
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise8
Large Enterprise7
 

Questions from the Community

What is your experience regarding pricing and costs for Check Point IPS?
I have saved around two or three hours a week since I started using Check Point IPS. My experience with pricing, setup cost, and licensing for Check Point IPS is great, and I have no problem with t...
What needs improvement with Check Point IPS?
Check Point IPS is working well for our organization. In the future, more automated and more AI-based intelligence could be fed into Check Point IPS, and that would be helpful for us.
What is your primary use case for Check Point IPS?
Check Point IPS is used as a security feature to prevent zero-day attacks and the execution of malicious files in our network. Check Point IPS is an Intrusion Prevention System that prevents malici...
What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?
If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...
What needs improvement with Cisco Sourcefire SNORT?
I have not had much experience with the community-driven rule set while utilizing Cisco Sourcefire SNORT. I don't have experience with recognizing zero-day vulnerabilities, but based on my knowledg...
What is your primary use case for Cisco Sourcefire SNORT?
Endpoint protection is the main use case. The main aspect involves specifying different rules, and when network traffic hits these rules, it will try to block the traffic or at least log the traffi...
 

Also Known As

Check Point Intrusion Prevention System
Sourcefire SNORT
 

Overview

 

Sample Customers

Morton Salt, Medical Advocacy and Outreach, BH Telecom, Lightbeam Health Solutions, X by Orange, Cadence, Nihondentsu, Datastream Connexion, Good Sam, Omnyway, FIASA, Pacific Life, Banco del Pacifico, Control Southern, Xero, Centrify
CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
Find out what your peers are saying about Check Point IPS vs. Cisco Sourcefire SNORT and other solutions. Updated: June 2026.
903,871 professionals have used our research since 2012.