Though it is not as powerful and as good as the Palo Alto, Check Point, and Juniper firewalls, it is a small firewall and it is actually, highly acceptable for SMB customers where there is not much outflow of internet traffic and users are less in number. They can update or enhance the application signatures. They have that Capture ATP option, which is the sandboxing option there. Other than that, they can enhance the application signature, because, in SonicWall, the signatures of the application are not up-to-date. It is not a big database compared to Palo Alto, or Fortinet. It is slow and it takes time. If you have created zones it automatically creates the access policy for allowing traffic from one zone to another zone. Similarly, if you create a site-to-site tunnel or a remote tunnel, in that case, it will automatically stage the access policy. However, there are options to disable that auto-creation, but if you compare this with the other firewalls, other firewalls don't have that. This is basically one thing that SonicWall TZ can work on so that an unnecessary access policy doesn't get generated in the firewall.