SonicWall NSa Reviews

We are system integrators and we install products for our customers. It is mainly used in Universities, for corporate use, and in the government sector as a firewall.

What I like the most is that this is a one-time purchase with no renewal fees.

The stability is better than other products.

The pricing for this product in India is high and the fees should be reduced.

The visual process needs improvement.

Because of the price, our customers prefer PSA. The price is what needs to be addressed in the next release, it's the only that that matters.

I would rate this solution a five out of ten.

I have been using this solution for approximately 22 years.

This solution is stable.

This is a scalable product. As our customer need increases we plan to increase our usage.

Technical support is good and it is available online as well as offline.

Currently, I am using SonicWall and Wildcard.

The setup process was perfect.

It was straightforward and easy. This is not a complex product at all.

We handle the integration for our customers.

SonicWall is a one-time purchase and there is no renewal license.

I would not recommend this solution because the price is too high. More than 30% of our customers prefer PSA because of the price.

In summary, the product is good but the price is too high.

I would rate this solution a five out of ten.

We use SonicWall as the primary firewall for the internet connectivity of a multi-site educational organization. It is a private multi-site wide area network for an educational institution with around six sites. There are currently about 3000 users in this client's organization.

It has excellent stability. 

The filter settings are confusing and overly complicated. The user interface can be improved. 

I have been using SonicWall NSA for a little bit over 10 years.

Stability is excellent. 

Scalability is marginal. SonicWall is currently tied to hardware, so the only way to scale is with new hardware. 

The initial setup was straightforward. 

I would recommend this solution, but I would suggest allocating time to become familiar with the interface.

I would rate SonicWall NSA a seven out of ten. I would like to see usability enhancement, specifically around the filters.

We are end users of this solution and I'm a senior systems administrator.

At the end of the day, all the solutions in this category are more or less alike. They all do the same thing in different ways. I've found the best features of NSA are the graphic interface which is very user friendly and I also find the solution to be very intuitive. The product has more features than I can use. 

The reporting solution from SonicWall is not the greatest. We have more than two firewalls and I expected we'd get more information from the reporting than we actually do. That area could definitely be improved. I've seen a couple of features on the firewall that I don't have use for because we're not a huge company, we're a 200-user company. The reporting feature is there, it would be nice if it was more detailed. 

The firewall itself has the reporting tool. Obviously, it's not as complete as the solution that they want to sell because they provide it for free. It means that you need to get the software separately in order to get a better understanding of what's going on in your firewall. A good additional feature would be improvement on the firewall reporting feature without needing extra software or extra expense.

I've been using this solution for five years. 

The firmware is very stable and I've never had issues with the stability of the operating system and I was several versions behind until recently. There were some minor bugs but that's because the firmware was not updated. 

The technical support is great. I've never had an issue where I've needed to wait more than a few minutes for them to fix it.

At this office, the firewall was already configured when I started working here, so I only needed to make some adjustments. We have another office that we acquired recently, and I implemented the firewall there. The configuration was pretty straightforward. The graphical interface is very intuitive and that helps. 

Our licensing fees are paid annually. It's on par with whatever is on the market. They are all the same, so it's not high or low. It's on the same level as any other hardware in the same category.

If I knew what I know today and I was starting from scratch with a SonicWall firewall, I'd get a consultant in for some advice. There are a couple of tricks that for me it would have been nice to know from the beginning because there are some rules in the defaults that I would've been happy to have known before. I would recommend getting a consultant to explain how the thing works, even if it's for a couple of hours.

I would rate this solution an eight out of 10. 

In the main office we have set up a SonicWall TZ device, and then from the branches, we have set up a lower branch model, the SonicWall, and then created site-to-site VPN. We then deployed the VoIP between those branches to the main office. We also deployed the firewall and the URL filtering between sites and the main office. So, we just enabled and created the different DMZ zones from the devices.

We have utilized all the features. The most valuable are the:

• URL filtering by category,
• DMZ zoning
• Load balancing
• The site-to-site VPN.
  

Because this is an old device, the throughput needs to improve. Right now, the only problem is that since it eight years devices had to keep up with the latest technology. Most of the devices are now linked to the plants. That is one thing that can be improved. 

We also need to increase the throughput because the other devices are slower. The throughput will become slow. Since we're using VoIP, it tends to affect the voice quality. Even if you're using a quality service, it tends to decrease.

We're going to replace them. Since this is already eight years old, so we're going to replace the hardware but with a different brand.

We have been using this solution for ten years. 

It's deployed from the main office to the site office. So, we're using site-to-site VPN between project sites since we are a construction company.

There is no problem with the stability. Since the very start, I have not experienced any problem yet until recently during the quarantine, but the problem is now resolved. Since the requirement is to have a voice quality, we're using a platform like MS Team, Zoom, and it does not perform well when using those applications.

We have around 100 to 200-people using it. Most of them are users. It's on around 10 projects or 10 branches.

We only require one staff member for the deployment and maintenance. 

I have never called support. I only called when we first purchased it, if I had a question. I have not found any difficulties when contacting them, or just because I contacted only lower support. Then since it is a user-friendly solution, I didn't experience any problems with the device.

We used Fortinet and Juniper NetScreen, but we already replaced them.

After seven years or five years, the performance degraded. Then we sourced from our local suppliers and got a recommendation from them and er also checked IT Central Station to compare each product. 

It's not hard to configure, it's user-friendly. It's very user-friendly. It's just the performance that's an issue because it has already aged out. It is already old.

The quality and security support should be improved in the next release.

I would rate SonicWall NSA an eight out of ten. 

We are a managed service provider and SonicWall is our primary firewall. We offer this solution to customers as part of a rental program, as well as sell them outright.

The most valuable feature is the Global Management System. This is the driving force behind why we continue to use it.

Having to deal with too many lower-level people in technical support means that it takes longer to resolve issues, so escalating support tickets should be faster.

I have bee using SonicWall at this company for nine years, although it was SonicWall TZ prior to SonicWall NSA. This company has been using it for longer than that. I also have experience with SonicWall that predates my time here.

SonicWall is very stable.

I don't think that scalability is a pertinent criterion for firewalls because they're hard-coded by the ASICs that go into them. When we rent a firewall to a customer instead of selling one, that customer has an upgrade path available. In this regard, it is scalable because we can switch them to a larger model if they outgrow it. Otherwise, it's limited by the ASIC.

The technical support from SonicWall is good. However, if it were easier to access where you were not stuck in a queue of people and forced to escalate problems it would be a bonus. 

The initial setup is straightforward.

Overall, this is a good solution and it's doing the job we need it to do. By in large, we don't have any complaints. There are always things that can be easier, but it's doing the job.

My advice for anybody who is implementing SonicWall NSA is that you can't be an expert on every brand. This means that you should pick a model, learn it very well, and build relationships with the support people at the vendor.

I would rate this solution a nine out of ten.

We have been using the SonicWall NSA firewall to keep our network safe.

The most valuable features are that it is reasonably-priced and works well.

Over time, this solution is becoming more complicated, and when I need support it often is not available. I would like U.S.-based technical support.

VPN functionality needs to be improved. As it is now, I need to combine another SSL VPN with my firewall. I want it to be done very easily. 

I have been using SonicWall for fifteen years.

The stability of SonicWall is fine.

I have had SonicWall for a really long time and I have had people help me to set it up, although I have always understood what has been done. As it has been updated, it has become more involved and more complicated, and things have moved around so I have to spend time finding where things are in the newer versions.

I have been looking at Fortinet and am learning toward it to replace our SonicWall. The main reason that I am switching is that we need something with a built-in VPN.

From what I have learned to so, Fortinet is more expensive but easier to manage.

I would rate this solution a seven out of ten.

Firewall/VPN appliance for SMB clients. Firewall provides advanced threat protection to internal hosts. It also provides a secure mechanism for remote access.

For the average SMB, this firewall does the job. Granular user controls, firewall and NAT rules that you would expect. Licensed features provide application control, content filtering, antivirus, and anti-malware all in a single appliance.  Be aware that their ATP is poorly implemented (stops downloads, forcing users to wait and click again).  Also be aware that the IPS/IDS, and Gateway Antivirus will do very little for modern threats such as ransomware.  We have had emotet trojans easily pass the firewall, connect to international foreign (and obviously) some kind of C&C without stopping it.  So little to no protection against modern threats, no HTTPS proxy as an option, poorly implemented ATP - it makes the case for a SonicWall very difficult to justify.  This vendor is frustratingly slow at adapting, evolving or improving their product.  They are unable to keep up with competition.

Application control: It allows us to block applications, i.e., websites by application type category. It is far more capable than content filtering alone. 

SonicWall has weaknesses. During its tenure with Dell, it was severely damaged (its reputation, innovation, etc.).  It is now recovering, but it may take time to get competitive again. They are clueless in some regards, which is unfortunate as they have the potential.

CPU: The CPUs are not able to compete with a similar price point to the Fortinet, WatchGuard, or Palo Alto product. Compare with the need to get 1Gbps throughput with full security (common nowadays), you are looking at NSA 5700. 

Wireless: What a disaster this has been historically. The new SonicWall will tell you it has been resolved and improved. It has improved - it actually works now, but performance is substandard. It is a terrible strategy to have a firewall act as an AP controller, in any case. Perhaps for an SMB, the integrated WiFi in their TZ series has a niche.

Anti-spam: Do not even consider it. It leaks like a shower head. What a mess that offering is. It requires a specific Java version on the server side (do not update it, otherwise it will break). In any case, a firewall doing anti-spam might be a low cost solution, but it is not your best strategy.

Logging/reporting: You need their analyzer to properly generate reports. This is an expensive, licensed feature, with a complex application or appliance back-end. 

MSP: They are not ready for managed security services.  Their Cloud GMS product is weak, barely out of beta (buggy).

VPN: Site-to-site is another problem area - Client-based VPN is another hot mess. Global VPN client issues and mobile connect issues. Do not even consider NetExtender - probably one of the most horrific, nightmare grade Java-based VPN clients. We have but all given up trying to make it work reliably.   If VPN is important for you - look elsewhere.  You have to pay for licenses (most competitive vendors include this by default).  You will have 4 different methods, 3 different clients, 2 licenses and all of this to have a horrible VPN connectivity.  No proper or modern 2FA for additional security.  AVOID!

AGSS / ATP: This is poorly implemented.  A user will click to download a new type of file, and nothing happens.  They have to wait an indeterminate amount of time, and try again to see if it works.  It is so annoying, most clients avoid this capability, just nullifying the whole purpose of it.

App Control:  Be aware that either due to firmware updates, or bugs - app control will behave poorly (cause packet loss, or outright blocking) with normal and legitimate activities.  Resetting and re-configuring it is the work-around (super annoying).

More than ten years.

Yes. The VPN client connectivity and licensing has been a major complaint, especially during COVID-19

Yes. The CPUs are very weak.

During the Dell years, support was terrible. It has since improved.

No. We have always only deployed SonicWall.

Setup is easy. Anyone with basic firewall experience can do it.

In-house only. Level 2 techs can handle most tasks.

All advanced features are licensed capabilities, such as Advanced Gateway Security Suite or Comprehensive Gateway Security Suite.  VPN clients are licensed, and you have to choose a type of license you want (how ridiculous is that). 

We have evaluated Sophos, Fortinet, Palo Alto, Barracuda, WatchGuard and now CheckPoint

Avoid this company.  They have no idea what they are doing, except a slick marketing campaign.  They don't listen to their customers.  The only evolution of the product in the last few years was a slight redesign of the web interface and DNS proxy.   They will push their SonicWall "Capture" but this has nothing to do with the Firewall product itself, it is a windows based NextGen A/V based on Sentinal with ATP.

Our operation depends heavily on Internet access and we depend on a solution that can provide us with productivity and security for the continuity of our business.
With this need, we implemented a SonicWall NSA firewall to control all access to and from the Internet.

With the deployment of the SonicWall NSA solution, we never suffered a problem due to invasion or contamination of any kind.

The solution always responded very efficiently, delivering us:

• High productivity in our operation through access control capabilities;
• Security for our information with advanced deep inspection features, including SSL traffic.

This solution has always delivered us security features with great efficiency like:

• Web content filter with a very extensive and always updated database;
• IPS with an extensive list of signature attacks;
• Anti-virus system with cloud sandbox that inspects 'file-less' attacks and delivers only after the verdict;
• Real time flow inspection system;
• Application Control with an extensive list of signatures;
• DPI-SSL inspection in the data layer;
• SSO with LDAP directory services.

The solution was deployed to suit all areas of the company.

This product is unable to secure access to endpoints for our external employees. Our next plan will be to deploy a solution for visibility and control of 'shadow IT' applications and also to provide security for accesses outside our company. We plan to use another solution from SonicWall, such as Cloud App Security (CASB), to meet the needs of our external employees.

The solution has always been very stable and efficient.

My impression is that the solution is quite scalable.

Support services are categorized by the criticality level. We had a few critical events, but each was attended quickly and efficiently.

Before this solution, we used Microsoft Forefront TMG Server.

We migrated because the solution was proxy-based and did not have the features of NG firewalls.

Initially, we had to review our security policy and this was the stage that involved the highest level of complexity.

With the policy defined according to our needs, the initial configuration of the solution was simple, but obviously, because it is an advanced-level security solution, it must be implemented by a specialized professional.

The solution was implemented by our internal team. Our team participated in an official solution training prior to deployment.

This question is very relative as we are dealing with an asset. But for our business, it was positive for a short period of time.

In our evaluation, we found that the costs of deploying the solution, and also purchasing the hardware and licenses, were very attractive.

The ratio of costs vs efficiency of SonicWall products is very good.

We did not test other solutions.